Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 23, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
321	9.9	緊急 Network	オラクル	MySQL Shell	オラクルのMySQL Shellにおけるコードインジェクションの脆弱性 New	CWE-94 コード・インジェクション	CVE-2026-46850	2026-06-23 10:00	2026-06-17	Show	GitHub Exploit DB Packet Storm

322	8.5	重要 Network	オラクル	MySQL Shell	オラクルのMySQL Shellにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-46870	2026-06-23 10:00	2026-06-17	Show	GitHub Exploit DB Packet Storm

323	6.5	警告 Network	オラクル	MySQL Shell	オラクルのMySQL Shellにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-46871	2026-06-23 10:00	2026-06-17	Show	GitHub Exploit DB Packet Storm

324	4.8	警告 Network	F5 Networks	WAF NGINX Gateway Fabric DoS NGINX Instance Manager NGINX Ingress Controller NGINX plus nginx open source	F5 NetworksのDoS等の複数製品における境界外読み取りに関する脆弱性 New	CWE-125 境界外読み取り	CVE-2026-48142	2026-06-23 10:00	2026-06-17	Show	GitHub Exploit DB Packet Storm

325	8.1	重要 Network	F5 Networks	NGINX Gateway Fabric	F5 NetworksのNGINX Gateway Fabricにおけるインジェクションに関する脆弱性 New	CWE-74 インジェクション	CVE-2026-50107	2026-06-23 10:00	2026-06-17	Show	GitHub Exploit DB Packet Storm

326	-	-	三菱電機	MELSEC iQ-Fシリーズ FX5-ENET/IP形Ethernetユニット MELSEC iQ-F FX5-EIP形EtherNet/IPユニット	三菱電機製MELSEC iQ-FシリーズのFX5-EIPおよびFX5-ENET/IPにおける脆弱性 New	CWE-190 CWE-440	CVE-2026-8805 CVE-2026-8806	2026-06-22 18:05	2026-06-19	Show	GitHub Exploit DB Packet Storm

327	-	-	（複数のベンダ）	（複数の製品）	Vendor-signed UEFIアプリケーションにおけるセキュアブートバイパスの脆弱性 New	-	-	2026-06-22 17:17	2026-06-19	Show	GitHub Exploit DB Packet Storm

328	-	-	（複数のベンダ）	（複数の製品）	CISA ICS Advisory / ICS Medical Advisory（2026年06月18日） New	-	-	2026-06-22 17:17	2026-06-19	Show	GitHub Exploit DB Packet Storm

329	8.4	重要 Local	マイクロソフト	Microsoft Office 2021 Long Term Servicing Channel Edition Microsoft Office 365 Microsoft Office 2024 Long-Term Servicing Ch…	Microsoft Office のリモートコードが実行される脆弱性 New	CWE-416 CWE-787	CVE-2026-45474	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

330	7.8	重要 Local	マイクロソフト	Microsoft Office 2021 Long Term Servicing Channel Edition Microsoft Office 365 Microsoft Office 2024 Long-Term Servicing Ch…	Microsoft Office のリモートコードが実行される脆弱性 New	CWE-122 ヒープオーバーフロー	CVE-2026-45475	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
257141	4.3	MEDIUM Network	google debian redhat	chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation	Use of an uninitialized value in Skia in Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux, and Android allowed a remote attacker to obtain potentially sensitive information from process me…	CWE-908 Use of Uninitialized Resource	CVE-2017-5102	2024-11-21 12:27	2017-10-27	Show	GitHub Exploit DB Packet Storm

257142	6.5	MEDIUM Network	google debian redhat	chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation	Inappropriate implementation in Omnibox in Google Chrome prior to 60.0.3112.78 for Linux, Windows, and Mac allowed a remote attacker to spoof the contents of the Omnibox via a crafted HTML page.	NVD-CWE-noinfo	CVE-2017-5101	2024-11-21 12:27	2017-10-27	Show	GitHub Exploit DB Packet Storm

257143	8.8	HIGH Network	google debian redhat	chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation	A use after free in Apps in Google Chrome prior to 60.0.3112.78 for Windows allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.	CWE-416 Use After Free	CVE-2017-5100	2024-11-21 12:27	2017-10-27	Show	GitHub Exploit DB Packet Storm

257144	8.8	HIGH Network	google debian	chrome debian_linux	Insufficient validation of untrusted input in PPAPI Plugins in Google Chrome prior to 60.0.3112.78 for Mac allowed a remote attacker to potentially gain privilege elevation via a crafted HTML page.	CWE-20 Improper Input Validation	CVE-2017-5099	2024-11-21 12:27	2017-10-27	Show	GitHub Exploit DB Packet Storm

257145	8.8	HIGH Network	google debian redhat	chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation	A use after free in V8 in Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux, and Android allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.	CWE-416 Use After Free	CVE-2017-5098	2024-11-21 12:27	2017-10-27	Show	GitHub Exploit DB Packet Storm

257146	8.8	HIGH Network	google debian	chrome debian_linux	Insufficient validation of untrusted input in Skia in Google Chrome prior to 60.0.3112.78 for Linux allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.	CWE-20 Improper Input Validation	CVE-2017-5097	2024-11-21 12:27	2017-10-27	Show	GitHub Exploit DB Packet Storm

257147	4.3	MEDIUM Network	google	chrome	Insufficient policy enforcement during navigation between different schemes in Google Chrome prior to 60.0.3112.78 for Android allowed a remote attacker to perform cross origin content download via a…	CWE-200 Information Exposure	CVE-2017-5096	2024-11-21 12:27	2017-10-27	Show	GitHub Exploit DB Packet Storm

257148	8.8	HIGH Network	google debian redhat	chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation	Stack overflow in PDFium in Google Chrome prior to 60.0.3112.78 for Linux, Windows, and Mac allowed a remote attacker to potentially exploit stack corruption via a crafted PDF file.	CWE-787 Out-of-bounds Write	CVE-2017-5095	2024-11-21 12:27	2017-10-27	Show	GitHub Exploit DB Packet Storm

257149	6.5	MEDIUM Network	debian google redhat	debian_linux chrome enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation	Type confusion in extensions JavaScript bindings in Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux, and Android allowed a remote attacker to potentially maliciously modify objects via a …	CWE-843 Type Confusion	CVE-2017-5094	2024-11-21 12:27	2017-10-27	Show	GitHub Exploit DB Packet Storm

257150	6.5	MEDIUM Network	google debian redhat	chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation	Inappropriate implementation in modal dialog handling in Blink in Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux, and Android allowed a remote attacker to prevent a full screen warning f…	CWE-20 Improper Input Validation	CVE-2017-5093	2024-11-21 12:27	2017-10-27	Show	GitHub Exploit DB Packet Storm