Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 25, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1621	3.7	低 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-6976	2026-06-12 14:44	2026-06-11	Show	GitHub Exploit DB Packet Storm

1622	7.5	重要 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-7250	2026-06-12 14:44	2026-06-11	Show	GitHub Exploit DB Packet Storm

1623	8.7	重要 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-8589	2026-06-12 14:44	2026-06-11	Show	GitHub Exploit DB Packet Storm

1624	6.5	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-9204	2026-06-12 14:44	2026-06-11	Show	GitHub Exploit DB Packet Storm

1625	4.3	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける置換文字列の無害化に関する脆弱性	CWE-153 置換文字列の不適切な無害化	CVE-2026-9694	2026-06-12 14:44	2026-06-11	Show	GitHub Exploit DB Packet Storm

1626	7.8	重要 Local	The Open Group	Unix	opengroupのUnixにおける古典的バッファオーバーフローの脆弱性	CWE-120 古典的バッファオーバーフロー	CVE-2025-71263	2026-06-12 14:35	2026-03-13	Show	GitHub Exploit DB Packet Storm

1627	7.5	重要 Network	Dana Powers (dpkp)	kafka-python	Dana Powers (dpkp)のkafka-pythonにおける過剰なサイズ値のメモリ割り当てに関する脆弱性	CWE-789 過剰なサイズ値のメモリ割り当て	CVE-2026-10142	2026-06-12 14:35	2026-06-10	Show	GitHub Exploit DB Packet Storm

1628	7.5	重要 Network	Dana Powers (dpkp)	kafka-python	Dana Powers (dpkp)のkafka-pythonにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-10143	2026-06-12 14:35	2026-06-10	Show	GitHub Exploit DB Packet Storm

1629	7.8	重要 Local	マイクロソフト	Microsoft Office 2024 Long-Term Servicing Channel Edition Microsoft Office 2021 Long Term Servicing Channel Edition Microsoft&nb…	Microsoft Excel のリモートでコードが実行される脆弱性	CWE-843 型の取り違え	CVE-2026-44817	2026-06-12 14:35	2026-06-9	Show	GitHub Exploit DB Packet Storm

1630	7	重要 Local	マイクロソフト	Microsoft Office 2024 Long-Term Servicing Channel Edition Microsoft Office 2021 Long Term Servicing Channel Edition Microsoft&nb…	Microsoft Excel のリモートでコードが実行される脆弱性	CWE-362 競合状態	CVE-2026-44818	2026-06-12 14:35	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 25, 2026, 4:04 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
258471	7.8	HIGH Local	poweriso	poweriso	A use-after-free vulnerability exists in the .ISO parsing functionality of PowerISO 6.8. A specially crafted .ISO file can cause a vulnerability resulting in potential code execution. An attacker can…	CWE-416 Use After Free	CVE-2017-2823	2024-11-21 12:24	2017-05-24	Show	GitHub Exploit DB Packet Storm

258472	7.8	HIGH Local	hancom	thinkfree_office_neo hangul_word_processor	An exploitable heap-based buffer overflow exists in the Hangul Word Processor component (version 9.6.1.4350) of Hancom Thinkfree Office NEO 9.6.1.4902. A specially crafted document stream can cause a…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-2819	2024-11-21 12:24	2017-05-24	Show	GitHub Exploit DB Packet Storm

258473	7.8	HIGH Local	poweriso	poweriso	A stack buffer overflow vulnerability exists in the ISO parsing functionality of Power Software Ltd PowerISO 6.8. A specially crafted ISO file can cause a vulnerability resulting in potential code ex…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-2817	2024-11-21 12:24	2017-05-24	Show	GitHub Exploit DB Packet Storm

258474	9.8	CRITICAL Network	botan_project	botan	A programming error exists in a way Randombit Botan cryptographic library version 2.0.1 implements x500 string comparisons which could lead to certificate verification issues and abuse. A specially c…	CWE-125 Out-of-bounds Read	CVE-2017-2801	2024-11-21 12:24	2017-05-24	Show	GitHub Exploit DB Packet Storm

258475	9.8	CRITICAL Network	wolfssl	wolfssl	A specially crafted x509 certificate can cause a single out of bounds byte overwrite in wolfSSL through 3.10.2 resulting in potential certificate validation vulnerabilities, denial of service and pos…	CWE-295 Improper Certificate Validation	CVE-2017-2800	2024-11-21 12:24	2017-05-24	Show	GitHub Exploit DB Packet Storm

258476	7.8	HIGH Local	marklogic	marklogic	An exploitable heap corruption vulnerability exists in the AddSst functionality of Antenna House DMC HTMLFilter as used by MarkLogic 8.0-6. A specially crafted XLS file can cause a heap corruption re…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-2799	2024-11-21 12:24	2017-05-24	Show	GitHub Exploit DB Packet Storm

258477	7.8	HIGH Local	marklogic	marklogic	An exploitable heap corruption vulnerability exists in the GetIndexArray functionality of Antenna House DMC HTMLFilter as used by MarkLogic 8.0-6. A specially crafted XLS file can cause a heap corrup…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-2798	2024-11-21 12:24	2017-05-24	Show	GitHub Exploit DB Packet Storm

258478	4.8	MEDIUM Network	fortinet	fortios	A stored XSS (Cross-Site-Scripting) vulnerability in Fortinet FortiOS allows attackers to execute unauthorized code or commands via the policy global-label parameter.	CWE-79 Cross-site Scripting	CVE-2017-3128	2024-11-21 12:24	2017-05-24	Show	GitHub Exploit DB Packet Storm

258479	7.8	HIGH Local	marklogic	marklogic	An exploitable heap overflow vulnerability exists in the ParseEnvironment functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-2797	2024-11-21 12:24	2017-05-24	Show	GitHub Exploit DB Packet Storm

258480	7.8	HIGH Local	marklogic	marklogic	An exploitable stack-based buffer overflow vulnerability exists in the DHFSummary functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6. A specially crafted PPT file can cause a sta…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-2794	2024-11-21 12:24	2017-05-24	Show	GitHub Exploit DB Packet Storm