Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
196041 8.1 重要
Network
NetApp - NetApp SnapCenter Server におけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御
CVE-2015-7887 2017-09-4 18:00 2015-10-26 Show GitHub Exploit DB Packet Storm
196042 9.8 緊急
Network
シスコシステムズ - Cisco Identity Services Engine における認証に関する脆弱性 CWE-287
不適切な認証
CVE-2017-6747 2017-09-4 17:53 2017-08-2 Show GitHub Exploit DB Packet Storm
196043 7.5 重要
Network
シスコシステムズ - Cisco Videoscape Distribution Suite for Television におけるバッファエラーの脆弱性 CWE-119
バッファエラー
CVE-2017-6745 2017-09-4 17:53 2017-08-2 Show GitHub Exploit DB Packet Storm
196044 4.7 警告
Local
teether - authd における競合状態に関する脆弱性 CWE-362
競合状態
CVE-2016-4982 2017-09-4 17:48 2016-06-13 Show GitHub Exploit DB Packet Storm
196045 7.5 重要
Network
シスコシステムズ - Cisco IOS XE ソフトウェアにおける認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2017-6664 2017-09-4 17:40 2017-07-26 Show GitHub Exploit DB Packet Storm
196046 6.5 警告
Adjacent
シスコシステムズ - Cisco IOS ソフトウェアおよび Cisco IOS XE ソフトウェアにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御
CVE-2017-6663 2017-09-4 17:40 2017-07-26 Show GitHub Exploit DB Packet Storm
196047 7.5 重要
Network
Peter Selinger - Potrace における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り
CVE-2017-12067 2017-09-4 17:33 2017-07-31 Show GitHub Exploit DB Packet Storm
196048 6.1 警告
Network
Digium - FreePBX 用 Digium Addons モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2015-2690 2017-09-4 17:29 2015-06-30 Show GitHub Exploit DB Packet Storm
196049 4 警告
Local
GNU Project - GNU Compiler Collection における暗号における脆弱な PRNG の使用に関する脆弱性 CWE-338
暗号における脆弱な PRNG の使用
CVE-2017-11671 2017-09-4 16:53 2017-03-25 Show GitHub Exploit DB Packet Storm
196050 6.1 警告
Network
FineCMS project - dayrui FineCms におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2017-11629 2017-09-4 16:53 2017-07-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2751 9.8 CRITICAL
Network
- - An issue in SNMP4J-Agent 3.8.3 allows a remote attacker to execute arbitrary code via the snmp4jCfgStoragePath component. CWE-73
CWE-284
CWE-502
 External Control of File Name or Path
Improper Access Control
 Deserialization of Untrusted Data
CVE-2026-39006 2026-06-17 00:50 2026-06-16 Show GitHub Exploit DB Packet Storm
2752 7.5 HIGH
Network
- - An issue in Observeinc's Observe v.2026-01-28 and before allows a remote attacker to obtain sensitive information via the CSV Log export component. CWE-200
Information Exposure
CVE-2026-39007 2026-06-17 00:50 2026-06-16 Show GitHub Exploit DB Packet Storm
2753 - - - An issue in Iru, Inc Kandji Agent before v.4.7.5(5374) allows a local attacker to escalate privileges via a client validation gap to invoke restricted agent functionality. - CVE-2026-39118 2026-06-17 00:50 2026-06-16 Show GitHub Exploit DB Packet Storm
2754 9.8 CRITICAL
Network
- - Datadog, Inc Vector v0.54.0 was discovered to contain a SQL injection vulnerability in the set_uri_query parameter in the KeyPartitioner::partition function. This vulnerability allows attackers to ac… CWE-89
SQL Injection
CVE-2026-39196 2026-06-17 00:50 2026-06-16 Show GitHub Exploit DB Packet Storm
2755 - - - An issue in the /util/http/prelude.rs endpoint of Datadog, Inc Vector v0.54.0 allows attackers to cause a Denial of Service (DoS) via a crafted request or payload. - CVE-2026-39197 2026-06-17 00:50 2026-06-16 Show GitHub Exploit DB Packet Storm
2756 9.8 CRITICAL
Network
- - Metacat is data repository software that helps researchers preserve, share, and discover data. Versions 2.0.0 and and above contain an unauthenticated SQL injection in the /harvesterRegistration endp… CWE-89
CWE-287
SQL Injection
Improper Authentication
CVE-2026-48114 2026-06-17 00:50 2026-06-16 Show GitHub Exploit DB Packet Storm
2757 7.5 HIGH
Network
- - An information disclosure vulnerability in the configuration endpoint of Ben Busby whoogle-search v1.2.3 allows attackers to obtain sensitive information via a crafted GET request. CWE-200
Information Exposure
CVE-2026-50870 2026-06-17 00:50 2026-06-16 Show GitHub Exploit DB Packet Storm
2758 9.8 CRITICAL
Network
- - An OS command injection vulnerability in the media archiving and export pipeline component of kanishka-linux Reminiscence v0.3.0 allows attackers to execute arbitrary commands via supplying a crafted… CWE-94
Code Injection
CVE-2026-50871 2026-06-17 00:50 2026-06-16 Show GitHub Exploit DB Packet Storm
2759 9.8 CRITICAL
Network
- - An issue in the loopback request handling component of fossar selfoss v2.20-SNAPSHOT allows attackers to execute arbitrary commands and obtain sensitive information via supplying a crafted HTTP reque… CWE-94
Code Injection
CVE-2026-50872 2026-06-17 00:50 2026-06-16 Show GitHub Exploit DB Packet Storm
2760 9.8 CRITICAL
Network
- - An arbitrary file upload vulnerability in the attachment handling component of flatnotes v5.5.4 allows attackers to execute arbitrary code via uploading a crafted HTML or SVG file. CWE-434
 Unrestricted Upload of File with Dangerous Type 
CVE-2026-50873 2026-06-17 00:50 2026-06-16 Show GitHub Exploit DB Packet Storm