Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
213401	6.5	警告	LimeSurvey	-	LimeSurvey の application/controllers/admin/dataentry.php の insert 関数における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2015-5078	2015-06-30 14:37	2015-06-26	Show	GitHub Exploit DB Packet Storm

213402	4.3	警告	シーメンス	-	Siemens Climatix BACnet/IP communication モジュールのファームウェア上で稼働する統合 Web サーバにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-4174	2015-06-30 14:26	2015-06-25	Show	GitHub Exploit DB Packet Storm

213403	6.8	警告	シマンテック	-	Symantec Data Loss Prevention の Enforce Server の管理コンソールにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2015-1485	2015-06-30 14:10	2015-06-22	Show	GitHub Exploit DB Packet Storm

213404	4.3	警告	シマンテック	-	Symantec Data Loss Prevention の Enforce Server の管理コンソールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-9230	2015-06-30 14:10	2014-12-3	Show	GitHub Exploit DB Packet Storm

213405	4.3	警告	PACTware	-	PACTware におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2015-0989	2015-06-30 13:37	2015-06-25	Show	GitHub Exploit DB Packet Storm

213406	4	警告	シスコシステムズ	-	Cisco Nexus 9000 デバイス上で稼動する Application Policy Infrastructure Controller における重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-4225	2015-06-30 13:31	2015-06-26	Show	GitHub Exploit DB Packet Storm

213407	7.1	危険	シスコシステムズ	-	Cisco UBR デバイス上で稼動する Performance Routing Engine モジュールの Cisco IOS におけるサービス運用妨害 (DoS) の脆弱性	CWE-362 競合状態	CVE-2015-4199	2015-06-30 13:31	2015-06-22	Show	GitHub Exploit DB Packet Storm

213408	4	警告	osCommerce	-	osCommerce 日本語版におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2015-2965	2015-06-30 11:52	2015-06-25	Show	GitHub Exploit DB Packet Storm

213409	7.2	危険	シスコシステムズ	-	Cisco Wireless LAN Controller デバイスのソフトウェアにおける特権付きコンテキスト内で任意の OS コマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2015-4224	2015-06-29 15:47	2015-06-25	Show	GitHub Exploit DB Packet Storm

213410	5	警告	シスコシステムズ	-	Cisco IOS XR におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2015-4223	2015-06-29 15:47	2015-06-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1	8.1	HIGH Network	zoom	meeting_software_development_kit workplace	Improper Authorization in Handler for Custom URL Scheme in Zoom Workplace before version 7.0.4 for Android and before 7.0.3 for iOS may allow an unauthenticated user to conduct an escalation of privi… Update	CWE-939 Improper Authorization in Handler for Custom URL Scheme	CVE-2026-53408	2026-06-17 03:59	2026-06-13	Show	GitHub Exploit DB Packet Storm

2	7.2	HIGH Network	mariadb	mariadb	MariaDB server is a community developed fork of MySQL server. From versions 10.6.1 to before 10.6.27, 10.11.1 to before 10.11.18, 11.4.1 to before 11.4.12, 11.8.1 to before 11.8.8, and 12.3.1, a high… Update	CWE-78 OS Command	CVE-2026-48165	2026-06-17 03:58	2026-06-13	Show	GitHub Exploit DB Packet Storm

3	6.1	MEDIUM Local	docker mobyproject	engine moby moby\/v2	Moby is an open source container framework. In Docker Engine prior to version 29.5.1, Docker Daemon versions 28.5.2 and prior, and Moby Daemon prior to version 2.0.0-beta.14, a race condition during … Update	CWE-81 CWE-367 Improper Neutralization of Script in an Error Message Web Page Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2026-41568	2026-06-17 03:31	2026-06-13	Show	GitHub Exploit DB Packet Storm

4	7.2	HIGH Local	docker mobyproject	engine moby moby\/v2	Moby is an open source container framework. In Docker Engine prior to version 29.5.1, Docker Daemon versions 28.5.2 and prior, and Moby Daemon prior to version 2.0.0-beta.14, a race condition during … Update	CWE-61 CWE-367 UNIX Symbolic Link (Symlink) Following Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2026-42306	2026-06-17 03:31	2026-06-13	Show	GitHub Exploit DB Packet Storm

5	5.5	MEDIUM Local	amd	uprof	Unrestricted resource allocation in AMD uProf may be exploitable to consume excessive system resources, potentially leading to a loss of availability. Update	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2026-28237	2026-06-17 03:08	2026-06-10	Show	GitHub Exploit DB Packet Storm

6	5.5	MEDIUM Local	amd	uprof	Improper access control in AMD uProf may allow a local attacker with user privileges to write to the kernel-shared memory section, potentially resulting in crash or denial of service. Update	CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere	CVE-2026-0466	2026-06-17 03:05	2026-06-10	Show	GitHub Exploit DB Packet Storm

7	5.5	MEDIUM Local	gpac	gpac	A heap use-after-free in the gf_node_get_tag function (scenegraph/base_scenegraph.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file. New	CWE-416 Use After Free	CVE-2025-55650	2026-06-17 02:39	2026-06-16	Show	GitHub Exploit DB Packet Storm

8	5.5	MEDIUM Local	gpac	gpac	A NULL pointer dereference in the gf_media_map_esd function (media_tools/isom_tools.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file. New	CWE-476 NULL Pointer Dereference	CVE-2025-55649	2026-06-17 02:39	2026-06-16	Show	GitHub Exploit DB Packet Storm

9	5.5	MEDIUM Local	gpac	gpac	A heap buffer overflow in the gf_opus_parse_packet_header function (media_tools/av_parsers.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file. New	CWE-122 Heap-based Buffer Overflow	CVE-2025-55648	2026-06-17 02:39	2026-06-16	Show	GitHub Exploit DB Packet Storm

10	5.5	MEDIUM Local	gpac	gpac	An Out-of-Memory in the mp4_mux_cenc_insert_pssh function (filters/mux_isom.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MP4 file. New	CWE-190 Integer Overflow or Wraparound	CVE-2025-55647	2026-06-17 02:38	2026-06-16	Show	GitHub Exploit DB Packet Storm