Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
511	7.8	重要 Local	NVIDIA	NeMo	NVIDIAのNeMoにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-24155	2026-06-17 15:46	2026-06-16	Show	GitHub Exploit DB Packet Storm

512	7.8	重要 Local	NVIDIA	NeMo	NVIDIAのNeMoにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-24228	2026-06-17 15:46	2026-06-16	Show	GitHub Exploit DB Packet Storm

513	5.5	警告 Local	Advanced Micro Devices (AMD)	uprof	Advanced Micro Devices (AMD)のuprofにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-28237	2026-06-17 15:46	2026-06-9	Show	GitHub Exploit DB Packet Storm

514	6.5	警告 Network	Grafana Labs	Grafana	Grafana LabsのGrafanaにおける外部からアクセス可能なファイルまたはディレクトリに関する脆弱性	CWE-552 外部からアクセス可能なファイルまたはディレクトリ	CVE-2026-33380	2026-06-17 15:46	2026-05-13	Show	GitHub Exploit DB Packet Storm

515	8.1	重要 Network	Grafana Labs	Grafana	Grafana LabsのGrafanaにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-33381	2026-06-17 15:46	2026-05-13	Show	GitHub Exploit DB Packet Storm

516	5.4	警告 Network	langflow	Langflow Desktop	langflowのLangflow Desktopにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-3341	2026-06-17 15:46	2026-06-11	Show	GitHub Exploit DB Packet Storm

517	6.1	警告 Network	IBM	IBM DevOps Plan	IBMのIBM DevOps PlanにおけるHTTP ヘッダのスクリプト構文の不適切な無効化に関する脆弱性	CWE-644 HTTP ヘッダのスクリプト構文の不適切な無効化	CVE-2026-4096	2026-06-17 15:46	2026-06-11	Show	GitHub Exploit DB Packet Storm

518	5.4	警告 Network	VMware	VMware Cloud Foundation VMware Telco Cloud Platform VMware vSphere VMware Aria Operations	VMwareのVMware Aria Operations等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 CWE-79	CVE-2026-41722	2026-06-17 15:46	2026-06-8	Show	GitHub Exploit DB Packet Storm

519	8	重要 Network	VMware	VMware Cloud Foundation VMware Telco Cloud Platform VMware vSphere VMware Aria Operations	VMwareのVMware Aria Operations等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-41723	2026-06-17 15:46	2026-06-8	Show	GitHub Exploit DB Packet Storm

520	5.9	警告 Network	OpenSSL Project	OpenSSL	OpenSSL ProjectのOpenSSLにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-42767	2026-06-17 15:46	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
259271	8.8	HIGH Network	vendavo	pricepoint	A vulnerability was found in Navetti PricePoint 4.6.0.0. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. The attack ca…	CWE-352 Origin Validation Error	CVE-2017-20045	2024-11-21 12:22	2022-06-13	Show	GitHub Exploit DB Packet Storm

259272	5.4	MEDIUM Network	vendavo	pricepoint	A vulnerability was found in Navetti PricePoint 4.6.0.0. It has been classified as problematic. This affects an unknown part. The manipulation leads to basic cross site scripting (Reflected). It is p…	CWE-79 Cross-site Scripting	CVE-2017-20044	2024-11-21 12:22	2022-06-13	Show	GitHub Exploit DB Packet Storm

259273	5.4	MEDIUM Network	vendavo	pricepoint	A vulnerability was found in Navetti PricePoint 4.6.0.0 and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to basic cross site scripting (Pers…	CWE-79 Cross-site Scripting	CVE-2017-20043	2024-11-21 12:22	2022-06-13	Show	GitHub Exploit DB Packet Storm

259274	8.8	HIGH Network	vendavo	pricepoint	A vulnerability has been found in Navetti PricePoint 4.6.0.0 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to sql injection (Blind). T…	CWE-89 SQL Injection	CVE-2017-20042	2024-11-21 12:22	2022-06-13	Show	GitHub Exploit DB Packet Storm

259275	6.5	MEDIUM Network	ucweb	uc_browser	A vulnerability was found in Ucweb UC Browser 11.2.5.932. It has been classified as critical. Affected is an unknown function of the component HTML Handler. The manipulation of the argument title lea…	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2017-20041	2024-11-21 12:22	2022-06-13	Show	GitHub Exploit DB Packet Storm

259276	5.5	MEDIUM Local	sicunet	access_control	A vulnerability was found in SICUNET Access Controller 0.32-05z. It has been declared as problematic. This vulnerability affects unknown code of the component Password Storage. The manipulation leads…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2017-20040	2024-11-21 12:22	2022-06-11	Show	GitHub Exploit DB Packet Storm

259277	9.8	CRITICAL Network	sicunet	access_control	A vulnerability was found in SICUNET Access Controller 0.32-05z. It has been classified as very critical. This affects an unknown part. The manipulation leads to weak authentication. It is possible t…	CWE-798 Use of Hard-coded Credentials	CVE-2017-20039	2024-11-21 12:22	2022-06-11	Show	GitHub Exploit DB Packet Storm

259278	8.8	HIGH Network	sicunet	access_control	A vulnerability was found in SICUNET Access Controller 0.32-05z and classified as critical. Affected by this issue is some unknown functionality of the file card_scan_decoder.php. The manipulation of…	NVD-CWE-noinfo	CVE-2017-20038	2024-11-21 12:22	2022-06-11	Show	GitHub Exploit DB Packet Storm

259279	8.8	HIGH Network	sicunet	access_control	A vulnerability has been found in SICUNET Access Controller 0.32-05z and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation of the argument c leads t…	NVD-CWE-noinfo	CVE-2017-20037	2024-11-21 12:22	2022-06-11	Show	GitHub Exploit DB Packet Storm

259280	5.4	MEDIUM Network	phplist	phplist	A vulnerability, which was classified as problematic, was found in PHPList 3.2.6. Affected is an unknown function of the file /lists/admin/ of the component Bounce Rule. The manipulation leads to cro…	CWE-79 Cross-site Scripting	CVE-2017-20036	2024-11-21 12:22	2022-06-10	Show	GitHub Exploit DB Packet Storm