Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1491	6.5	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-1500	2026-06-15 18:37	2026-06-11	Show	GitHub Exploit DB Packet Storm

1492	3.1	低 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-3553	2026-06-15 18:37	2026-06-11	Show	GitHub Exploit DB Packet Storm

1493	8.1	重要 Network	Netty	Netty	Nettyにおける複数の脆弱性	CWE-284 CWE-697	CVE-2026-44249	2026-06-15 18:37	2026-06-11	Show	GitHub Exploit DB Packet Storm

1494	7.5	重要 Network	Netty	Netty	Nettyにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-44250	2026-06-15 18:37	2026-06-11	Show	GitHub Exploit DB Packet Storm

1495	7.5	重要 Network	Netty	Netty	Nettyにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-44890	2026-06-15 18:37	2026-06-11	Show	GitHub Exploit DB Packet Storm

1496	7.5	重要 Network	Netty	Netty	Nettyにおける複数の脆弱性	CWE-1188 CWE-400	CVE-2026-44892	2026-06-15 18:37	2026-06-12	Show	GitHub Exploit DB Packet Storm

1497	7.5	重要 Network	Netty	Netty	Nettyにおける例外的な状況に対する不適切なチェックまたは処理に関する脆弱性	CWE-703 例外的な状況に対する不適切なチェックまたは処理	CVE-2026-44893	2026-06-15 18:37	2026-06-12	Show	GitHub Exploit DB Packet Storm

1498	7.5	重要 Network	Netty	Netty	Nettyにおける通信チャネルの送信元の不適切な検証に関する脆弱性	CWE-940 通信チャネルの送信元の不適切な検証	CVE-2026-44894	2026-06-15 18:37	2026-06-12	Show	GitHub Exploit DB Packet Storm

1499	7.5	重要 Network	Netty	Netty	Nettyにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-45416	2026-06-15 18:37	2026-06-12	Show	GitHub Exploit DB Packet Storm

1500	4	警告 Local	Netty	Netty	Nettyにおける複数の脆弱性	CWE-200 CWE-772	CVE-2026-45536	2026-06-15 18:37	2026-06-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
258891	7.5	HIGH Network	canonical openstack	ubuntu_linux nova-lxd	OpenStack Nova-LXD before 13.1.1 uses the wrong name for the veth pairs when applying Neutron security group rules for instances, which allows remote attackers to bypass intended security restriction…	NVD-CWE-noinfo	CVE-2017-5936	2024-11-21 12:28	2017-04-13	Show	GitHub Exploit DB Packet Storm

258892	4.7	MEDIUM Local	xmlsoft	libxml2	libxml2 2.9.4, when used in recover mode, allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted XML document. NOTE: The maintainer states "I would disagree of…	CWE-476 NULL Pointer Dereference	CVE-2017-5969	2024-11-21 12:28	2017-04-12	Show	GitHub Exploit DB Packet Storm

258893	6.7	MEDIUM Local	unisys	secure_partitioning	Unquoted Windows search path vulnerability in the guest service in Unisys s-Par before 4.4.20 allows local users to gain privileges via a Trojan horse executable file in the %SYSTEMDRIVE% directory, …	CWE-428 Unquoted Search Path or Element	CVE-2017-5873	2024-11-21 12:28	2017-04-12	Show	GitHub Exploit DB Packet Storm

258894	6.5	MEDIUM Network	kony	enterprise_mobile_management	Kony Enterprise Mobile Management (EMM) before 4.2.5.2 has the vulnerability of disclosing the private key in clear-text when changing the parameters of the request.	CWE-200 Information Exposure	CVE-2017-5672	2024-11-21 12:28	2017-04-12	Show	GitHub Exploit DB Packet Storm

258895	7.5	HIGH Network	netapp	clustered_data_ontap	NetApp Clustered Data ONTAP 8.1 through 9.1P1, when NFS or SMB is enabled, allows remote attackers to cause a denial of service via unspecified vectors.	NVD-CWE-noinfo	CVE-2017-5988	2024-11-21 12:28	2017-04-11	Show	GitHub Exploit DB Packet Storm

258896	9.8	CRITICAL Network	atlassian	jira	The JIRA Workflow Designer Plugin in Atlassian JIRA Server before 6.3.0 improperly uses an XML parser and deserializer, which allows remote attackers to execute arbitrary code, read arbitrary files, …	CWE-502 Deserialization of Untrusted Data	CVE-2017-5983	2024-11-21 12:28	2017-04-11	Show	GitHub Exploit DB Packet Storm

258897	7.8	HIGH Local	schneider-electric	interactive_graphical_scada_system	A DLL Hijacking issue was discovered in Schneider Electric Interactive Graphical SCADA System (IGSS) Software, Version 12 and previous versions. The software will execute a malicious file if it is na…	CWE-427 Uncontrolled Search Path Element	CVE-2017-6033	2024-11-21 12:28	2017-04-8	Show	GitHub Exploit DB Packet Storm

258898	7.5	HIGH Network	schneider-electric	conext_combox_865-1058_firmware	An issue was discovered in Schneider Electric Conext ComBox, model 865-1058, all firmware versions prior to V3.03 BN 830. A series of rapid requests to the device may cause it to reboot.	CWE-400 Uncontrolled Resource Consumption	CVE-2017-6019	2024-11-21 12:28	2017-04-8	Show	GitHub Exploit DB Packet Storm

258899	7.5	HIGH Network	starscream_project	starscream	WebSocket.swift in Starscream before 2.0.4 allows an SSL Pinning bypass because pinning occurs in the stream function (this is too late; pinning should occur in the initStreamsWithData function).	CWE-295 Improper Certificate Validation	CVE-2017-5887	2024-11-21 12:28	2017-04-6	Show	GitHub Exploit DB Packet Storm

258900	7.5	HIGH Network	apache	geode	Apache Geode before 1.1.1, when a cluster has enabled security by setting the security-manager property, allows remote authenticated users with CLUSTER:READ but not DATA:READ permission to access the…	CWE-200 Information Exposure	CVE-2017-5649	2024-11-21 12:28	2017-04-5	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed