Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 25, 2026, 10:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1621 7.5 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-7250 2026-06-12 14:44 2026-06-11 Show GitHub Exploit DB Packet Storm
1622 8.7 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-8589 2026-06-12 14:44 2026-06-11 Show GitHub Exploit DB Packet Storm
1623 6.5 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-9204 2026-06-12 14:44 2026-06-11 Show GitHub Exploit DB Packet Storm
1624 4.3 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける置換文字列の無害化に関する脆弱性 CWE-153
置換文字列の不適切な無害化 		CVE-2026-9694 2026-06-12 14:44 2026-06-11 Show GitHub Exploit DB Packet Storm
1625 7.8 重要
Local 		The Open Group Unix opengroupのUnixにおける古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2025-71263 2026-06-12 14:35 2026-03-13 Show GitHub Exploit DB Packet Storm
1626 7.5 重要
Network 		Dana Powers (dpkp) kafka-python Dana Powers (dpkp)のkafka-pythonにおける過剰なサイズ値のメモリ割り当てに関する脆弱性 CWE-789
過剰なサイズ値のメモリ割り当て 		CVE-2026-10142 2026-06-12 14:35 2026-06-10 Show GitHub Exploit DB Packet Storm
1627 7.5 重要
Network 		Dana Powers (dpkp) kafka-python Dana Powers (dpkp)のkafka-pythonにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-10143 2026-06-12 14:35 2026-06-10 Show GitHub Exploit DB Packet Storm
1628 7.8 重要
Local 		マイクロソフト Microsoft Office 2024 Long-Term Servicing Channel Edition
Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft&nb… 		Microsoft Excel のリモートでコードが実行される脆弱性 CWE-843
型の取り違え 		CVE-2026-44817 2026-06-12 14:35 2026-06-9 Show GitHub Exploit DB Packet Storm
1629 7 重要
Local 		マイクロソフト Microsoft Office 2024 Long-Term Servicing Channel Edition
Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft&nb… 		Microsoft Excel のリモートでコードが実行される脆弱性 CWE-362
競合状態 		CVE-2026-44818 2026-06-12 14:35 2026-06-9 Show GitHub Exploit DB Packet Storm
1630 7.8 重要
Local 		マイクロソフト Microsoft Office 2024 Long-Term Servicing Channel Edition
Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft&nb… 		Microsoft Office のリモート コードが実行される脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-44819 2026-06-12 14:35 2026-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 25, 2026, 4:04 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
258401 7.5 HIGH
Network 		adobe experience_manager Adobe Experience Manager 6.1 and earlier has a sensitive data exposure vulnerability. CWE-200
Information Exposure 		CVE-2017-3110 2024-11-21 12:24 2017-08-12 Show GitHub Exploit DB Packet Storm
258402 9.8 CRITICAL
Network 		adobe experience_manager Adobe Experience Manager 6.2 and earlier has a malicious file execution vulnerability. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2017-3108 2024-11-21 12:24 2017-08-12 Show GitHub Exploit DB Packet Storm
258403 7.5 HIGH
Network 		adobe experience_manager Adobe Experience Manager 6.3 and earlier has a misconfiguration vulnerability. CWE-200
Information Exposure 		CVE-2017-3107 2024-11-21 12:24 2017-08-12 Show GitHub Exploit DB Packet Storm
258404 8.8 HIGH
Network 		redhat
adobe 		enterprise_linux
enterprise_linux_desktop
enterprise_linux_workstation
flash_player_desktop_runtime
flash_player 		Adobe Flash Player versions 26.0.0.137 and earlier have an exploitable type confusion vulnerability when parsing SWF files. Successful exploitation could lead to arbitrary code execution. CWE-704
 Incorrect Type Conversion or Cast 		CVE-2017-3106 2024-11-21 12:24 2017-08-12 Show GitHub Exploit DB Packet Storm
258405 7.5 HIGH
Network 		adobe digital_editions Adobe Digital Editions 4.5.4 and earlier versions 4.5.4 and earlier have an exploitable memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-3091 2024-11-21 12:24 2017-08-12 Show GitHub Exploit DB Packet Storm
258406 7.4 HIGH
Network 		adobe
redhat 		flash_player_desktop_runtime
flash_player
enterprise_linux
enterprise_linux_desktop
enterprise_linux_workstation 		Adobe Flash Player versions 26.0.0.137 and earlier have a security bypass vulnerability that leads to information disclosure when performing URL redirect. CWE-601
Open Redirect 		CVE-2017-3085 2024-11-21 12:24 2017-08-12 Show GitHub Exploit DB Packet Storm
258407 8.8 HIGH
Network 		adobe acrobat
acrobat_dc
acrobat_reader_dc
reader 		Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability. Successful exploit… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-3016 2024-11-21 12:24 2017-08-12 Show GitHub Exploit DB Packet Storm
258408 7.5 HIGH
Network 		fortinet fortios An information disclosure vulnerability in Fortinet FortiOS 5.6.0, 5.4.4 and below versions allows attacker to get FortiOS version info by inspecting FortiOS IKE VendorID packets. CWE-200
Information Exposure 		CVE-2017-3130 2024-11-21 12:24 2017-08-11 Show GitHub Exploit DB Packet Storm
258409 7.5 HIGH
Network 		apache cxf The OAuth2 Hawk and JOSE MAC Validation code in Apache CXF prior to 3.0.13 and 3.1.x prior to 3.1.10 is not using a constant time MAC signature comparison algorithm which may be exploited by sophisti… NVD-CWE-noinfo
CVE-2017-3156 2024-11-21 12:24 2017-08-11 Show GitHub Exploit DB Packet Storm
258410 6.1 MEDIUM
Network 		adobe connect Adobe Connect versions 9.6.1 and earlier have a stored cross-site scripting vulnerability. Successful exploitation could lead to a stored cross-site scripting attack. CWE-79
Cross-site Scripting 		CVE-2017-3103 2024-11-21 12:24 2017-07-17 Show GitHub Exploit DB Packet Storm