Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 21, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
421	6.5	警告 Network	GPAC	GPAC	GPACにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2025-55659	2026-06-15 11:21	2026-06-9	Show	GitHub Exploit DB Packet Storm

422	4.4	警告 Local	QNAP Systems	License Center	QNAP SystemsのLicense Centerにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2025-62851	2026-06-15 11:21	2026-06-10	Show	GitHub Exploit DB Packet Storm

423	6.5	警告 Network	QNAP Systems	QuTS hero QNAP QTS	QNAP SystemsのQNAP QTS等の複数製品におけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2025-62858	2026-06-15 11:21	2026-06-9	Show	GitHub Exploit DB Packet Storm

424	9.8	緊急 Network	QNAP Systems	QNAP QTS	QNAP SystemsのQNAP QTSにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2025-66276	2026-06-15 11:21	2026-06-10	Show	GitHub Exploit DB Packet Storm

425	10	緊急 Network	Ivanti	standalone sentry	Ivantiのstandalone sentryにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-10520	2026-06-15 11:20	2026-06-9	Show	GitHub Exploit DB Packet Storm

426	6.5	警告 Network	Devolutions	Devolutions Server	DevolutionsのDevolutions ServerにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-10544	2026-06-15 11:20	2026-06-8	Show	GitHub Exploit DB Packet Storm

427	6.5	警告 Network	Devolutions	Devolutions Server	DevolutionsのDevolutions Serverにおける重要な情報の平文保存に関する脆弱性	CWE-312 重要な情報の平文保存	CVE-2026-10786	2026-06-15 11:20	2026-06-8	Show	GitHub Exploit DB Packet Storm

428	4.3	警告 Network	Devolutions	Devolutions Server	DevolutionsのDevolutions Serverにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-10787	2026-06-15 11:20	2026-06-8	Show	GitHub Exploit DB Packet Storm

429	4.3	警告 Network	レッドハット	389 Directory Server Red Hat Directory Server Red Hat Enterprise Linux	レッドハットの389 Directory Server等の複数製品における型の取り違えに関する脆弱性	CWE-843 型の取り違え	CVE-2026-11785	2026-06-15 11:20	2026-06-9	Show	GitHub Exploit DB Packet Storm

430	6.5	警告 Network	レッドハット	389 Directory Server Red Hat Directory Server Red Hat Enterprise Linux	レッドハットの389 Directory Server等の複数製品における境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-11786	2026-06-15 11:20	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
257321	8.8	HIGH Network	sagecrm	sagecrm	A SQL Injection issue was discovered in SageCRM 7.x before 7.3 SP3. The AP_DocumentUI.asp web resource includes Utilityfuncs.js when the file is opened or viewed. This file crafts a SQL statement to …	CWE-89 SQL Injection	CVE-2017-5218	2024-11-21 12:27	2017-02-2	Show	GitHub Exploit DB Packet Storm

257322	4.9	MEDIUM Network	citrix	xenserver	An issue was discovered in Linux Foundation xapi in Citrix XenServer through 7.0. An authenticated read-only administrator can cancel tasks of other administrators.	NVD-CWE-noinfo	CVE-2017-5573	2024-11-21 12:27	2017-01-31	Show	GitHub Exploit DB Packet Storm

257323	6.5	MEDIUM Network	citrix	xenserver	An issue was discovered in Linux Foundation xapi in Citrix XenServer through 7.0. An authenticated read-only administrator can corrupt the host database.	CWE-269 Improper Privilege Management	CVE-2017-5572	2024-11-21 12:27	2017-01-31	Show	GitHub Exploit DB Packet Storm

257324	6.1	MEDIUM Network	piwigo	piwigo	Cross-site scripting (XSS) vulnerability in the image upload function in Piwigo before 2.8.6 allows remote attackers to inject arbitrary web script or HTML via a crafted image filename.	CWE-79 Cross-site Scripting	CVE-2017-5608	2024-11-21 12:27	2017-01-29	Show	GitHub Exploit DB Packet Storm

257325	9.8	CRITICAL Network	tcpdump	tcpdump	The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in print-isoclns.c:clnp_print().	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-5486	2024-11-21 12:27	2017-01-28	Show	GitHub Exploit DB Packet Storm

257326	9.8	CRITICAL Network	tcpdump	tcpdump	The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in addrtoname.c:lookup_nsap().	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-5485	2024-11-21 12:27	2017-01-28	Show	GitHub Exploit DB Packet Storm

257327	9.8	CRITICAL Network	tcpdump	tcpdump	The ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-atm.c:sig_print().	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-5484	2024-11-21 12:27	2017-01-28	Show	GitHub Exploit DB Packet Storm

257328	9.8	CRITICAL Network	tcpdump	tcpdump	The SNMP parser in tcpdump before 4.9.0 has a buffer overflow in print-snmp.c:asn1_parse().	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-5483	2024-11-21 12:27	2017-01-28	Show	GitHub Exploit DB Packet Storm

257329	9.8	CRITICAL Network	tcpdump	tcpdump	The Q.933 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:q933_print(), a different vulnerability than CVE-2016-8575.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-5482	2024-11-21 12:27	2017-01-28	Show	GitHub Exploit DB Packet Storm

257330	9.8	CRITICAL Network	tcpdump	tcpdump	In tcpdump before 4.9.0, a bug in multiple protocol parsers (Geneve, GRE, NSH, OTV, VXLAN and VXLAN GPE) could cause a buffer overflow in print-ether.c:ether_print().	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-5342	2024-11-21 12:27	2017-01-28	Show	GitHub Exploit DB Packet Storm