Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1481 7.5 重要
Network 		vLLM vLLM vLLMにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-5497 2026-06-16 13:35 2026-06-11 Show GitHub Exploit DB Packet Storm
1482 5.5 警告
Local 		MongoDB Inc. MongoDB MongoDB Inc.のMongoDBにおけるログファイルからの情報漏えいに関する脆弱性 CWE-532
ログファイルからの情報漏えい 		CVE-2026-9735 2026-06-16 13:35 2026-06-9 Show GitHub Exploit DB Packet Storm
1483 7.5 重要
Network 		MongoDB Inc. MongoDB MongoDB Inc.のMongoDBにおける再帰制御に関する脆弱性 CWE-674
不適切な再帰制御 		CVE-2026-9740 2026-06-16 13:35 2026-06-9 Show GitHub Exploit DB Packet Storm
1484 6.5 警告
Network 		MongoDB Inc. MongoDB MongoDB Inc.のMongoDBにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-9743 2026-06-16 13:34 2026-06-9 Show GitHub Exploit DB Packet Storm
1485 6.5 警告
Network 		MongoDB Inc. MongoDB MongoDB Inc.のMongoDBにおける到達可能なアサーションに関する脆弱性 CWE-617
到達可能なアサーション 		CVE-2026-9747 2026-06-16 13:34 2026-06-9 Show GitHub Exploit DB Packet Storm
1486 6.5 警告
Network 		MongoDB Inc. MongoDB MongoDB Inc.のMongoDBにおける到達可能なアサーションに関する脆弱性 CWE-617
到達可能なアサーション 		CVE-2026-9748 2026-06-16 13:34 2026-06-9 Show GitHub Exploit DB Packet Storm
1487 6.5 警告
Network 		MongoDB Inc. MongoDB MongoDB Inc.のMongoDBにおける到達可能なアサーションに関する脆弱性 CWE-617
到達可能なアサーション 		CVE-2026-9750 2026-06-16 13:34 2026-06-9 Show GitHub Exploit DB Packet Storm
1488 7.2 重要
Network 		ThingsBoard, Inc. ThingsBoard ThingsBoardにおけるプロトタイプ汚染の脆弱性 CWE-Other
その他 		CVE-2026-53676 2026-06-16 12:16 2026-06-16 Show GitHub Exploit DB Packet Storm
1489 8.7 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-10087 2026-06-15 18:37 2026-06-11 Show GitHub Exploit DB Packet Storm
1490 4.3 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるレンダリングされたユーザインターフェースレイヤまたはフレームの不適切な制限に関する脆弱性 CWE-1021
レンダリングされたユーザインターフェースレイヤまたはフレームの不適切な制限 		CVE-2026-10733 2026-06-15 18:37 2026-06-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
258851 7.3 HIGH
Local 		leao_consultoria_e_desenvolvimento_de_sistemas ltda_me_laquis_scada An Improper Access Control issue was discovered in LCDS - Leao Consultoria e Desenvolvimento de Sistemas LTDA ME LAquis SCADA. The following versions are affected: Versions 4.1 and prior versions rel… NVD-CWE-noinfo
CVE-2017-6016 2024-11-21 12:28 2017-05-19 Show GitHub Exploit DB Packet Storm
258852 6.5 MEDIUM
Network 		apache ambari In Ambari 2.2.2 through 2.4.2 and Ambari 2.5.0, sensitive data may be stored on disk in temporary files on the Ambari Server host. The temporary files are readable by any user authenticated on the ho… CWE-200
Information Exposure 		CVE-2017-5655 2024-11-21 12:28 2017-05-15 Show GitHub Exploit DB Packet Storm
258853 7.5 HIGH
Network 		apache ambari In Ambari 2.4.x (before 2.4.3) and Ambari 2.5.0, an authorized user of the Ambari Hive View may be able to gain unauthorized read access to files on the host where the Ambari server executes. CWE-91
Blind XPath Injection 		CVE-2017-5654 2024-11-21 12:28 2017-05-13 Show GitHub Exploit DB Packet Storm
258854 5.9 MEDIUM
Network 		oneplus oxygenos An issue was discovered on OnePlus One, X, 2, 3, and 3T devices. OxygenOS and HydrogenOS are vulnerable to downgrade attacks. This is due to a lenient 'updater-script' in OTAs that does not check tha… CWE-20
 Improper Input Validation  		CVE-2017-5948 2024-11-21 12:28 2017-05-12 Show GitHub Exploit DB Packet Storm
258855 7.5 HIGH
Network 		asus rt-ac1750_firmware ASUS RT-AC* and RT-N* devices with firmware before 3.0.0.4.380.7378 allow JSONP Information Disclosure such as a network map. CWE-200
Information Exposure 		CVE-2017-5892 2024-11-21 12:28 2017-05-10 Show GitHub Exploit DB Packet Storm
258856 8.8 HIGH
Network 		asus rt-ac1750_firmware ASUS RT-AC* and RT-N* devices with firmware before 3.0.0.4.380.7378 have Login Page CSRF and Save Settings CSRF. CWE-352
 Origin Validation Error 		CVE-2017-5891 2024-11-21 12:28 2017-05-10 Show GitHub Exploit DB Packet Storm
258857 7.0 HIGH
Local 		blftech visualview_hmi An Uncontrolled Search Path Element issue was discovered in BLF-Tech LLC VisualView HMI Version 9.9.14.0 and prior. The uncontrolled search path element vulnerability has been identified, which may a… CWE-427
 Uncontrolled Search Path Element 		CVE-2017-6051 2024-11-21 12:28 2017-05-9 Show GitHub Exploit DB Packet Storm
258858 8.8 HIGH
Network 		certec_edv_gmbh atvise_scada A Header Injection issue was discovered in Certec EDV GmbH atvise scada prior to Version 3.0. An "improper neutralization of HTTP headers for scripting syntax" issue has been identified, which may al… CWE-74
Injection 		CVE-2017-6031 2024-11-21 12:28 2017-05-6 Show GitHub Exploit DB Packet Storm
258859 5.4 MEDIUM
Network 		certec_edv_gmbh atvise_scada A Cross-Site Scripting issue was discovered in Certec EDV GmbH atvise scada prior to Version 3.0. This may allow remote code execution. CWE-79
Cross-site Scripting 		CVE-2017-6029 2024-11-21 12:28 2017-05-6 Show GitHub Exploit DB Packet Storm
258860 5.9 MEDIUM
Network 		rockwellautomation compactlogix_5380_firmware
controllogix_5580_firmware 		A Resource Exhaustion issue was discovered in Rockwell Automation ControlLogix 5580 controllers V28.011, V28.012, and V28.013; ControlLogix 5580 controllers V29.011; CompactLogix 5380 controllers V28… CWE-400
 Uncontrolled Resource Consumption 		CVE-2017-6024 2024-11-21 12:28 2017-05-6 Show GitHub Exploit DB Packet Storm