Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
188461 5.3 警告
Network 		jwt-scala project - jwt-scala にトークン署名検証回避の脆弱性 CWE-287
不適切な認証 		CVE-2017-10862 2018-03-7 12:23 2017-09-25 Show GitHub Exploit DB Packet Storm
188462 4.3 警告
Network 		サイボウズ - サイボウズ Office におけるアクセス制限不備の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-10857 2018-03-7 12:20 2017-10-11 Show GitHub Exploit DB Packet Storm
188463 4 警告 株式会社ぐるなび - iOS アプリ「ぐるなび」における SSL サーバ証明書の検証不備の脆弱性 CWE-Other
その他 		CVE-2015-7778 2018-03-7 12:16 2015-11-17 Show GitHub Exploit DB Packet Storm
188464 7.8 重要
Local 		株式会社日立ソリューションズ - 秘文 機密ファイル復号プログラムにおける DLL 読み込みに関する脆弱性 CWE-Other
その他 		CVE-2017-10865 2018-03-7 12:12 2017-10-11 Show GitHub Exploit DB Packet Storm
188465 7.8 重要
Local 		株式会社日立ソリューションズ - 秘文 機密ファイルビューアのインストーラにおける DLL 読み込みおよび実行ファイル呼び出しに関する脆弱性 CWE-Other
その他 		CVE-2017-10864 2018-03-7 12:08 2017-10-11 Show GitHub Exploit DB Packet Storm
188466 7.8 重要
Local 		株式会社日立ソリューションズ - 秘文 機密ファイル復号プログラムにおける DLL 読み込みに関する脆弱性 CWE-Other
その他 		CVE-2017-10863 2018-03-7 12:05 2017-10-11 Show GitHub Exploit DB Packet Storm
188467 7.8 重要
Local 		Tracker Software Products - Tracker PDF-XChange Viewer および Viewer AX SDK におけるデータ処理に関する脆弱性 CWE-19
データ処理 		CVE-2018-6462 2018-03-6 17:34 2018-01-30 Show GitHub Exploit DB Packet Storm
188468 5.4 警告
Network 		Atlassian - Atlassian Activity Streams における認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-9513 2018-03-6 17:01 2017-09-7 Show GitHub Exploit DB Packet Storm
188469 5.9 警告
Network 		Huawei - 複数の Huawei 製品における入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2017-17151 2018-03-6 16:57 2017-12-6 Show GitHub Exploit DB Packet Storm
188470 5.3 警告
Network 		Huawei - 複数の Huawei 製品におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2017-15356 2018-03-6 16:57 2017-11-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
921 7.5 HIGH
Network 		- - The Setracker2 Android Companion App (com.tgelec.setracker) versions 3.1.5 and earlier uses MD5 to generate a request signature for authenticating communications between the mobile client and the bac… CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2026-9221 2026-06-26 22:16 2026-06-26 Show GitHub Exploit DB Packet Storm
922 - - - An access control deficiency vulnerability exists in ExpressUpdate Agent for Windows. If a malicious user gains access to the product, arbitrary code could be executed with SYSTEM privileges. CWE-782
 Exposed IOCTL with Insufficient Access Control 		CVE-2026-8797 2026-06-26 22:16 2026-06-26 Show GitHub Exploit DB Packet Storm
923 4.8 MEDIUM
Network 		- - Server-Side Cross-Site Scripting and Server-Side Request Forgery vulnerability in the markdown_to_pdf action of Rapid7 InsightConnect Markdown Plugin version 3.1.4 and earlier on Linux allows remote … CWE-79
CWE-918
Cross-site Scripting
Server-Side Request Forgery (SSRF)  		CVE-2026-8661 2026-06-26 22:16 2026-06-26 Show GitHub Exploit DB Packet Storm
924 7.1 HIGH
Network 		- - libnfs through 6.0.2 before 935b8db has an xid integer underflow in READ_IOVEC in rpc_read_from_socket in lib/socket.c during a connection to a crafted NFS server, when the expected pdu size exceeds … CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2026-57918 2026-06-26 22:16 2026-06-26 Show GitHub Exploit DB Packet Storm
925 - - - A Code Injection vulnerability existed in Trellix Network Security CM and NX. A locally authenticated admin user can execute arbitrary code using the web interface and Alert artifact details. CWE-94
Code Injection 		CVE-2025-7958 2026-06-26 22:16 2026-06-26 Show GitHub Exploit DB Packet Storm
926 9.8 CRITICAL
Network 		jetbrains hub In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.148429 account takeover via predictable restore codes was possible CWE-338
 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) 		CVE-2026-56141 2026-06-26 22:10 2026-06-19 Show GitHub Exploit DB Packet Storm
927 8.8 HIGH
Network 		jetbrains hub In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.148429 privilege escalation by attaching authentication details to accounts was possible CWE-915
 Improperly Controlled Modification of Dynamically-Determined Object Attributes 		CVE-2026-56142 2026-06-26 22:06 2026-06-19 Show GitHub Exploit DB Packet Storm
928 7.8 HIGH
Local 		anydesk anydesk AnyDesk 2.5.0 contains an unquoted service path vulnerability that allows local users to execute arbitrary code with SYSTEM privileges by exploiting the service installation. Attackers can insert mal… CWE-428
 Unquoted Search Path or Element 		CVE-2016-20094 2026-06-26 22:02 2026-06-20 Show GitHub Exploit DB Packet Storm
929 7.8 HIGH
Local 		malwarebytes malwarebytes Malwarebytes 4.5 contains an unquoted service path vulnerability in the MBAMService executable that allows local attackers to escalate privileges by injecting malicious code into the system root path… CWE-428
 Unquoted Search Path or Element 		CVE-2022-50971 2026-06-26 21:59 2026-06-20 Show GitHub Exploit DB Packet Storm
930 6.5 MEDIUM
Network 		struktur libheif libheif is a HEIF and AVIF file format decoder and encoder. Prior to version 1.22.1, the uncompressed HEIF decoder validates explicit icef compressed-unit offsets using unit_offset + unit_size. Becau… CWE-125
Out-of-bounds Read 		CVE-2026-49271 2026-06-26 21:33 2026-06-20 Show GitHub Exploit DB Packet Storm