Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 4:12 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
189721	8.8	重要 Network	KeystoneJS	-	KeystoneJS におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2017-16570	2017-11-30 18:03	2017-10-23	Show	GitHub Exploit DB Packet Storm

189722	8.8	重要 Network	サムスン	-	Samsung SRN-1670D デバイス上で稼動する Web Viewer における危険なタイプのファイルの無制限アップロードに関する脆弱性	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2017-16524	2017-11-30 18:03	2017-11-6	Show	GitHub Exploit DB Packet Storm

189723	7.8	重要 Local	Canonical SOSreport project	-	SoS の sosreport におけるリンク解釈に関する脆弱性	CWE-59 リンク解釈の問題	CVE-2015-7529	2017-11-30 18:03	2015-12-5	Show	GitHub Exploit DB Packet Storm

189724	6.8	警告 Adjacent	シマンテック	-	Symantec Endpoint Encryption における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2017-15526	2017-11-30 17:13	2017-11-8	Show	GitHub Exploit DB Packet Storm

189725	4.5	警告 Adjacent	シマンテック	-	Symantec Endpoint Encryption におけるリソース管理に関する脆弱性	CWE-399 リソース管理の問題	CVE-2017-15525	2017-11-30 17:13	2017-11-8	Show	GitHub Exploit DB Packet Storm

189726	9.8	緊急 Network	Cesanta	-	Cesanta Mongoose における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2017-2922	2017-11-30 17:03	2017-10-31	Show	GitHub Exploit DB Packet Storm

189727	9.8	緊急 Network	Cesanta	-	Cesanta Mongoose における整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2017-2921	2017-11-30 17:03	2017-10-31	Show	GitHub Exploit DB Packet Storm

189728	7.5	重要 Network	Cesanta	-	Cesanta Mongoose におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2017-2909	2017-11-30 17:03	2017-10-31	Show	GitHub Exploit DB Packet Storm

189729	8.2	重要 Network	Cesanta	-	Cesanta Mongoose における境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2017-2895	2017-11-30 17:03	2017-10-31	Show	GitHub Exploit DB Packet Storm

189730	9.8	緊急 Network	Cesanta	-	Cesanta Mongoose におけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2017-2894	2017-11-30 17:03	2017-10-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
741	8.6	HIGH Network	-	-	The Xstore WordPress theme before 9.7.3 does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL in… New	CWE-89 SQL Injection	CVE-2026-3326	2026-06-10 20:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

742	4.3	MEDIUM Network	7-zip	7-zip	7-Zip is a file archiver with a high compression ratio. Versions 9.11 through 26.00 contain a heap out-of-bounds read of up to 3 bytes in the UDF disc image handler's File Identifier Descriptor parse… Update	CWE-125 Out-of-bounds Read	CVE-2026-48102	2026-06-10 19:45	2026-06-6	Show	GitHub Exploit DB Packet Storm

743	-		-	-	Debusine is an integrated solution to build, distribute and maintain a Debian-based distribution. Debian source packages (.dsc) and upload artifacts (.changes) are manifest files that name the files … New	-	CVE-2026-11853	2026-06-10 19:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

744	-		-	-	Debusine is an integrated solution to build, distribute and maintain a Debian-based distribution. Files managed by debusine are organized into artifacts. The endpoints that create and delete relation… New	-	CVE-2026-11852	2026-06-10 19:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

745	7.5	HIGH Network	-	-	Issue summary: When CMS password-based decryption (RFC 3211 / PWRI key unwrap) processes attacker-supplied CMS data, an attacker-chosen stream-mode KEK cipher can trigger a heap out-of-bounds read in… New	CWE-125 Out-of-bounds Read	CVE-2026-9076	2026-06-10 17:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

746	8.1	HIGH Network	-	-	Issue summary: A signed integer overflow when sizing the destination buffer for Unicode output in ASN1_mbstring_ncopy() can lead to a heap buffer overflow. Impact summary: A heap buffer overflow may… New	CWE-787 Out-of-bounds Write	CVE-2026-7383	2026-06-10 17:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

747	4.8	MEDIUM Network	-	-	Issue summary: The implementations of AES-SIV (RFC 5297) and AES-GCM-SIV (RFC 8452) mishandle the authentication of AAD (Additional Authenticated Data) with an empty ciphertext allowing a forgery of … New	CWE-325 Missing Required Cryptographic Step	CVE-2026-45446	2026-06-10 17:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

748	7.5	HIGH Network	-	-	Issue summary: When an application drives an AES-OCB context through the public EVP_Cipher() one-shot interface, the application-supplied initialisation vector (IV) is silently discarded. Impact sum… New	CWE-325 Missing Required Cryptographic Step	CVE-2026-45445	2026-06-10 17:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

749	6.2	MEDIUM Local	-	-	Issue summary: When the X509_VERIFY_PARAM_set1_email is called by an application to validate a crafted e-mail address, such as during S/MIME message validation, an out of bounds read can happen. Imp… New	CWE-125 Out-of-bounds Read	CVE-2026-42771	2026-06-10 17:16	2026-06-10	Show	GitHub Exploit DB Packet Storm

750	3.7	LOW Network	-	-	Issue summary: When EVP_PKEY_derive_set_peer() is called with a DHX (X9.42) peer key, the peer key is not properly checked for the subgroup membership. Impact summary: A malicious peer which present… New	CWE-325 Missing Required Cryptographic Step	CVE-2026-42770	2026-06-10 17:16	2026-06-10	Show	GitHub Exploit DB Packet Storm