Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 10:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
661	5.3	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける不変と仮定される Web パラメータの外部制御に関する脆弱性	CWE-472 不変と仮定される Web パラメータの外部制御	CVE-2026-11669	2026-06-11 16:13	2026-06-9	Show	GitHub Exploit DB Packet Storm

662	8.3	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-11672	2026-06-11 16:13	2026-06-9	Show	GitHub Exploit DB Packet Storm

663	8.3	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-11676	2026-06-11 16:13	2026-06-9	Show	GitHub Exploit DB Packet Storm

664	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-11681	2026-06-11 16:13	2026-06-9	Show	GitHub Exploit DB Packet Storm

665	8.3	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-11682	2026-06-11 16:13	2026-06-9	Show	GitHub Exploit DB Packet Storm

666	8.1	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-11689	2026-06-11 16:13	2026-06-9	Show	GitHub Exploit DB Packet Storm

667	7.8	重要 Local	シスコシステムズ	Cisco SD-WAN vSmart Controller	シスコシステムズのCisco Catalyst SD-WAN Manager等の複数製品におけるエンコードおよびエスケープに関する脆弱性	CWE-116 不適切なエンコード、または出力のエスケープ	CVE-2026-20245	2026-06-11 16:13	2026-06-4	Show	GitHub Exploit DB Packet Storm

668	6.1	警告 Network	Apache Software Foundation	answer	Apache Software Foundationのanswerにおける代替 XSS 構文の不適切な無効化に関する脆弱性	CWE-87 代替 XSS 構文の不適切な無効化	CVE-2026-25688	2026-06-11 16:12	2026-06-9	Show	GitHub Exploit DB Packet Storm

669	6.1	警告 Network	Apache Software Foundation	answer	Apache Software Foundationのanswerにおける認可されていない行為者への個人情報の漏えいに関する脆弱性	CWE-359 認可されていないアクターへの個人情報の漏えい	CVE-2026-25699	2026-06-11 16:12	2026-06-9	Show	GitHub Exploit DB Packet Storm

670	6.5	警告 Network	Apache Software Foundation	answer	Apache Software Foundationのanswerにおける危険なタイプのファイルの無制限アップロードに関する脆弱性	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2026-33582	2026-06-11 16:12	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
258221	6.5	MEDIUM Network	redhat	libvirt	A NULL pointer deference flaw was found in the way libvirt from 2.5.0 to 3.0.0 handled empty drives. A remote authenticated attacker could use this flaw to crash libvirtd daemon resulting in denial o…	CWE-476 NULL Pointer Dereference	CVE-2017-2635	2024-11-21 12:23	2018-08-23	Show	GitHub Exploit DB Packet Storm

258222	6.5	MEDIUM Network	libbpg_project	libbpg	A vulnerability was found while fuzzing libbpg 0.9.7. It is a NULL pointer dereference issue due to missing check of the return value of function malloc in the BPG encoder. This vulnerability appeare…	CWE-476 NULL Pointer Dereference	CVE-2017-2575	2024-11-21 12:23	2018-08-23	Show	GitHub Exploit DB Packet Storm

258223	8.2	HIGH Local	redhat openstack	openstack tripleo-common	A flaw was found in openstack-tripleo-common as shipped with Red Hat Openstack Enterprise 10 and 11. The sudoers file as installed with OSP's openstack-tripleo-common package is much too permissive. …	CWE-22 Path Traversal	CVE-2017-2627	2024-11-21 12:23	2018-08-23	Show	GitHub Exploit DB Packet Storm

258224	4.3	MEDIUM Network	theforeman	katello	A flaw was found in Foreman's katello plugin version 3.4.5. After setting a new role to allow restricted access on a repository with a filter (filter set on the Product Name), the filter is not respe…	-	CVE-2017-2662	2024-11-21 12:23	2018-08-23	Show	GitHub Exploit DB Packet Storm

258225	5.3	MEDIUM Network	jenkins	email_extension	jenkins-email-ext before version 2.57.1 is vulnerable to an Information Exposure. The Email Extension Plugins is able to send emails to a dynamically created list of users based on the changelogs, li…	CWE-200 Information Exposure	CVE-2017-2654	2024-11-21 12:23	2018-08-7	Show	GitHub Exploit DB Packet Storm

258226	7.8	HIGH Local	redhat	subscription-manager	It was found that subscription-manager's DBus interface before 1.19.4 let unprivileged user access the com.redhat.RHSM1.Facts.GetFacts and com.redhat.RHSM1.Config.Set methods. An unprivileged local a…	NVD-CWE-noinfo	CVE-2017-2663	2024-11-21 12:23	2018-07-28	Show	GitHub Exploit DB Packet Storm

258227	8.8	HIGH Network	jenkins	distributed_fork	It was found that there were no permission checks performed in the Distributed Fork plugin before and including 1.5.0 for Jenkins that provides the dist-fork CLI command beyond the basic check for Ov…	CWE-287 Improper Authentication	CVE-2017-2652	2024-11-21 12:23	2018-07-28	Show	GitHub Exploit DB Packet Storm

258228	8.5	HIGH Network	jenkins	pipeline_classpath_step	It was found that the use of Pipeline: Classpath Step Jenkins plugin enables a bypass of the Script Security sandbox for users with SCM commit access, as well as users with e.g. Job/Configure permiss…	NVD-CWE-noinfo	CVE-2017-2650	2024-11-21 12:23	2018-07-28	Show	GitHub Exploit DB Packet Storm

258229	8.1	HIGH Network	jenkins	active_directory	It was found that the Active Directory Plugin for Jenkins up to and including version 2.2 did not verify certificates of the Active Directory server, thereby enabling Man-in-the-Middle attacks.	CWE-295 Improper Certificate Validation	CVE-2017-2649	2024-11-21 12:23	2018-07-28	Show	GitHub Exploit DB Packet Storm

258230	5.6	MEDIUM Network	jenkins	ssh_slaves	It was found that jenkins-ssh-slaves-plugin before version 1.15 did not perform host key verification, thereby enabling Man-in-the-Middle attacks.	CWE-295 Improper Certificate Validation	CVE-2017-2648	2024-11-21 12:23	2018-07-28	Show	GitHub Exploit DB Packet Storm