Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
190321	8.8	重要 Network	Debian Canonical	-	Bazaar におけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2017-14176	2018-01-5 12:17	2017-09-5	Show	GitHub Exploit DB Packet Storm

190322	8.8	重要 Network	ZKTECO CO., LTD.	-	ZKTime Web ソフトウェアにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2017-17056	2018-01-5 12:03	2017-11-30	Show	GitHub Exploit DB Packet Storm

190323	9.8	緊急 Network	Debian	-	Debian の most パッケージにおける OS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2016-1253	2018-01-5 11:59	2016-12-14	Show	GitHub Exploit DB Packet Storm

190324	5.9	警告 Network	Debian	-	Debian の apt パッケージにおけるチャネルおよびパスのエラーに関する脆弱性	CWE-417 チャネルおよびパスのエラー	CVE-2016-1252	2018-01-5 11:59	2016-12-13	Show	GitHub Exploit DB Packet Storm

190325	7.8	重要 Local	Flexense Ltd.	-	Flexense SyncBreeze Enterprise におけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2017-17099	2018-01-5 11:56	2017-10-11	Show	GitHub Exploit DB Packet Storm

190326	5.3	警告 Network	Lenovo	-	Lenovo XClarity Administrator における情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2017-3764	2018-01-5 11:55	2017-11-30	Show	GitHub Exploit DB Packet Storm

190327	5.5	警告 Local	GNU Project	-	GNU Binutils におけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2017-17080	2018-01-5 11:55	2017-11-16	Show	GitHub Exploit DB Packet Storm

190328	7.5	重要 Network	OpenDaylight Project	-	OpenDaylight Karaf におけるセキュリティ機能に関する脆弱性	CWE-254 セキュリティ機能	CVE-2017-1000406	2018-01-5 11:55	2017-11-28	Show	GitHub Exploit DB Packet Storm

190329	9.8	緊急 Network	Apache Software Foundation	-	Apache Qpid Broker-J における認可・権限・アクセス制御に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2017-15702	2018-01-5 11:53	2017-11-16	Show	GitHub Exploit DB Packet Storm

190330	7.5	重要 Network	Apache Software Foundation	-	Apache Qpid Broker-J におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2017-15701	2018-01-5 11:53	2017-10-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
3261	8.8	HIGH Local	apple	macos	This issue was addressed with improved checks to prevent unauthorized actions. This issue is fixed in macOS Sequoia 15.4. An app may be able to break out of its sandbox.	CWE-693 Protection Mechanism Failure	CVE-2025-24284	2026-06-12 21:38	2026-06-12	Show	GitHub Exploit DB Packet Storm

3262	5.5	MEDIUM Local	apple	macos	The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. A malicious app may be able to access private information.	CWE-693 Protection Mechanism Failure	CVE-2025-30431	2026-06-12 21:38	2026-06-12	Show	GitHub Exploit DB Packet Storm

3263	5.5	MEDIUM Local	apple	macos	A privacy issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.4. An app may be able to access sensitive user data.	CWE-359 Exposure of Private Personal Information to an Unauthorized Actor	CVE-2025-30459	2026-06-12 21:37	2026-06-12	Show	GitHub Exploit DB Packet Storm

3264	7.8	HIGH Local	apple	macos	The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.4. An app may be able to bypass launch constraint protections and execute malicious code with elevated privileges.	CWE-269 Improper Privilege Management	CVE-2025-31272	2026-06-12 21:37	2026-06-12	Show	GitHub Exploit DB Packet Storm

3265	5.5	MEDIUM Local	apple	macos	An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Tahoe 26.1. A malicious app may be able to access sensitive user data.	CWE-284 Improper Access Control	CVE-2025-43339	2026-06-12 21:37	2026-06-12	Show	GitHub Exploit DB Packet Storm

3266	5.5	MEDIUM Local	apple	macos	This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sequoia 15.4. An app may be able to access protected user data.	CWE-59 Link Following	CVE-2025-46293	2026-06-12 21:36	2026-06-12	Show	GitHub Exploit DB Packet Storm

3267	5.3	MEDIUM Network	apple	ipados iphone_os macos	An authorization issue was addressed with improved state management. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. An app may be able to leak sensitive user information.	CWE-284 Improper Access Control	CVE-2025-46308	2026-06-12 21:36	2026-06-12	Show	GitHub Exploit DB Packet Storm

3268	7.5	HIGH Network	apple	macos	A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Tahoe 26.1. An app may be able to access protected user data.	CWE-284 Improper Access Control	CVE-2025-46315	2026-06-12 21:35	2026-06-12	Show	GitHub Exploit DB Packet Storm

3269	8.1	HIGH Network	-	-	SolidInvoice is an open-source invoicing platform. Prior to version 2.3.17, the company logo upload feature accepts any file type without validation. An authenticated administrator can upload an SVG …	CWE-79 CWE-434 Cross-site Scripting Unrestricted Upload of File with Dangerous Type	CVE-2026-46489	2026-06-12 20:16	2026-06-12	Show	GitHub Exploit DB Packet Storm

3270	9.8	CRITICAL Network	-	-	Improper neutralization of special elements used in an expression language statement ('expression language injection') vulnerability in Soagen Informatics Technologies Software and Consulting Inc. Ap…	CWE-917 Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')	CVE-2026-11561	2026-06-12 19:16	2026-06-11	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed