Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
101	4.6	警告 Network	Umbraco	Umbraco CMS	UmbracoのUmbraco CMSにおけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-46609	2026-06-15 11:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

102	6.1	警告 Network	Umbraco	Umbraco CMS	UmbracoのUmbraco CMSにおけるオープンリダイレクトの脆弱性 New	CWE-601 オープンリダイレクト	CVE-2026-46616	2026-06-15 11:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

103	8.8	重要 Network	シーメンス	SINEC INS	シーメンスのSINEC INSにおけるOS コマンドインジェクションの脆弱性 New	CWE-78 OSコマンド・インジェクション	CVE-2026-46746	2026-06-15 11:17	2026-06-9	Show	GitHub Exploit DB Packet Storm

104	5.3	警告 Network	シーメンス	SINEC INS	シーメンスのSINEC INSにおけるパストラバーサルの脆弱性 New	CWE-26 パストラバーサル (/dir/../filename)	CVE-2026-46747	2026-06-15 11:17	2026-06-9	Show	GitHub Exploit DB Packet Storm

105	7.8	重要 Local	シーメンス	SINEC INS	シーメンスのSINEC INSにおける不要な特権による実行に関する脆弱性 New	CWE-250 不要な特権による実行	CVE-2026-46748	2026-06-15 11:16	2026-06-9	Show	GitHub Exploit DB Packet Storm

106	9.8	緊急 Network	シーメンス	SINEC INS	シーメンスのSINEC INSにおける予測可能な Salt の一方向ハッシュの使用に関する脆弱性 New	CWE-760 予測可能な Salt の一方向ハッシュの使用	CVE-2026-46749	2026-06-15 11:16	2026-06-9	Show	GitHub Exploit DB Packet Storm

107	8.8	重要 Network	Vim	Vim	Vimにおける複数の脆弱性 New	CWE-74 CWE-94	CVE-2026-47162	2026-06-15 11:16	2026-06-11	Show	GitHub Exploit DB Packet Storm

108	8.8	重要 Network	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft Windows 11 26h1 Microsoft Windows 10 21h2 Microsoft …	リモートデスクトップクライアントのリモートでコードが実行される脆弱性 New	CWE-122 ヒープオーバーフロー	CVE-2026-47289	2026-06-15 11:16	2026-06-9	Show	GitHub Exploit DB Packet Storm

109	8	重要 Network	マイクロソフト	Microsoft SharePoint Server	Microsoft SharePoint Server のリモートでコードが実行される脆弱性 New	CWE-285 不適切な認可	CVE-2026-47298	2026-06-15 11:16	2026-06-9	Show	GitHub Exploit DB Packet Storm

110	8.8	重要 Network	Apache Software Foundation	Apache OFBiz	Apache Software FoundationのApache OFBizにおける認可に関する脆弱性 New	CWE-285 不適切な認可	CVE-2026-47342	2026-06-15 11:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
257901	7.8	HIGH Local	huawei	p8_firmware	The ddr_devfreq driver in versions earlier than GRA-UL00C00B197 has buffer overflow vulnerability. An attacker with the root privilege of the Android system can tricks a user into installing a malici…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-2698	2024-11-21 12:24	2017-11-23	Show	GitHub Exploit DB Packet Storm

257902	7.8	HIGH Local	huawei	gt3_firmware honor_5c_firmware knt_firmware p9_lite_firmware y6ii_firmware	The goldeneye driver in NMO-L31C432B120 and earlier versions,NEM-L21C432B100 and earlier versions,NEM-L51C432B120 and earlier versions,KNT-AL10C746B160 and earlier versions,VNS-L21C185B142 and earlie…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-2697	2024-11-21 12:24	2017-11-23	Show	GitHub Exploit DB Packet Storm

257903	7.8	HIGH Local	huawei	y6ii_firmware	The emerg_data driver in CAM-L21C10B130 and earlier versions, CAM-L21C185B141 and earlier versions has a buffer overflow vulnerability. An attacker with the root privilege of the Android system can t…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-2696	2024-11-21 12:24	2017-11-23	Show	GitHub Exploit DB Packet Storm

257904	7.8	HIGH Local	libxls_project debian	libxls debian_linux	An exploitable stack based buffer overflow vulnerability exists in the xls_getfcell function of libxls 1.3.4. A specially crafted XLS file can cause a memory corruption resulting in remote code execu…	CWE-787 Out-of-bounds Write	CVE-2017-2919	2024-11-21 12:24	2017-11-21	Show	GitHub Exploit DB Packet Storm

257905	7.8	HIGH Local	libxls_project	libxls	An exploitable out-of-bounds write vulnerability exists in the read_MSAT function of libxls 1.4. A specially crafted XLS file can cause a memory corruption resulting in remote code execution. An atta…	CWE-787 Out-of-bounds Write	CVE-2017-2897	2024-11-21 12:24	2017-11-21	Show	GitHub Exploit DB Packet Storm

257906	7.8	HIGH Local	libxls_project debian	libxls debian_linux	An exploitable out-of-bounds write vulnerability exists in the xls_mergedCells function of libxls 1.4. . A specially crafted XLS file can cause a memory corruption resulting in remote code execution.…	CWE-787 Out-of-bounds Write	CVE-2017-2896	2024-11-21 12:24	2017-11-21	Show	GitHub Exploit DB Packet Storm

257907	5.5	MEDIUM Local	apache debian redhat	openoffice debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_tus enterprise_linux_server_aus enterprise_linux_ser…	By exploiting the way Apache OpenOffice before 4.1.4 renders embedded objects, an attacker could craft a document that allows reading in a file from the user's filesystem. Information could be retrie…	CWE-200 Information Exposure	CVE-2017-3157	2024-11-21 12:24	2017-11-21	Show	GitHub Exploit DB Packet Storm

257908	7.8	HIGH Local	apache	hadoop	In Apache Hadoop versions 2.6.1 to 2.6.5, 2.7.0 to 2.7.3, and 3.0.0-alpha1, if a file in an encryption zone with access permissions that make it world readable is localized via YARN's localization me…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2017-3166	2024-11-21 12:24	2017-11-13	Show	GitHub Exploit DB Packet Storm

257909	9.8	CRITICAL Network	cesanta	mongoose	An exploitable memory corruption vulnerability exists in the Websocket protocol implementation of Cesanta Mongoose 6.8. A specially crafted websocket packet can cause a buffer to be allocated while l…	CWE-416 Use After Free	CVE-2017-2922	2024-11-21 12:24	2017-11-8	Show	GitHub Exploit DB Packet Storm

257910	9.8	CRITICAL Network	cesanta	mongoose	An exploitable memory corruption vulnerability exists in the Websocket protocol implementation of Cesanta Mongoose 6.8. A specially crafted websocket packet can cause an integer overflow, leading to …	CWE-190 Integer Overflow or Wraparound	CVE-2017-2921	2024-11-21 12:24	2017-11-8	Show	GitHub Exploit DB Packet Storm