Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
511 7.8 重要
Local 		NVIDIA NeMo NVIDIAのNeMoにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-24155 2026-06-17 15:46 2026-06-16 Show GitHub Exploit DB Packet Storm
512 7.8 重要
Local 		NVIDIA NeMo NVIDIAのNeMoにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-24228 2026-06-17 15:46 2026-06-16 Show GitHub Exploit DB Packet Storm
513 5.5 警告
Local 		Advanced Micro Devices (AMD) uprof Advanced Micro Devices (AMD)のuprofにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-28237 2026-06-17 15:46 2026-06-9 Show GitHub Exploit DB Packet Storm
514 6.5 警告
Network 		Grafana Labs Grafana Grafana LabsのGrafanaにおける外部からアクセス可能なファイルまたはディレクトリに関する脆弱性 CWE-552
外部からアクセス可能なファイルまたはディレクトリ 		CVE-2026-33380 2026-06-17 15:46 2026-05-13 Show GitHub Exploit DB Packet Storm
515 8.1 重要
Network 		Grafana Labs Grafana Grafana LabsのGrafanaにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-33381 2026-06-17 15:46 2026-05-13 Show GitHub Exploit DB Packet Storm
516 5.4 警告
Network 		langflow Langflow Desktop langflowのLangflow Desktopにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-3341 2026-06-17 15:46 2026-06-11 Show GitHub Exploit DB Packet Storm
517 6.1 警告
Network 		IBM IBM DevOps Plan IBMのIBM DevOps PlanにおけるHTTP ヘッダのスクリプト構文の不適切な無効化に関する脆弱性 CWE-644
HTTP ヘッダのスクリプト構文の不適切な無効化 		CVE-2026-4096 2026-06-17 15:46 2026-06-11 Show GitHub Exploit DB Packet Storm
518 5.4 警告
Network 		VMware VMware Cloud Foundation
VMware Telco Cloud Platform
VMware vSphere
VMware Aria Operations 		VMwareのVMware Aria Operations等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
CWE-79
CVE-2026-41722 2026-06-17 15:46 2026-06-8 Show GitHub Exploit DB Packet Storm
519 8 重要
Network 		VMware VMware Cloud Foundation
VMware Telco Cloud Platform
VMware vSphere
VMware Aria Operations 		VMwareのVMware Aria Operations等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-41723 2026-06-17 15:46 2026-06-8 Show GitHub Exploit DB Packet Storm
520 5.9 警告
Network 		OpenSSL Project OpenSSL OpenSSL ProjectのOpenSSLにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-42767 2026-06-17 15:46 2026-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
257271 7.5 HIGH
Network 		hanwha-security smart_security_manager An issue was discovered in Hanwha Techwin Smart Security Manager Versions 1.5 and prior. Multiple Cross Site Request Forgery vulnerabilities have been identified. The flaws exist within the Redis and… CWE-352
 Origin Validation Error 		CVE-2017-5169 2024-11-21 12:27 2017-02-14 Show GitHub Exploit DB Packet Storm
257272 7.5 HIGH
Network 		hanwha-security smart_security_manager An issue was discovered in Hanwha Techwin Smart Security Manager Versions 1.5 and prior. Multiple Path Traversal vulnerabilities have been identified. The flaws exist within the ActiveMQ Broker servi… CWE-22
Path Traversal 		CVE-2017-5168 2024-11-21 12:27 2017-02-14 Show GitHub Exploit DB Packet Storm
257273 8.6 HIGH
Network 		binom3 universal_multifunctional_electric_power_quality_meter_firmware An issue was discovered in BINOM3 Universal Multifunctional Electric Power Quality Meter. Users do not have any option to change their own passwords. CWE-798
 Use of Hard-coded Credentials 		CVE-2017-5167 2024-11-21 12:27 2017-02-14 Show GitHub Exploit DB Packet Storm
257274 9.8 CRITICAL
Network 		binom3 universal_multifunctional_electric_power_quality_meter_firmware An issue was discovered in BINOM3 Universal Multifunctional Electric Power Quality Meter. An INFORMATION EXPOSURE flaw can be used to gain privileged access to the device. CWE-200
Information Exposure 		CVE-2017-5166 2024-11-21 12:27 2017-02-14 Show GitHub Exploit DB Packet Storm
257275 7.6 HIGH
Network 		binom3 universal_multifunctional_electric_power_quality_meter_firmware An issue was discovered in BINOM3 Universal Multifunctional Electric Power Quality Meter. There is no CSRF Token generated per page and/or per (sensitive) function. Successful exploitation of this vu… CWE-352
 Origin Validation Error 		CVE-2017-5165 2024-11-21 12:27 2017-02-14 Show GitHub Exploit DB Packet Storm
257276 6.1 MEDIUM
Network 		binom3 universal_multifunctional_electric_power_quality_meter_firmware An issue was discovered in BINOM3 Universal Multifunctional Electric Power Quality Meter. Input sent from a malicious client is not properly verified by the server. An attacker can execute arbitrary … CWE-79
Cross-site Scripting 		CVE-2017-5164 2024-11-21 12:27 2017-02-14 Show GitHub Exploit DB Packet Storm
257277 5.9 MEDIUM
Network 		belden_hirschmann gecko_lite_managed_switch_firmware An issue was discovered in Belden Hirschmann GECKO Lite Managed switch, Version 2.0.00 and prior versions. After an administrator downloads a configuration file, a copy of the configuration file, whi… CWE-22
Path Traversal 		CVE-2017-5163 2024-11-21 12:27 2017-02-14 Show GitHub Exploit DB Packet Storm
257278 9.8 CRITICAL
Network 		binom3 universal_multifunctional_electric_power_quality_meter_firmware An issue was discovered in BINOM3 Universal Multifunctional Electric Power Quality Meter. Lack of authentication for remote service gives access to application set up and configuration. CWE-306
Missing Authentication for Critical Function 		CVE-2017-5162 2024-11-21 12:27 2017-02-14 Show GitHub Exploit DB Packet Storm
257279 7.2 HIGH
Local 		sielcosistemi winlog_lite
winlog_pro 		An issue was discovered in Sielco Sistemi Winlog Lite SCADA Software, versions prior to Version 3.02.01, and Winlog Pro SCADA Software, versions prior to Version 3.02.01. An uncontrolled search path … CWE-427
 Uncontrolled Search Path Element 		CVE-2017-5161 2024-11-21 12:27 2017-02-14 Show GitHub Exploit DB Packet Storm
257280 9.8 CRITICAL
Network 		phoenixcontact mguard_firmware An issue was discovered on Phoenix Contact mGuard devices that have been updated to Version 8.4.0. When updating an mGuard device to Version 8.4.0 via the update-upload facility, the update will succ… CWE-99
Resource Injection 		CVE-2017-5159 2024-11-21 12:27 2017-02-14 Show GitHub Exploit DB Packet Storm