Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1491	6.5	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-1500	2026-06-15 18:37	2026-06-11	Show	GitHub Exploit DB Packet Storm

1492	3.1	低 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-3553	2026-06-15 18:37	2026-06-11	Show	GitHub Exploit DB Packet Storm

1493	8.1	重要 Network	Netty	Netty	Nettyにおける複数の脆弱性	CWE-284 CWE-697	CVE-2026-44249	2026-06-15 18:37	2026-06-11	Show	GitHub Exploit DB Packet Storm

1494	7.5	重要 Network	Netty	Netty	Nettyにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-44250	2026-06-15 18:37	2026-06-11	Show	GitHub Exploit DB Packet Storm

1495	7.5	重要 Network	Netty	Netty	Nettyにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-44890	2026-06-15 18:37	2026-06-11	Show	GitHub Exploit DB Packet Storm

1496	7.5	重要 Network	Netty	Netty	Nettyにおける複数の脆弱性	CWE-1188 CWE-400	CVE-2026-44892	2026-06-15 18:37	2026-06-12	Show	GitHub Exploit DB Packet Storm

1497	7.5	重要 Network	Netty	Netty	Nettyにおける例外的な状況に対する不適切なチェックまたは処理に関する脆弱性	CWE-703 例外的な状況に対する不適切なチェックまたは処理	CVE-2026-44893	2026-06-15 18:37	2026-06-12	Show	GitHub Exploit DB Packet Storm

1498	7.5	重要 Network	Netty	Netty	Nettyにおける通信チャネルの送信元の不適切な検証に関する脆弱性	CWE-940 通信チャネルの送信元の不適切な検証	CVE-2026-44894	2026-06-15 18:37	2026-06-12	Show	GitHub Exploit DB Packet Storm

1499	7.5	重要 Network	Netty	Netty	Nettyにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-45416	2026-06-15 18:37	2026-06-12	Show	GitHub Exploit DB Packet Storm

1500	4	警告 Local	Netty	Netty	Nettyにおける複数の脆弱性	CWE-200 CWE-772	CVE-2026-45536	2026-06-15 18:37	2026-06-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
258941	9.8	CRITICAL Network	fatek	ethernet_module_configuration_tool_cbe_firmware ethernet_module_configuration_tool_cbeh_firmware ethernet_module_configuration_tool_cm25e_firmware ethernet_module_configuration_tool_cm55e_fi…	An issue was discovered in Fatek Automation PLC Ethernet Module. The affected Ether_cfg software configuration tool runs on the following Fatek PLCs: CBEH versions prior to V3.6 Build 170215, CBE ver…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-6023	2024-11-21 12:28	2017-03-16	Show	GitHub Exploit DB Packet Storm

258942	5.5	MEDIUM Local	virglrenderer_project	virglrenderer	Heap-based buffer overflow in the vrend_create_vertex_elements_state function in vrend_renderer.c in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service (out-of-bounds…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-5994	2024-11-21 12:28	2017-03-15	Show	GitHub Exploit DB Packet Storm

258943	6.5	MEDIUM Local	virglrenderer_project	virglrenderer	Memory leak in the vrend_renderer_init_blit_ctx function in vrend_blitter.c in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service (host memory consumption) via a larg…	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-5993	2024-11-21 12:28	2017-03-15	Show	GitHub Exploit DB Packet Storm

258944	6.1	MEDIUM Network	debian opensuse_project opensuse viewvc	debian_linux leap viewvc	Cross-site scripting (XSS) vulnerability in the nav_path function in lib/viewvc.py in ViewVC before 1.0.14 and 1.1.x before 1.1.26 allows remote attackers to inject arbitrary web script or HTML via t…	CWE-79 Cross-site Scripting	CVE-2017-5938	2024-11-21 12:28	2017-03-15	Show	GitHub Exploit DB Packet Storm

258945	3.3	LOW Local	linuxcontainers	lxc	lxc-user-nic in Linux Containers (LXC) allows local users with a lxc-usernet allocation to create network interfaces on the host and choose the name of those interfaces by leveraging lack of netns ow…	CWE-862 Missing Authorization	CVE-2017-5985	2024-11-21 12:28	2017-03-15	Show	GitHub Exploit DB Packet Storm

258946	5.5	MEDIUM Local	virglrenderer_project	virglrenderer	Stack-based buffer overflow in the vrend_decode_set_framebuffer_state function in vrend_decode.c in virglrenderer before 926b9b3460a48f6454d8bbe9e44313d86a65447f, as used in Quick Emulator (QEMU), al…	CWE-787 Out-of-bounds Write	CVE-2017-5957	2024-11-21 12:28	2017-03-14	Show	GitHub Exploit DB Packet Storm

258947	9.8	CRITICAL Network	bitlbee	bitlbee-libpurple bitlbee	bitlbee-libpurple before 3.5.1 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) and possibly execute arbitrary code via a file transfer request for a contact …	CWE-476 NULL Pointer Dereference	CVE-2017-5668	2024-11-21 12:28	2017-03-14	Show	GitHub Exploit DB Packet Storm

258948	9.8	CRITICAL Network	qos redhat	logback satellite satellite_capsule	QOS.ch Logback before 1.2.0 has a serialization vulnerability affecting the SocketServer and ServerSocketReceiver components.	CWE-502 Deserialization of Untrusted Data	CVE-2017-5929	2024-11-21 12:28	2017-03-13	Show	GitHub Exploit DB Packet Storm

258949	8.8	HIGH Network	embedthis	goahead	A command-injection vulnerability exists in a web application on a custom-built GoAhead web server used on Foscam, Vstarcam, and multiple white-label IP camera models. The mail-sending form in the ma…	CWE-77 Command Injection	CVE-2017-5675	2024-11-21 12:28	2017-03-13	Show	GitHub Exploit DB Packet Storm

258950	9.8	CRITICAL Network	embedthis	goahead	A vulnerability in a custom-built GoAhead web server used on Foscam, Vstarcam, and multiple white-label IP camera models allows an attacker to craft a malformed HTTP ("GET system.ini HTTP/1.1\n\n" - …	CWE-200 Information Exposure	CVE-2017-5674	2024-11-21 12:28	2017-03-13	Show	GitHub Exploit DB Packet Storm