Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1441 8.4 重要
Local 		マイクロソフト Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft Office 365
Microsoft Office 2024 Long-Term Servicing Ch… 		Microsoft Office のリモート コードが実行される脆弱性 CWE-416
CWE-787
CVE-2026-45461 2026-06-22 11:36 2026-06-9 Show GitHub Exploit DB Packet Storm
1442 8.4 重要
Local 		マイクロソフト Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft Office 365
Microsoft Office 2024 Long-Term Servicing Ch… 		Microsoft Office のリモート コードが実行される脆弱性 CWE-121
CWE-191
CVE-2026-45463 2026-06-22 11:36 2026-06-9 Show GitHub Exploit DB Packet Storm
1443 3.3
Local 		マイクロソフト Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft 365 Apps
Microsoft Office 365
Microsoft Office 2024 … 		Microsoft Word の情報漏えいの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-45466 2026-06-22 11:36 2026-06-9 Show GitHub Exploit DB Packet Storm
1444 7.8 重要
Local 		マイクロソフト Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft Office 365
Microsoft Office 2024 Long-Term Servicing Ch… 		Microsoft Word のリモートでコードが実行される脆弱性 CWE-822
信頼性のないポインタデリファレンス 		CVE-2026-45471 2026-06-22 11:36 2026-06-9 Show GitHub Exploit DB Packet Storm
1445 8.4 重要
Local 		マイクロソフト Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft Office 365
Microsoft Office 2024 Long-Term Servicing Ch… 		Microsoft Office のリモート コードが実行される脆弱性 CWE-416
CWE-787
CVE-2026-45472 2026-06-22 11:36 2026-06-9 Show GitHub Exploit DB Packet Storm
1446 9.8 緊急
Network 		サン・マイクロシステムズ JCE Widget Factory LimitedのJCEにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-48907 2026-06-22 11:35 2026-06-5 Show GitHub Exploit DB Packet Storm
1447 4.3 警告
Network 		Devolutions Devolutions Server DevolutionsのDevolutions Serverにおける複数の脆弱性 CWE-284
CWE-882
CVE-2026-11890 2026-06-22 11:35 2026-06-16 Show GitHub Exploit DB Packet Storm
1448 4.5 警告
Adjacent 		ネットギア RAXE450 Firmware
R7000 ファームウェア
rax42 ファームウェア
RAX42v2 Firmware
XR1000V2 FIRMWARE
RAX50S FIRMWARE
RAX45 ファームウェア
RAXE500 Firmware
XR1000&n… 		ネットギアのR7000 ファームウェア等の複数製品における入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-0410 2026-06-22 11:35 2026-06-9 Show GitHub Exploit DB Packet Storm
1449 8 重要
Adjacent 		ネットギア RBE970 FIRMWARE
RBR760 ファームウェア
RBS350 ファームウェア
RBR350 ファームウェア
RBS760 Firmware 		ネットギアのRBE970 FIRMWARE等の複数製品における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-0411 2026-06-22 11:35 2026-06-9 Show GitHub Exploit DB Packet Storm
1450 4.5 警告
Adjacent 		ネットギア R6900P ファームウェア
RAXE450 Firmware
R7960P ファームウェア
R7000 ファームウェア
rax42 ファームウェア
mr80 ファームウェア
MR70 FIRMWARE
MR60 ファームウェア
MS60 ファームウェア 		ネットギアのMR60 ファームウェア等の複数製品における入力確認に関する脆弱性 CWE-20
CWE-noinfo
CVE-2026-0417 2026-06-22 11:35 2026-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
257331 4.5 MEDIUM
Network 		admidio admidio admidio 3.2.8 has CSRF in adm_program/modules/members/members_function.php with an impact of deleting arbitrary user accounts. CWE-352
 Origin Validation Error 		CVE-2017-8382 2024-11-21 12:33 2017-05-16 Show GitHub Exploit DB Packet Storm
257332 5.4 MEDIUM
Network 		infor enterprise_asset_management INFOR EAM V11.0 Build 201410 has XSS via comment fields. CWE-79
Cross-site Scripting 		CVE-2017-7953 2024-11-21 12:33 2017-05-16 Show GitHub Exploit DB Packet Storm
257333 8.8 HIGH
Network 		infor enterprise_asset_management INFOR EAM V11.0 Build 201410 has SQL injection via search fields, related to the filtervalue parameter. CWE-89
SQL Injection 		CVE-2017-7952 2024-11-21 12:33 2017-05-16 Show GitHub Exploit DB Packet Storm
257334 7.8 HIGH
Local 		google android In function msm_pcm_playback_close() in all Android releases from CAF using the Linux kernel, prtd is assigned substream->runtime->private_data. Later, prtd is freed. However, prtd is not sanitized a… CWE-416
 Use After Free 		CVE-2017-8246 2024-11-21 12:33 2017-05-13 Show GitHub Exploit DB Packet Storm
257335 7.8 HIGH
Local 		google android In all Android releases from CAF using the Linux kernel, while processing a voice SVC request which is nonstandard by specifying a payload size that will overflow its own declared size, an out of bou… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-8245 2024-11-21 12:33 2017-05-13 Show GitHub Exploit DB Packet Storm
257336 7.0 HIGH
Local 		google android In core_info_read and inst_info_read in all Android releases from CAF using the Linux kernel, variable "dbg_buf", "dbg_buf->curr" and "dbg_buf->filled_size" could be modified by different threads at … CWE-362
Race Condition 		CVE-2017-8244 2024-11-21 12:33 2017-05-13 Show GitHub Exploit DB Packet Storm
257337 5.5 MEDIUM
Local 		conexant mictray64 Conexant Systems mictray64 task, as used on HP Elite, EliteBook, ProBook, and ZBook systems, leaks sensitive data (keystrokes) to any process. In mictray64.exe (mic tray icon) 1.0.0.46, a LowLevelKey… CWE-200
Information Exposure 		CVE-2017-8360 2024-11-21 12:33 2017-05-12 Show GitHub Exploit DB Packet Storm
257338 5.5 MEDIUM
Local 		schneider-electric vampset All versions of VAMPSET software produced by Schneider Electric, prior to V2.2.189, are susceptible to a memory corruption vulnerability when a corrupted vf2 file is used. This vulnerability causes t… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-7967 2024-11-21 12:33 2017-05-10 Show GitHub Exploit DB Packet Storm
257339 5.5 MEDIUM
Local 		ca client_automation The OS Installation Management component in CA Client Automation r12.9, r14.0, and r14.0 SP1 places an encrypted password into a readable local file during operating system installation, which allows… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2017-8391 2024-11-21 12:33 2017-05-6 Show GitHub Exploit DB Packet Storm
257340 6.1 MEDIUM
Network 		accellion file_transfer_appliance An issue was discovered on Accellion FTA devices before FTA_9_12_180. courier/1000@/oauth/playground/callback.html allows XSS with a crafted URI. CWE-79
Cross-site Scripting 		CVE-2017-8304 2024-11-21 12:33 2017-05-6 Show GitHub Exploit DB Packet Storm