Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 21, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
11	8.1	重要 Network	Grafana Labs	Grafana	Grafana LabsのGrafanaにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-33381	2026-06-17 15:46	2026-05-13	Show	GitHub Exploit DB Packet Storm

12	5.4	警告 Network	langflow	Langflow Desktop	langflowのLangflow Desktopにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-3341	2026-06-17 15:46	2026-06-11	Show	GitHub Exploit DB Packet Storm

13	6.1	警告 Network	IBM	IBM DevOps Plan	IBMのIBM DevOps PlanにおけるHTTP ヘッダのスクリプト構文の不適切な無効化に関する脆弱性	CWE-644 HTTP ヘッダのスクリプト構文の不適切な無効化	CVE-2026-4096	2026-06-17 15:46	2026-06-11	Show	GitHub Exploit DB Packet Storm

14	5.4	警告 Network	VMware	VMware Cloud Foundation VMware Telco Cloud Platform VMware vSphere VMware Aria Operations	VMwareのVMware Aria Operations等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 CWE-79	CVE-2026-41722	2026-06-17 15:46	2026-06-8	Show	GitHub Exploit DB Packet Storm

15	8	重要 Network	VMware	VMware Cloud Foundation VMware Telco Cloud Platform VMware vSphere VMware Aria Operations	VMwareのVMware Aria Operations等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-41723	2026-06-17 15:46	2026-06-8	Show	GitHub Exploit DB Packet Storm

16	5.9	警告 Network	OpenSSL Project	OpenSSL	OpenSSL ProjectのOpenSSLにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-42767	2026-06-17 15:46	2026-06-9	Show	GitHub Exploit DB Packet Storm

17	3.7	低 Network	OpenSSL Project	OpenSSL	OpenSSL ProjectのOpenSSLにおける暗号化処理の不備に関する脆弱性	CWE-325 暗号化処理の不備	CVE-2026-42770	2026-06-17 15:46	2026-06-9	Show	GitHub Exploit DB Packet Storm

18	6.2	警告 Local	OpenSSL Project	OpenSSL	OpenSSL ProjectのOpenSSLにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-42771	2026-06-17 15:46	2026-06-9	Show	GitHub Exploit DB Packet Storm

19	8.8	重要 Network	Kovidgoyal	Kitty	KovidgoyalのKittyにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-42850	2026-06-17 15:46	2026-06-12	Show	GitHub Exploit DB Packet Storm

20	7.8	重要 Local	Kovidgoyal	Kitty	KovidgoyalのKittyにおける複数の脆弱性	CWE-862 CWE-94	CVE-2026-42851	2026-06-17 15:46	2026-06-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
258941	7.3	HIGH Local	jpki	the_public_certification_service_for_individuals	Untrusted search path vulnerability in installers for The Public Certification Service for Individuals "The JPKI user's software (for Windows 7 and later)" Ver3.1 and earlier, The Public Certificatio…	CWE-426 Untrusted Search Path	CVE-2017-2157	2024-11-21 12:23	2017-05-13	Show	GitHub Exploit DB Packet Storm

258942	6.5	MEDIUM Adjacent	siemens	simatic_cp_343-1_std_firmware simatic_cp_343-1_lean_firmware simatic_cp_343-1_adv_firmware simatic_cp_443-1_std_firmware simatic_cp_443-1_adv_firmware simatic_cp_443-1_opc-ua_firmware<…	Specially crafted PROFINET DCP packets sent on a local Ethernet segment (Layer 2) to an affected product could cause a denial of service condition of that product. Human interaction is required to re…	CWE-400 Uncontrolled Resource Consumption	CVE-2017-2681	2024-11-21 12:23	2017-05-11	Show	GitHub Exploit DB Packet Storm

258943	6.5	MEDIUM Adjacent	siemens	simatic_cp_343-1_std_firmware simatic_cp_343-1_lean_firmware simatic_cp_343-1_adv_firmware simatic_cp_443-1_std_firmware simatic_cp_443-1_adv_firmware simatic_cp_443-1_opc-ua_firmware<…	Specially crafted PROFINET DCP broadcast packets could cause a denial of service condition of affected products on a local Ethernet segment (Layer 2). Human interaction is required to recover the sys…	CWE-400 Uncontrolled Resource Consumption	CVE-2017-2680	2024-11-21 12:23	2017-05-11	Show	GitHub Exploit DB Packet Storm

258944	7.8	HIGH Local	vivaldi	vivaldi_installer_for_windows	Untrusted search path vulnerability in Vivaldi installer for Windows prior to version 1.7.735.48 allows an attacker to execute arbitrary code via a specially crafted executable file in an unspecified…	CWE-426 Untrusted Search Path	CVE-2017-2156	2024-11-21 12:23	2017-04-29	Show	GitHub Exploit DB Packet Storm

258945	8.8	HIGH Network	i.con_corporation	hoozin_viewer	Buffer overflow in Hoozin Viewer 2, 3, 4.1.5.15 and earlier, 5.1.2.13 and earlier, and 6.0.3.09 and earlier allows remote attackers to execute arbitrary code via specially crafted webpage.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-2155	2024-11-21 12:23	2017-04-29	Show	GitHub Exploit DB Packet Storm

258946	5.5	MEDIUM Local	juniper	northstar_controller	A denial of service vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1, may allow an authenticated user to cause widespread denials of service to…	CWE-400 Uncontrolled Resource Consumption	CVE-2017-2322	2024-11-21 12:23	2017-04-25	Show	GitHub Exploit DB Packet Storm

258947	5.3	MEDIUM Network	juniper	junos	On Juniper Networks Junos OS 15.1 releases from 15.1R3 to 15.1R4, 16.1 prior to 16.1R3, on M/MX platforms where Enhanced Subscriber Management for DHCPv6 subscribers is configured, a vulnerability in…	CWE-20 Improper Input Validation	CVE-2017-2340	2024-11-21 12:23	2017-04-25	Show	GitHub Exploit DB Packet Storm

258948	7.5	HIGH Network	juniper	northstar_controller	An information leak vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow a network-based malicious attacker to perform a man-in-the-middl…	CWE-200 Information Exposure	CVE-2017-2334	2024-11-21 12:23	2017-04-25	Show	GitHub Exploit DB Packet Storm

258949	6.5	MEDIUM Network	juniper	northstar_controller	A persistent denial of service vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow a malicious, network-based, authenticated attacker to…	CWE-400 Uncontrolled Resource Consumption	CVE-2017-2333	2024-11-21 12:23	2017-04-25	Show	GitHub Exploit DB Packet Storm

258950	8.8	HIGH Network	juniper	northstar_controller	An insufficient authentication vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow a malicious, network based, unauthenticated attacker …	CWE-287 Improper Authentication	CVE-2017-2332	2024-11-21 12:23	2017-04-25	Show	GitHub Exploit DB Packet Storm