Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
200211 5.5 警告
Local 		zziplib project - zziplib の fseeko.c の prescan_entry 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2017-5979 2017-03-15 16:56 2017-02-9 Show GitHub Exploit DB Packet Storm
200212 5.5 警告
Local 		zziplib project - zziplib の memdisk.c の zzip_mem_entry_extra_block 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2017-5976 2017-03-15 16:56 2017-02-9 Show GitHub Exploit DB Packet Storm
200213 5.5 警告
Local 		zziplib project - zziplib の fetch.c の __zzip_get64 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2017-5975 2017-03-15 16:56 2017-02-9 Show GitHub Exploit DB Packet Storm
200214 5.5 警告
Local 		zziplib project - zziplib の fetch.c の __zzip_get32 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2017-5974 2017-03-15 16:56 2017-02-9 Show GitHub Exploit DB Packet Storm
200215 7.5 重要
Network 		PNG Development Group - libpng の png_set_text_2 関数における NULL ポインタデリファレンスを引き起こされる脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2016-10087 2017-03-15 16:55 2016-12-29 Show GitHub Exploit DB Packet Storm
200216 5.8 警告
Network 		シスコシステムズ - Cisco ESA および WSA の AsyncOS ソフトウェアの MIME スキャナにおけるデバイス上で設定されたユーザフィルタを回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2017-3827 2017-03-15 16:55 2017-02-23 Show GitHub Exploit DB Packet Storm
200217 8.8 重要
Network 		シスコシステムズ - Cisco ASA ソフトウェアの クライアントレス SSL VPN 機能の CIFS コードにおけるヒープオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2017-3807 2017-03-15 16:55 2017-02-8 Show GitHub Exploit DB Packet Storm
200218 7.3 重要
Local 		Simon Tatham - Putty における DLL ハイジャック攻撃を実行される脆弱性 CWE-426
信頼性のない検索パス 		CVE-2016-6167 2017-03-15 16:54 2016-07-1 Show GitHub Exploit DB Packet Storm
200219 5.5 警告
Local 		Mp3splt project - mp3splt の options_manager.c の free_options 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2017-5851 2017-03-15 16:45 2017-02-1 Show GitHub Exploit DB Packet Storm
200220 5.5 警告
Local 		Mp3splt project - mp3splt の options_manager.c の free_options 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-416
解放済みメモリの使用 		CVE-2017-5666 2017-03-15 16:45 2017-01-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
3311 8.1 HIGH
Network 		- - Deserialization of Untrusted Data vulnerability in Elated-Themes Askka allows Object Injection. This issue affects Askka: from n/a through 1.3.1. CWE-502
 Deserialization of Untrusted Data 		CVE-2026-39555 2026-06-2 23:43 2026-06-2 Show GitHub Exploit DB Packet Storm
3312 5.4 MEDIUM
Network 		- - Missing Authorization vulnerability in Elementor Elementor Website Builder allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Elementor Website Builder: from… CWE-862
 Missing Authorization 		CVE-2026-49782 2026-06-2 23:43 2026-06-2 Show GitHub Exploit DB Packet Storm
3313 8.8 HIGH
Network 		openstack keystone An issue was discovered in OpenStack Keystone before 29.0.2. The Keystone RBAC policy enforcer in enforce_call unconditionally merges the raw JSON request body into the policy enforcement dictionary … CWE-863
 Incorrect Authorization 		CVE-2026-42999 2026-06-2 23:41 2026-05-29 Show GitHub Exploit DB Packet Storm
3314 4.3 MEDIUM
Adjacent 		- - Dräger Infinity Delta, Delta XL, and Kappa patient monitors contain an information disclosure vulnerability that allows unauthenticated network attackers to access log files over a network connection… CWE-538
 File and Directory Information Exposure 		CVE-2019-25717 2026-06-2 23:40 2026-06-2 Show GitHub Exploit DB Packet Storm
3315 8.8 HIGH
Network 		openstack keystone An issue was discovered in OpenStack Keystone before 29.0.2. When combined with an application credential impersonation vulnerability, an attacker with the member role on a project can escalate to ad… CWE-863
 Incorrect Authorization 		CVE-2026-43000 2026-06-2 23:38 2026-05-29 Show GitHub Exploit DB Packet Storm
3316 4.9 MEDIUM
Network 		mattermost legal_hold Mattermost Plugins versions <=1.1.5 fail to sanitize filenames received from federated peers before using them to construct export destination paths, which allows an administrator of a remote federat… CWE-22
Path Traversal 		CVE-2026-6957 2026-06-2 23:29 2026-05-28 Show GitHub Exploit DB Packet Storm
3317 8.1 HIGH
Network 		erlang erlang\/otp Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_cert and public_key modules) allows a DNS nameConstraints bypass via subject CommonName fallback in TLS hostname verific… CWE-295
CWE-297
Improper Certificate Validation 
 Improper Validation of Certificate with Host Mismatch 		CVE-2026-42790 2026-06-2 23:24 2026-05-28 Show GitHub Exploit DB Packet Storm
3318 8.1 HIGH
Network 		openstack keystone An issue was discovered in OpenStack Keystone before 29.0.2. The Keystone federated token rescoping mechanism does not propagate the original token's expiry to the newly issued token. When a federate… CWE-863
 Incorrect Authorization 		CVE-2026-44394 2026-06-2 23:21 2026-05-29 Show GitHub Exploit DB Packet Storm
3319 9.8 CRITICAL
Network 		joomla joomla\! The password and username reset features created plain http links for https connections if the "Force SSL" flag wasn't explicitly set. NVD-CWE-noinfo
CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2026-48902 2026-06-2 23:16 2026-05-27 Show GitHub Exploit DB Packet Storm
3320 - - - RustFS is a distributed object storage system built in Rust. Prior to 1.0.0-beta.2, RustFS suffers from sensitive information leakage in log outputs. When the server is run with RUST_LOG=debug sensit… CWE-312
CWE-532
 Cleartext Storage of Sensitive Information
 Inclusion of Sensitive Information in Log Files 		CVE-2026-45040 2026-06-2 23:16 2026-05-29 Show GitHub Exploit DB Packet Storm