Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1001 7.8 重要
Local 		Synology Inc. Active Backup for Business Recovery Media Creator Synology Inc.のActive Backup for Business Recovery Media Creatorにおける信頼できない制御領域からの機能の組み込みに関する脆弱性 CWE-829
信頼性のない制御領域からの機能の組み込み 		CVE-2022-49036 2026-06-11 16:14 2026-06-3 Show GitHub Exploit DB Packet Storm
1002 5.5 警告
Local 		cilium eBPF ciliumのeBPFにおける複数の脆弱性 CWE-189
CWE-190
CVE-2026-10722 2026-06-11 16:14 2026-06-3 Show GitHub Exploit DB Packet Storm
1003 7.5 重要
Network 		CRUX Protocol::HTTP2 CRUXのProtocol::HTTP2における高圧縮データの処理 (データ増幅)に関する脆弱性 CWE-409
高圧縮データの不適切な処理 (データ増幅) 		CVE-2026-10725 2026-06-11 16:14 2026-06-6 Show GitHub Exploit DB Packet Storm
1004 6.1 警告
Network 		HCL Technologies Limited Digital Experience Compose
digital experience 		HCL Technologies Limitedのdigital experience等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-21825 2026-06-11 16:14 2026-06-5 Show GitHub Exploit DB Packet Storm
1005 6.1 警告
Network 		HCL Technologies Limited Digital Experience Compose
digital experience 		HCL Technologies Limitedのdigital experience等の複数製品におけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2026-21826 2026-06-11 16:14 2026-06-5 Show GitHub Exploit DB Packet Storm
1006 8.8 重要
Network 		HCL Technologies Limited Digital Experience Compose
digital experience 		HCL Technologies Limitedのdigital experience等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-21837 2026-06-11 16:14 2026-06-5 Show GitHub Exploit DB Packet Storm
1007 5.3 警告
Local 		LMSYS Org SGLang LMSYS OrgのSGLangにおけるリソースの不適切なシャットダウンおよびリリースに関する脆弱性 CWE-404
リソースの不適切なシャットダウンおよびリリース 		CVE-2026-10775 2026-06-11 16:14 2026-06-3 Show GitHub Exploit DB Packet Storm
1008 2.5
Local 		Gradio project Gradio Gradio projectのGradioにおける複数の脆弱性 CWE-327
CWE-328
CVE-2026-10783 2026-06-11 16:14 2026-06-4 Show GitHub Exploit DB Packet Storm
1009 4.7 警告
Local 		snowflake streamlit Snowflake Inc.のStreamlitにおける複数の脆弱性 CWE-327
CWE-328
CVE-2026-10804 2026-06-11 16:14 2026-06-4 Show GitHub Exploit DB Packet Storm
1010 7 重要
Local 		Milvus Milvus Milvusにおける複数の脆弱性 CWE-327
CWE-328
CVE-2026-10814 2026-06-11 16:14 2026-06-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
258401 7.5 HIGH
Network 		adobe experience_manager Adobe Experience Manager 6.1 and earlier has a sensitive data exposure vulnerability. CWE-200
Information Exposure 		CVE-2017-3110 2024-11-21 12:24 2017-08-12 Show GitHub Exploit DB Packet Storm
258402 9.8 CRITICAL
Network 		adobe experience_manager Adobe Experience Manager 6.2 and earlier has a malicious file execution vulnerability. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2017-3108 2024-11-21 12:24 2017-08-12 Show GitHub Exploit DB Packet Storm
258403 7.5 HIGH
Network 		adobe experience_manager Adobe Experience Manager 6.3 and earlier has a misconfiguration vulnerability. CWE-200
Information Exposure 		CVE-2017-3107 2024-11-21 12:24 2017-08-12 Show GitHub Exploit DB Packet Storm
258404 8.8 HIGH
Network 		redhat
adobe 		enterprise_linux
enterprise_linux_desktop
enterprise_linux_workstation
flash_player_desktop_runtime
flash_player 		Adobe Flash Player versions 26.0.0.137 and earlier have an exploitable type confusion vulnerability when parsing SWF files. Successful exploitation could lead to arbitrary code execution. CWE-704
 Incorrect Type Conversion or Cast 		CVE-2017-3106 2024-11-21 12:24 2017-08-12 Show GitHub Exploit DB Packet Storm
258405 7.5 HIGH
Network 		adobe digital_editions Adobe Digital Editions 4.5.4 and earlier versions 4.5.4 and earlier have an exploitable memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-3091 2024-11-21 12:24 2017-08-12 Show GitHub Exploit DB Packet Storm
258406 7.4 HIGH
Network 		adobe
redhat 		flash_player_desktop_runtime
flash_player
enterprise_linux
enterprise_linux_desktop
enterprise_linux_workstation 		Adobe Flash Player versions 26.0.0.137 and earlier have a security bypass vulnerability that leads to information disclosure when performing URL redirect. CWE-601
Open Redirect 		CVE-2017-3085 2024-11-21 12:24 2017-08-12 Show GitHub Exploit DB Packet Storm
258407 8.8 HIGH
Network 		adobe acrobat
acrobat_dc
acrobat_reader_dc
reader 		Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability. Successful exploit… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-3016 2024-11-21 12:24 2017-08-12 Show GitHub Exploit DB Packet Storm
258408 7.5 HIGH
Network 		fortinet fortios An information disclosure vulnerability in Fortinet FortiOS 5.6.0, 5.4.4 and below versions allows attacker to get FortiOS version info by inspecting FortiOS IKE VendorID packets. CWE-200
Information Exposure 		CVE-2017-3130 2024-11-21 12:24 2017-08-11 Show GitHub Exploit DB Packet Storm
258409 7.5 HIGH
Network 		apache cxf The OAuth2 Hawk and JOSE MAC Validation code in Apache CXF prior to 3.0.13 and 3.1.x prior to 3.1.10 is not using a constant time MAC signature comparison algorithm which may be exploited by sophisti… NVD-CWE-noinfo
CVE-2017-3156 2024-11-21 12:24 2017-08-11 Show GitHub Exploit DB Packet Storm
258410 6.1 MEDIUM
Network 		adobe connect Adobe Connect versions 9.6.1 and earlier have a stored cross-site scripting vulnerability. Successful exploitation could lead to a stored cross-site scripting attack. CWE-79
Cross-site Scripting 		CVE-2017-3103 2024-11-21 12:24 2017-07-17 Show GitHub Exploit DB Packet Storm