Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257281	10	危険	マイクロソフト	-	Microsoft Windows の SMB クライアントにおける任意コードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-1268	2011-06-24 10:04	2011-06-14	Show	GitHub Exploit DB Packet Storm

257282	7.8	危険	マイクロソフト	-	Microsoft Windows の Distributed File System 実装におけるサービス運用妨害 (システムハング) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1869	2011-06-24 10:03	2011-06-14	Show	GitHub Exploit DB Packet Storm

257283	10	危険	マイクロソフト	-	Microsoft Windows の Distributed File System 実装における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-1868	2011-06-24 10:01	2011-06-14	Show	GitHub Exploit DB Packet Storm

257284	5.7	警告	Linux レッドハット	-	Linux kernel の RPC サーバソケット機能におけるサービス運用妨害 (クラッシュ) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0714	2011-06-23 11:48	2011-03-8	Show	GitHub Exploit DB Packet Storm

257285	9.3	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-1873	2011-06-23 11:42	2011-06-14	Show	GitHub Exploit DB Packet Storm

257286	10	危険	マイクロソフト	-	Microsoft Forefront Threat Management Gateway (TMG) 2010 クライアントの NSPLookupServiceNext 関数における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-1889	2011-06-23 11:30	2011-06-14	Show	GitHub Exploit DB Packet Storm

257287	9.3	危険	マイクロソフト	-	Microsoft .NET Framework および Silverlight における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0664	2011-06-23 11:29	2011-06-14	Show	GitHub Exploit DB Packet Storm

257288	9.3	危険	マイクロソフト	-	Microsoft Windows の OLE オートメーションプロトコル実装における整数アンダーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-0658	2011-06-23 11:28	2011-06-14	Show	GitHub Exploit DB Packet Storm

257289	4.3	警告	マイクロソフト	-	Microsoft Windows の MHTML プロトコルハンドラにおけるクロスサイトスクリプティングを誘導される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1894	2011-06-23 11:27	2011-06-14	Show	GitHub Exploit DB Packet Storm

257290	5.5	警告	ターボリナックス Timo Sirainen レッドハット	-	Dovecot の plugins/acl/acl-backend-vfile.c におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3707	2011-06-23 11:15	2010-10-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246011	6.1	MEDIUM Network	icinga	icinga_web_2	Icinga Web 2 has XSS via the /icingaweb2/monitoring/list/services dir parameter, the /icingaweb2/user/list query string, the /icingaweb2/monitoring/timeline query string, or the /icingaweb2/setup que…	CWE-79 Cross-site Scripting	CVE-2018-18248	2024-11-21 12:55	2018-12-18	Show	GitHub Exploit DB Packet Storm

246012	5.4	MEDIUM Network	icinga	icinga_web_2	Icinga Web 2 before 2.6.2 has XSS via the /icingaweb2/navigation/add icon parameter.	CWE-79 Cross-site Scripting	CVE-2018-18247	2024-11-21 12:55	2018-12-18	Show	GitHub Exploit DB Packet Storm

246013	6.5	MEDIUM Network	icinga	icinga_web_2	Icinga Web 2 before 2.6.2 has CSRF via /icingaweb2/config/moduledisable?name=monitoring to disable the monitoring module, or via /icingaweb2/config/moduleenable?name=setup to enable the setup module.	CWE-352 Origin Validation Error	CVE-2018-18246	2024-11-21 12:55	2018-12-18	Show	GitHub Exploit DB Packet Storm

246014	5.4	MEDIUM Network	nagios debian	nagios_core debian_linux	Nagios Core 4.4.2 has XSS via the alert summary reports of plugin results, as demonstrated by a SCRIPT element delivered by a modified check_load plugin to NRPE.	CWE-79 Cross-site Scripting	CVE-2018-18245	2024-11-21 12:55	2018-12-18	Show	GitHub Exploit DB Packet Storm

246015	9.8	CRITICAL Network	ricoh	myprint	Hardcoded credentials in the Ricoh myPrint application 2.9.2.4 for Windows and 2.2.7 for Android give access to any externally disclosed myPrint WSDL API, as demonstrated by discovering API secrets o…	CWE-798 Use of Hard-coded Credentials	CVE-2018-18006	2024-11-21 12:55	2018-12-15	Show	GitHub Exploit DB Packet Storm

246016	7.8	HIGH Local	intel	solid_state_drive_toolbox	Improper directory permissions in Intel Solid State Drive Toolbox before 3.5.7 may allow an authenticated user to potentially enable escalation of privilege via local access.	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2018-18097	2024-11-21 12:55	2018-12-14	Show	GitHub Exploit DB Packet Storm

246017	5.5	MEDIUM Local	intel	quickassist_technology_for_linux	Improper memory handling in Intel QuickAssist Technology for Linux (all versions) may allow an authenticated user to potentially enable a denial of service via local access.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2018-18096	2024-11-21 12:55	2018-12-14	Show	GitHub Exploit DB Packet Storm

246018	7.8	HIGH Local	intel	vtune_amplifier	Improper file permissions in the installer for Intel VTune Amplifier 2018 Update 3 and before may allow unprivileged user to potentially gain privileged access via local access.	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2018-18093	2024-11-21 12:55	2018-12-14	Show	GitHub Exploit DB Packet Storm

246019	6.1	MEDIUM Network	microfocus	edirectory	Cross site scripting vulnerability in eDirectory prior to 9.1 SP2	CWE-79 Cross-site Scripting	CVE-2018-17952	2024-11-21 12:55	2018-12-12	Show	GitHub Exploit DB Packet Storm

246020	7.5	HIGH Network	microfocus	edirectory	Incorrect enforcement of authorization checks in eDirectory prior to 9.1 SP2	CWE-863 Incorrect Authorization	CVE-2018-17950	2024-11-21 12:55	2018-12-12	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed