Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
189221 8.8 重要
Network 		WordPress.org - WordPress の wp-admin/user-new.php におけるアクセス制限を回避される脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-17091 2017-12-18 11:49 2017-11-29 Show GitHub Exploit DB Packet Storm
189222 8.1 重要
Network 		Shibboleth
Debian		 - OpenSAML におけるデジタル署名の検証に関する脆弱性 CWE-347
デジタル署名の不適切な検証 		CVE-2017-16853 2017-12-18 11:45 2017-11-15 Show GitHub Exploit DB Packet Storm
189223 6.5 警告
Adjacent 		Amazon.com, Inc. - Amazon Key におけるデータ処理に関する脆弱性 CWE-19
データ処理 		CVE-2017-16867 2017-12-18 11:42 2017-11-16 Show GitHub Exploit DB Packet Storm
189224 7.8 重要
Local 		Google - Android の MediaTek soc ドライバにおける認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-0865 2017-12-18 11:29 2017-11-6 Show GitHub Exploit DB Packet Storm
189225 7.8 重要
Local 		Google - Android の MediaTek ioctl における認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-0864 2017-12-18 11:29 2017-11-6 Show GitHub Exploit DB Packet Storm
189226 7.8 重要
Local 		Google - Android の MediaTek ccci における認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-0843 2017-12-18 11:29 2017-11-6 Show GitHub Exploit DB Packet Storm
189227 6.7 警告
Local 		シスコシステムズ - Cisco Application Policy Infrastructure Controller におけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2017-12352 2017-12-15 18:25 2017-11-29 Show GitHub Exploit DB Packet Storm
189228 6.8 警告
Local 		シスコシステムズ - Cisco Nexus シリーズスイッチにおける認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-12342 2017-12-15 18:25 2017-11-29 Show GitHub Exploit DB Packet Storm
189229 5.8 警告
Network 		シスコシステムズ - Cisco IP Phone 8800 シリーズデバイスにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2017-12328 2017-12-15 18:25 2017-11-29 Show GitHub Exploit DB Packet Storm
189230 8.8 重要
Network 		OTRS プロジェクト
Debian		 - Open Ticket Request System におけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2017-16664 2017-12-15 16:59 2017-11-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
521 - - - A logic error in OAuthRequestFilter rejects legitimate requests originating from the bound IP address, while blindly allowing requests from any other IP address. Enabling this security feature inadv… New CWE-20
 Improper Input Validation  		CVE-2026-50628 2026-06-12 22:08 2026-06-12 Show GitHub Exploit DB Packet Storm
522 8.1 HIGH
Network 		qnap file_station A buffer overflow vulnerability has been reported to affect File Station 5. If a remote attacker gains a user account, they can then exploit the vulnerability to modify memory or crash processes. We… Update CWE-121
Stack-based Buffer Overflow 		CVE-2026-26239 2026-06-12 21:53 2026-06-10 Show GitHub Exploit DB Packet Storm
523 9.1 CRITICAL
Network 		qnap file_station A buffer overflow vulnerability has been reported to affect File Station 5. The remote attackers can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vul… Update CWE-121
Stack-based Buffer Overflow 		CVE-2026-26240 2026-06-12 21:52 2026-06-10 Show GitHub Exploit DB Packet Storm
524 9.1 CRITICAL
Network 		qnap file_station A buffer overflow vulnerability has been reported to affect File Station 5. The remote attackers can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vul… Update CWE-121
Stack-based Buffer Overflow 		CVE-2026-26241 2026-06-12 21:51 2026-06-10 Show GitHub Exploit DB Packet Storm
525 10.0 CRITICAL
Network 		ivanti standalone_sentry An OS Command Injection vulnerability in Ivanti Sentry before the R10.5.2, R10.6.2 and R10.7.1 versions allows a remote unauthenticated user to achieve root-level remote code execution Update CWE-78
OS Command  		CVE-2026-10520 2026-06-12 21:42 2026-06-10 Show GitHub Exploit DB Packet Storm
526 5.5 MEDIUM
Local 		apple macos A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Sequoia 15.4. An app may be able to access sensitive user data. New CWE-22
Path Traversal 		CVE-2025-24268 2026-06-12 21:38 2026-06-12 Show GitHub Exploit DB Packet Storm
527 8.8 HIGH
Local 		apple macos This issue was addressed with improved checks to prevent unauthorized actions. This issue is fixed in macOS Sequoia 15.4. An app may be able to break out of its sandbox. New CWE-693
 Protection Mechanism Failure 		CVE-2025-24284 2026-06-12 21:38 2026-06-12 Show GitHub Exploit DB Packet Storm
528 5.5 MEDIUM
Local 		apple macos The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. A malicious app may be able to access private information. New CWE-693
 Protection Mechanism Failure 		CVE-2025-30431 2026-06-12 21:38 2026-06-12 Show GitHub Exploit DB Packet Storm
529 5.5 MEDIUM
Local 		apple macos A privacy issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.4. An app may be able to access sensitive user data. New CWE-359
 Exposure of Private Personal Information to an Unauthorized Actor 		CVE-2025-30459 2026-06-12 21:37 2026-06-12 Show GitHub Exploit DB Packet Storm
530 7.8 HIGH
Local 		apple macos The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4. An app may be able to bypass launch constraint protections and execute malicious code with elevated privileges. New CWE-269
 Improper Privilege Management 		CVE-2025-31272 2026-06-12 21:37 2026-06-12 Show GitHub Exploit DB Packet Storm