Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
391 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 26h1
Microsoft Windows Server 2022
Microsoft Windows 10 22h2
Microsoft Windows 10 1607
Microsoft Powe… 		Windows グラフィックス コンポーネントのリモートでコードが実行される脆弱性 New CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2026-44812 2026-06-22 11:36 2026-06-9 Show GitHub Exploit DB Packet Storm
392 7.8 重要
Local 		マイクロソフト Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft Office Online Server
Microsoft Office 365
Microsoft Offic… 		Microsoft Excel のリモートでコードが実行される脆弱性 New CWE-197
CWE-416
CVE-2026-44823 2026-06-22 11:36 2026-06-9 Show GitHub Exploit DB Packet Storm
393 3
Network 		OpenStack OpenStack Ironic OpenStackのOpenStack Ironicにおけるテンプレートエンジンで使用される特殊な要素の不適切な無効化に関する脆弱性 New CWE-1336
テンプレートエンジンで使用される特殊な要素の不適切な無効化 		CVE-2026-44916 2026-06-22 11:36 2026-05-8 Show GitHub Exploit DB Packet Storm
394 6.5 警告
Network 		OpenStack OpenStack Ironic OpenStackのOpenStack Ironicにおける不適切な動作順序に関する脆弱性 New CWE-696
不適切な動作順序 		CVE-2026-44919 2026-06-22 11:36 2026-05-14 Show GitHub Exploit DB Packet Storm
395 5.3 警告
Network 		Discourse Discourse Discourseにおける複数の脆弱性 New CWE-200
CWE-862
CVE-2026-45085 2026-06-22 11:36 2026-06-12 Show GitHub Exploit DB Packet Storm
396 4.3 警告
Network 		マイクロソフト Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft Office Online Server
Microsoft Office 365
Microsoft Offic… 		Microsoft Excel の情報漏えいの脆弱性 New CWE-125
境界外読み取り 		CVE-2026-45455 2026-06-22 11:36 2026-06-9 Show GitHub Exploit DB Packet Storm
397 4.7 警告
Local 		マイクロソフト Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft Office 365
Microsoft Office 2024 Long-Term Servicing Ch… 		Microsoft Office の情報漏えいの脆弱性 New CWE-126
バッファオーバーリード 		CVE-2026-45460 2026-06-22 11:36 2026-06-9 Show GitHub Exploit DB Packet Storm
398 8.4 重要
Local 		マイクロソフト Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft Office 365
Microsoft Office 2024 Long-Term Servicing Ch… 		Microsoft Office のリモート コードが実行される脆弱性 New CWE-416
CWE-787
CVE-2026-45461 2026-06-22 11:36 2026-06-9 Show GitHub Exploit DB Packet Storm
399 8.4 重要
Local 		マイクロソフト Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft Office 365
Microsoft Office 2024 Long-Term Servicing Ch… 		Microsoft Office のリモート コードが実行される脆弱性 New CWE-121
CWE-191
CVE-2026-45463 2026-06-22 11:36 2026-06-9 Show GitHub Exploit DB Packet Storm
400 3.3
Local 		マイクロソフト Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft 365 Apps
Microsoft Office 365
Microsoft Office 2024 … 		Microsoft Word の情報漏えいの脆弱性 New CWE-122
ヒープオーバーフロー 		CVE-2026-45466 2026-06-22 11:36 2026-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
257231 6.5 MEDIUM
Local 		qemu
debian 		qemu
debian_linux 		Memory leak in the serial_exit_core function in hw/char/serial.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption and QEMU pro… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2017-5579 2024-11-21 12:27 2017-03-16 Show GitHub Exploit DB Packet Storm
257232 6.5 MEDIUM
Local 		qemu qemu Memory leak in the virtio_gpu_resource_attach_backing function in hw/display/virtio-gpu.c in QEMU (aka Quick Emulator) allows local guest OS users to cause a denial of service (host memory consumptio… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2017-5578 2024-11-21 12:27 2017-03-16 Show GitHub Exploit DB Packet Storm
257233 6.5 MEDIUM
Local 		qemu qemu Memory leak in the virgl_resource_attach_backing function in hw/display/virtio-gpu-3d.c in QEMU (aka Quick Emulator) allows local guest OS users to cause a denial of service (host memory consumption)… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2017-5552 2024-11-21 12:27 2017-03-16 Show GitHub Exploit DB Packet Storm
257234 5.3 MEDIUM
Network 		weblate weblate The password reset form in Weblate before 2.10.1 provides different error messages depending on whether the email address is associated with an account, which allows remote attackers to enumerate use… CWE-200
Information Exposure 		CVE-2017-5537 2024-11-21 12:27 2017-03-16 Show GitHub Exploit DB Packet Storm
257235 6.5 MEDIUM
Local 		qemu
debian 		qemu
debian_linux 		Memory leak in hw/audio/es1370.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption and QEMU process crash) via a large number o… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2017-5526 2024-11-21 12:27 2017-03-16 Show GitHub Exploit DB Packet Storm
257236 6.5 MEDIUM
Local 		qemu
debian 		qemu
debian_linux 		Memory leak in hw/audio/ac97.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption and QEMU process crash) via a large number of … CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2017-5525 2024-11-21 12:27 2017-03-16 Show GitHub Exploit DB Packet Storm
257237 9.8 CRITICAL
Network 		sawmill sawmill Sawmill Enterprise 8.7.9 allows remote attackers to gain login access by leveraging knowledge of a password hash. CWE-200
Information Exposure 		CVE-2017-5496 2024-11-21 12:27 2017-03-16 Show GitHub Exploit DB Packet Storm
257238 7.5 HIGH
Network 		easycom-aura sql_iplug EasyCom SQL iPlug allows remote attackers to cause a denial of service via the D$EVAL parameter to the default URI. CWE-20
 Improper Input Validation  		CVE-2017-5359 2024-11-21 12:27 2017-03-16 Show GitHub Exploit DB Packet Storm
257239 9.8 CRITICAL
Network 		easycom-aura easycom_for_php Stack-based buffer overflows in php_Easycom5_3_0.dll in EasyCom for PHP 4.0.0.29 allows remote attackers to execute arbitrary code via the server argument to the (1) i5_connect, (2) i5_pconnect, or (… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-5358 2024-11-21 12:27 2017-03-16 Show GitHub Exploit DB Packet Storm
257240 5.4 MEDIUM
Network 		paloaltonetworks pan-os Cross-site scripting (XSS) vulnerability in the Management Web Interface in Palo Alto Networks PAN-OS 5.1, 6.x before 6.1.16, 7.0.x before 7.0.13, and 7.1.x before 7.1.8 allows remote authenticated u… CWE-79
Cross-site Scripting 		CVE-2017-5584 2024-11-21 12:27 2017-03-15 Show GitHub Exploit DB Packet Storm