Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
321	6.5	警告 Network	マイクロソフト	Visual Studio Code	Visual Studio Code の情報漏えいの脆弱性	CWE-200 CWE-noinfo	CVE-2026-47284	2026-06-16 13:37	2026-06-9	Show	GitHub Exploit DB Packet Storm

322	6.5	警告 Network	マイクロソフト	Visual Studio Code	Visual Studio Code の改ざんの脆弱性	CWE-23 相対的パストラバーサル	CVE-2026-47287	2026-06-16 13:36	2026-06-9	Show	GitHub Exploit DB Packet Storm

323	7.8	重要 Local	マイクロソフト	Visual Studio Code	Visual Studio Code MSSQL 拡張機能のリモートでコードが実行される脆弱性	CWE-829 CWE-94	CVE-2026-47292	2026-06-16 13:36	2026-06-9	Show	GitHub Exploit DB Packet Storm

324	6.2	警告 Local	アドビシステムズ	C2PA (Coalition for Content Provenance and Authenticity) (Content Authenticity Initiative) c2pa-web	アドビの(Content Authenticity Initiative) c2pa-web等の複数製品におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-47902	2026-06-16 13:36	2026-06-9	Show	GitHub Exploit DB Packet Storm

325	6.2	警告 Local	アドビシステムズ	C2PA (Coalition for Content Provenance and Authenticity) (Content Authenticity Initiative) c2pa-web	アドビの(Content Authenticity Initiative) c2pa-web等の複数製品における入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-47903	2026-06-16 13:36	2026-06-9	Show	GitHub Exploit DB Packet Storm

326	6.2	警告 Local	アドビシステムズ	C2PA (Coalition for Content Provenance and Authenticity) (Content Authenticity Initiative) c2pa-web	アドビの(Content Authenticity Initiative) c2pa-web等の複数製品におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-47904	2026-06-16 13:36	2026-06-9	Show	GitHub Exploit DB Packet Storm

327	6.2	警告 Local	アドビシステムズ	C2PA (Coalition for Content Provenance and Authenticity) (Content Authenticity Initiative) c2pa-web	アドビの(Content Authenticity Initiative) c2pa-web等の複数製品におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-47905	2026-06-16 13:36	2026-06-9	Show	GitHub Exploit DB Packet Storm

328	10	緊急 Network	アドビシステムズ	Adobe ColdFusion	アドビのAdobe ColdFusionにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-47928	2026-06-16 13:36	2026-06-9	Show	GitHub Exploit DB Packet Storm

329	9.1	緊急 Network	アドビシステムズ	Adobe ColdFusion	アドビのAdobe ColdFusionにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-47929	2026-06-16 13:36	2026-06-9	Show	GitHub Exploit DB Packet Storm

330	8.1	重要 Network	アドビシステムズ	Adobe ColdFusion	アドビのAdobe ColdFusionにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-47930	2026-06-16 13:36	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
257501	4.3	MEDIUM Network	oracle mariadb debian redhat	mysql mariadb debian_linux openstack enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_aus enterprise_linux_eus enterpri…	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client mysqldump). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. E…	NVD-CWE-noinfo	CVE-2017-3651	2024-11-21 12:26	2017-08-9	Show	GitHub Exploit DB Packet Storm

257502	3.7	LOW Network	oracle	mysql	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: C API). Supported versions that are affected are 5.7.18 and earlier. Difficult to exploit vulnerability allows unauthenticat…	NVD-CWE-noinfo	CVE-2017-3650	2024-11-21 12:26	2017-08-9	Show	GitHub Exploit DB Packet Storm

257503	4.4	MEDIUM Network	oracle	mysql	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.6.36 and earlier and 5.7.18 and earlier. Difficult to explo…	NVD-CWE-noinfo	CVE-2017-3649	2024-11-21 12:26	2017-08-9	Show	GitHub Exploit DB Packet Storm

257504	4.4	MEDIUM Network	oracle debian	mysql debian_linux	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Charsets). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. D…	NVD-CWE-noinfo	CVE-2017-3648	2024-11-21 12:26	2017-08-9	Show	GitHub Exploit DB Packet Storm

257505	4.4	MEDIUM Network	oracle	mysql	Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.6.36 and earlier and 5.7.18 and earlier. Difficult to explo…	NVD-CWE-noinfo	CVE-2017-3647	2024-11-21 12:26	2017-08-9	Show	GitHub Exploit DB Packet Storm

257506	9.8	CRITICAL Network	vmware	vcenter_server	VMware vCenter Server (6.5 prior to 6.5 U1) contains an information disclosure vulnerability. This issue may allow plaintext credentials to be obtained when using the vCenter Server Appliance file-ba…	CWE-200 CWE-522 Information Exposure Insufficiently Protected Credentials	CVE-2017-4923	2024-11-21 12:26	2017-08-2	Show	GitHub Exploit DB Packet Storm

257507	6.5	MEDIUM Network	vmware	vcenter_server	VMware vCenter Server (6.5 prior to 6.5 U1) contains an information disclosure issue due to the service startup script using world writable directories as temporary storage for critical information. …	CWE-200 Information Exposure	CVE-2017-4922	2024-11-21 12:26	2017-08-2	Show	GitHub Exploit DB Packet Storm

257508	8.8	HIGH Network	vmware	vcenter_server	VMware vCenter Server (6.5 prior to 6.5 U1) contains an insecure library loading issue that occurs due to the use of LD_LIBRARY_PATH variable in an unsafe manner. Successful exploitation of this issu…	NVD-CWE-noinfo	CVE-2017-4921	2024-11-21 12:26	2017-08-2	Show	GitHub Exploit DB Packet Storm

257509	9.0	CRITICAL Network	vmware	vcenter_server	VMware vCenter Server 5.5, 6.0, 6.5 allows vSphere users with certain, limited vSphere privileges to use the VIX API to access Guest Operating Systems without the need to authenticate.	CWE-306 Missing Authentication for Critical Function	CVE-2017-4919	2024-11-21 12:26	2017-07-29	Show	GitHub Exploit DB Packet Storm

257510	6.7	MEDIUM Local	lenovo	bios	Some Lenovo brand notebook systems do not have write protections properly configured in the system BIOS. This could enable an attacker with physical or administrative access to a system to be able to…	NVD-CWE-noinfo	CVE-2017-3754	2024-11-21 12:26	2017-07-18	Show	GitHub Exploit DB Packet Storm