Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
321	6.5	警告 Network	マイクロソフト	Visual Studio Code	Visual Studio Code の情報漏えいの脆弱性	CWE-200 CWE-noinfo	CVE-2026-47284	2026-06-16 13:37	2026-06-9	Show	GitHub Exploit DB Packet Storm

322	6.5	警告 Network	マイクロソフト	Visual Studio Code	Visual Studio Code の改ざんの脆弱性	CWE-23 相対的パストラバーサル	CVE-2026-47287	2026-06-16 13:36	2026-06-9	Show	GitHub Exploit DB Packet Storm

323	7.8	重要 Local	マイクロソフト	Visual Studio Code	Visual Studio Code MSSQL 拡張機能のリモートでコードが実行される脆弱性	CWE-829 CWE-94	CVE-2026-47292	2026-06-16 13:36	2026-06-9	Show	GitHub Exploit DB Packet Storm

324	6.2	警告 Local	アドビシステムズ	C2PA (Coalition for Content Provenance and Authenticity) (Content Authenticity Initiative) c2pa-web	アドビの(Content Authenticity Initiative) c2pa-web等の複数製品におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-47902	2026-06-16 13:36	2026-06-9	Show	GitHub Exploit DB Packet Storm

325	6.2	警告 Local	アドビシステムズ	C2PA (Coalition for Content Provenance and Authenticity) (Content Authenticity Initiative) c2pa-web	アドビの(Content Authenticity Initiative) c2pa-web等の複数製品における入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-47903	2026-06-16 13:36	2026-06-9	Show	GitHub Exploit DB Packet Storm

326	6.2	警告 Local	アドビシステムズ	C2PA (Coalition for Content Provenance and Authenticity) (Content Authenticity Initiative) c2pa-web	アドビの(Content Authenticity Initiative) c2pa-web等の複数製品におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-47904	2026-06-16 13:36	2026-06-9	Show	GitHub Exploit DB Packet Storm

327	6.2	警告 Local	アドビシステムズ	C2PA (Coalition for Content Provenance and Authenticity) (Content Authenticity Initiative) c2pa-web	アドビの(Content Authenticity Initiative) c2pa-web等の複数製品におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-47905	2026-06-16 13:36	2026-06-9	Show	GitHub Exploit DB Packet Storm

328	10	緊急 Network	アドビシステムズ	Adobe ColdFusion	アドビのAdobe ColdFusionにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-47928	2026-06-16 13:36	2026-06-9	Show	GitHub Exploit DB Packet Storm

329	9.1	緊急 Network	アドビシステムズ	Adobe ColdFusion	アドビのAdobe ColdFusionにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-47929	2026-06-16 13:36	2026-06-9	Show	GitHub Exploit DB Packet Storm

330	8.1	重要 Network	アドビシステムズ	Adobe ColdFusion	アドビのAdobe ColdFusionにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-47930	2026-06-16 13:36	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
257391	5.5	MEDIUM Local	netop	remote_control	Stack-based buffer overflow vulnerability in Netop Remote Control versions 11.53, 12.21 and prior. The affected module in the Guest client is the "Import to Phonebook" option. When a specially design…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-5216	2024-11-21 12:27	2017-01-9	Show	GitHub Exploit DB Packet Storm

257392	5.5	MEDIUM Local	samsung	samsung_mobile	Installing a zero-permission Android application on certain Samsung Android devices with KK(4.4), L(5.0/5.1), and M(6.0) software can continually crash the system_server process in the Android OS. Th…	CWE-119 CWE-20 Incorrect Access of Indexable Resource ('Range Error') Improper Input Validation	CVE-2017-5217	2024-11-21 12:27	2017-01-9	Show	GitHub Exploit DB Packet Storm

257393	5.4	MEDIUM Network	tenable	nessus	Cross-site scripting (XSS) vulnerability in Tenable Nessus before 6.9.3 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2017-5179	2024-11-21 12:27	2017-01-6	Show	GitHub Exploit DB Packet Storm

257394	6.5	MEDIUM Network	google	chrome	Insufficient data validation in V8 in Google Chrome prior to 56.0.2924.76 allowed a remote attacker to leak cross-origin data via a crafted HTML page.	CWE-20 Improper Input Validation	CVE-2017-5028	2024-11-21 12:26	2019-06-28	Show	GitHub Exploit DB Packet Storm

257395	6.2	MEDIUM Physics	intel	nuc_kit_firmware compute_card_firmware compute_stick_firmware	Improper setting of device configuration in system firmware for Intel(R) NUC kits may allow a privileged user to potentially enable escalation of privilege via physical access.	NVD-CWE-noinfo	CVE-2017-3718	2024-11-21 12:26	2019-01-11	Show	GitHub Exploit DB Packet Storm

257396	7.8	HIGH Local	mcafee	application_and_change_control	Bypassing password security vulnerability in McAfee Application and Change Control (MACC) 7.0.1 and 6.2.0 allows authenticated users to perform arbitrary command execution via a command-line utility.	CWE-287 Improper Authentication	CVE-2017-3912	2024-11-21 12:26	2018-09-19	Show	GitHub Exploit DB Packet Storm

257397	9.8	CRITICAL Network	mcafee	epolicy_orchestrator	OS Command Injection vulnerability in McAfee ePolicy Orchestrator (ePO) 5.9.0, 5.3.2, 5.3.1, 5.1.3, 5.1.2, 5.1.1, and 5.1.0 allows attackers to run arbitrary OS commands with limited privileges via n…	CWE-78 OS Command	CVE-2017-3936	2024-11-21 12:26	2018-06-14	Show	GitHub Exploit DB Packet Storm

257398	9.8	CRITICAL Network	mcafee	mcafee_threat_intelligence_exchange	Code Injection vulnerability in the ePolicy Orchestrator (ePO) extension in McAfee Threat Intelligence Exchange (TIE) Server 2.1.0 and earlier allows remote attackers to execute arbitrary HTML code t…	CWE-94 Code Injection	CVE-2017-3907	2024-11-21 12:26	2018-06-14	Show	GitHub Exploit DB Packet Storm

257399	9.1	CRITICAL Network	mcafee	network_security_manager network_data_loss_prevention	Session fixation vulnerability in the web interface in McAfee Network Security Manager (NSM) before 8.2.7.42.2 and McAfee Network Data Loss Prevention (NDLP) before 9.3.4.1.5 allows remote attackers …	CWE-384 Session Fixation	CVE-2017-3968	2024-11-21 12:26	2018-06-14	Show	GitHub Exploit DB Packet Storm

257400	9.8	CRITICAL Network	mcafee	network_security_manager	Password recovery exploitation vulnerability in the non-certificate-based authentication mechanism in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows attackers to crack user passwor…	CWE-916 Use of Password Hash With Insufficient Computational Effort	CVE-2017-3962	2024-11-21 12:26	2018-06-12	Show	GitHub Exploit DB Packet Storm