Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
196031	8.2	重要 Network	オラクル	-	Oracle Fusion Middleware の BI Publisher における Web Server に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-10030	2017-08-21 12:26	2017-07-18	Show	GitHub Exploit DB Packet Storm

196032	8.2	重要 Network	オラクル	-	Oracle Fusion Middleware の BI Publisher における Web Server に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-10029	2017-08-21 12:26	2017-07-18	Show	GitHub Exploit DB Packet Storm

196033	8.2	重要 Network	オラクル	-	Oracle Fusion Middleware の BI Publisher における Web Server に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-10028	2017-08-21 12:26	2017-07-18	Show	GitHub Exploit DB Packet Storm

196034	8.2	重要 Network	オラクル	-	Oracle Fusion Middleware の BI Publisher における BI Publisher Security に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-10025	2017-08-21 12:26	2017-07-18	Show	GitHub Exploit DB Packet Storm

196035	8.2	重要 Network	オラクル	-	Oracle Fusion Middleware の BI Publisher における Layout Tools に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-10024	2017-08-21 12:26	2017-07-18	Show	GitHub Exploit DB Packet Storm

196036	5.4	警告 Network	オラクル	-	Oracle Supply Chain Products Suite の Oracle Agile PLM における Security に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2017-10094	2017-08-21 12:16	2017-07-18	Show	GitHub Exploit DB Packet Storm

196037	5.3	警告 Network	オラクル	-	Oracle Supply Chain Products Suite の Oracle Agile PLM における Security に関する脆弱性	CWE-200 情報漏えい	CVE-2017-10093	2017-08-21 12:16	2017-07-18	Show	GitHub Exploit DB Packet Storm

196038	6.1	警告 Network	オラクル	-	Oracle Supply Chain Products Suite の Oracle Agile PLM における Security に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-10092	2017-08-21 12:16	2017-07-18	Show	GitHub Exploit DB Packet Storm

196039	3.4	低 Local	オラクル	-	Oracle Supply Chain Products Suite の Oracle Agile PLM における Security に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-10088	2017-08-21 12:16	2017-07-18	Show	GitHub Exploit DB Packet Storm

196040	6.1	警告 Network	オラクル	-	Oracle Supply Chain Products Suite の Oracle Agile PLM における Security に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-10082	2017-08-21 12:16	2017-07-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
691	7.5	HIGH Network	-	-	The webp decoder can panic when processing a VP8 chunk with dimensions that do not match the canvas size. New	-	CVE-2026-46601	2026-06-27 02:16	2026-06-26	Show	GitHub Exploit DB Packet Storm

692	7.5	HIGH Network	-	-	An integer overflow in the PSD parser compnent of FastStone Image Viewer v8.3 allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via supplying a crafted PSD file. New	CWE-400 Uncontrolled Resource Consumption	CVE-2026-30041	2026-06-27 02:16	2026-06-27	Show	GitHub Exploit DB Packet Storm

693	6.5	MEDIUM Network	-	-	A heap overflow in the FSViewer.exe process of FastStone Image Viewer v8.3 allows attackers to cause a execute arbitrary code in the context of the current process via supplying a crafted JPEG 2000 (… New	CWE-122 Heap-based Buffer Overflow	CVE-2026-30040	2026-06-27 02:16	2026-06-27	Show	GitHub Exploit DB Packet Storm

694	8.4	HIGH Local	-	-	Broken Access Control in the devLXDInstancePatchHandler component of Canonical LXD allows an untrusted guest to mount, read, and overwrite another guest's custom storage volume via a crafted device P… New	CWE-639 CWE-862 Authorization Bypass Through User-Controlled Key Missing Authorization	CVE-2026-12411	2026-06-27 02:16	2026-06-27	Show	GitHub Exploit DB Packet Storm

695	7.5	HIGH Network	-	-	Bytes::Random::Secure::Tiny versions through 1.011 for Perl share internal state across forked processes. When an object is initialised before forking, then the internal state for the PRNG is shared… New	CWE-335 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG)	CVE-2026-11702	2026-06-27 02:16	2026-06-26	Show	GitHub Exploit DB Packet Storm

696	7.5	HIGH Network	-	-	Bytes::Random::Secure versions through 0.29 for Perl share internal state across forked processes. When an object is initialised before forking, or when the functional interface is used, then the in… New	CWE-335 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG)	CVE-2026-11625	2026-06-27 02:16	2026-06-26	Show	GitHub Exploit DB Packet Storm

697	7.5	HIGH Network	wolfssl	wolfssl	wolfSSL's AVX2-optimized ML-KEM implementation (mlkem_cmp_avx2) compares only 1536 of the 1568 ciphertext bytes during the Fujisaki-Okamoto re-encryption check in ML-KEM-1024 decapsulation. Ciphertex… New	CWE-697 Incorrect Comparison	CVE-2026-10097	2026-06-27 02:16	2026-06-26	Show	GitHub Exploit DB Packet Storm

698	-		-	-	An observable timing discrepancy in the ASP could allow a privileged attacker to perform a brute-force attack against the hash message authentication code, allowing the input of an arbitrary message,… New	CWE-208 Information Exposure Through Timing Discrepancy	CVE-2023-20572	2026-06-27 02:16	2026-06-27	Show	GitHub Exploit DB Packet Storm

699	-		-	-	An observable timing discrepancy in the ASP could allow a privileged attacker to perform a brute-force attack against the hash message authentication code, allowing arbitrary message input, potential… New	CWE-208 Information Exposure Through Timing Discrepancy	CVE-2023-20540	2026-06-27 02:16	2026-06-27	Show	GitHub Exploit DB Packet Storm

700	8.8	HIGH Network	langflow	langflow	Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.0, Langflow's /api/v1/monitor router exposes 7 endpoints that perform read, write, and delete operations on… New	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-33760	2026-06-27 02:10	2026-06-24	Show	GitHub Exploit DB Packet Storm