Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
301	7.3	重要 Local	マイクロソフト	Microsoft .NET Framework .NET Microsoft Visual Studio 2026 visual studio 2022	.NET の特権の昇格の脆弱性 New	CWE-122 CWE-20 CWE-787	CVE-2026-32177	2026-06-22 11:41	2026-05-12	Show	GitHub Exploit DB Packet Storm

302	8.8	重要 Local	マイクロソフト	Azure Kubernetes Service	Azure Kubernetes Service (AKS) のリモートでコードが実行される脆弱性 New	CWE-22 パス・トラバーサル	CVE-2026-32193	2026-06-22 11:40	2026-06-9	Show	GitHub Exploit DB Packet Storm

303	7.8	重要 Local	マイクロソフト	Azure Monitor Agent	Azure Monitor エージェントの特権昇格の脆弱性 New	CWE-610 CWE-73	CVE-2026-32204	2026-06-22 11:40	2026-05-12	Show	GitHub Exploit DB Packet Storm

304	9.8	緊急 Network	Apache Software Foundation	Apache DolphinScheduler	Apache Software FoundationのApache DolphinSchedulerにおける不正な認証に関する脆弱性 New	CWE-863 不正な認証	CVE-2026-32966	2026-06-22 11:40	2026-06-17	Show	GitHub Exploit DB Packet Storm

305	9.1	緊急 Network	Apache Software Foundation	Apache DolphinScheduler	Apache Software FoundationのApache DolphinSchedulerにおける不正な認証に関する脆弱性 New	CWE-863 不正な認証	CVE-2026-32967	2026-06-22 11:40	2026-06-17	Show	GitHub Exploit DB Packet Storm

306	8.2	重要 Network	マイクロソフト	Azure Machine Learning	Azure Machine Learning Notebook のスプーフィングの脆弱性 New	CWE-74 インジェクション	CVE-2026-33833	2026-06-22 11:40	2026-05-12	Show	GitHub Exploit DB Packet Storm

307	4.3	警告 Network	Mattermost, Inc.	Mattermost Server	Mattermost, Inc.のMattermost Serverにおける情報漏えいに関する脆弱性 New	CWE-200 情報漏えい	CVE-2026-3433	2026-06-22 11:40	2026-06-12	Show	GitHub Exploit DB Packet Storm

308	8.7	重要 Network	オラクル	Oracle WebLogic Server	オラクルのOracle WebLogic Serverにおけるオープンリダイレクトの脆弱性 New	CWE-601 オープンリダイレクト	CVE-2026-35258	2026-06-22 11:40	2026-06-17	Show	GitHub Exploit DB Packet Storm

309	8.8	重要 Network	オラクル	Oracle WebLogic Server	オラクルのOracle WebLogic Serverにおけるオープンリダイレクトの脆弱性 New	CWE-601 オープンリダイレクト	CVE-2026-35259	2026-06-22 11:40	2026-06-17	Show	GitHub Exploit DB Packet Storm

310	6.5	警告 Network	オラクル	Oracle Access Manager	オラクルのOracle Access Managerにおける認証に関する脆弱性 New	CWE-287 不適切な認証	CVE-2026-35261	2026-06-22 11:40	2026-06-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
257231	6.5	MEDIUM Local	qemu debian	qemu debian_linux	Memory leak in the serial_exit_core function in hw/char/serial.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption and QEMU pro…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2017-5579	2024-11-21 12:27	2017-03-16	Show	GitHub Exploit DB Packet Storm

257232	6.5	MEDIUM Local	qemu	qemu	Memory leak in the virtio_gpu_resource_attach_backing function in hw/display/virtio-gpu.c in QEMU (aka Quick Emulator) allows local guest OS users to cause a denial of service (host memory consumptio…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2017-5578	2024-11-21 12:27	2017-03-16	Show	GitHub Exploit DB Packet Storm

257233	6.5	MEDIUM Local	qemu	qemu	Memory leak in the virgl_resource_attach_backing function in hw/display/virtio-gpu-3d.c in QEMU (aka Quick Emulator) allows local guest OS users to cause a denial of service (host memory consumption)…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2017-5552	2024-11-21 12:27	2017-03-16	Show	GitHub Exploit DB Packet Storm

257234	5.3	MEDIUM Network	weblate	weblate	The password reset form in Weblate before 2.10.1 provides different error messages depending on whether the email address is associated with an account, which allows remote attackers to enumerate use…	CWE-200 Information Exposure	CVE-2017-5537	2024-11-21 12:27	2017-03-16	Show	GitHub Exploit DB Packet Storm

257235	6.5	MEDIUM Local	qemu debian	qemu debian_linux	Memory leak in hw/audio/es1370.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption and QEMU process crash) via a large number o…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2017-5526	2024-11-21 12:27	2017-03-16	Show	GitHub Exploit DB Packet Storm

257236	6.5	MEDIUM Local	qemu debian	qemu debian_linux	Memory leak in hw/audio/ac97.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption and QEMU process crash) via a large number of …	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2017-5525	2024-11-21 12:27	2017-03-16	Show	GitHub Exploit DB Packet Storm

257237	9.8	CRITICAL Network	sawmill	sawmill	Sawmill Enterprise 8.7.9 allows remote attackers to gain login access by leveraging knowledge of a password hash.	CWE-200 Information Exposure	CVE-2017-5496	2024-11-21 12:27	2017-03-16	Show	GitHub Exploit DB Packet Storm

257238	7.5	HIGH Network	easycom-aura	sql_iplug	EasyCom SQL iPlug allows remote attackers to cause a denial of service via the D$EVAL parameter to the default URI.	CWE-20 Improper Input Validation	CVE-2017-5359	2024-11-21 12:27	2017-03-16	Show	GitHub Exploit DB Packet Storm

257239	9.8	CRITICAL Network	easycom-aura	easycom_for_php	Stack-based buffer overflows in php_Easycom5_3_0.dll in EasyCom for PHP 4.0.0.29 allows remote attackers to execute arbitrary code via the server argument to the (1) i5_connect, (2) i5_pconnect, or (…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-5358	2024-11-21 12:27	2017-03-16	Show	GitHub Exploit DB Packet Storm

257240	5.4	MEDIUM Network	paloaltonetworks	pan-os	Cross-site scripting (XSS) vulnerability in the Management Web Interface in Palo Alto Networks PAN-OS 5.1, 6.x before 6.1.16, 7.0.x before 7.0.13, and 7.1.x before 7.1.8 allows remote authenticated u…	CWE-79 Cross-site Scripting	CVE-2017-5584	2024-11-21 12:27	2017-03-15	Show	GitHub Exploit DB Packet Storm