Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
701 7.2 重要
Network 		- オラクルのEnterprise Manager Base Platformにおけるアクセス制御に関する脆弱性 CWE-284
CWE-noinfo
CVE-2026-46868 2026-06-22 11:52 2026-06-17 Show GitHub Exploit DB Packet Storm
702 6.5 警告
Network 		オラクル MySQL Shell オラクルのMySQL Shellにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2026-46869 2026-06-22 11:52 2026-06-17 Show GitHub Exploit DB Packet Storm
703 9 緊急
Network 		- オラクルのEnterprise Manager Base Platformにおけるアクセス制御に関する脆弱性 CWE-284
CWE-noinfo
CVE-2026-46872 2026-06-22 11:52 2026-06-17 Show GitHub Exploit DB Packet Storm
704 7.5 重要
Local 		オラクル Oracle VM VirtualBox オラクルのOracle VM VirtualBoxにおける権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2026-46873 2026-06-22 11:52 2026-06-17 Show GitHub Exploit DB Packet Storm
705 3.2
Local 		オラクル Oracle VM VirtualBox オラクルのOracle VM VirtualBoxにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-46874 2026-06-22 11:52 2026-06-17 Show GitHub Exploit DB Packet Storm
706 9.1 緊急
Network 		- オラクルのEnterprise Manager Base Platformにおけるアクセス制御に関する脆弱性 CWE-284
CWE-noinfo
CVE-2026-46875 2026-06-22 11:52 2026-06-17 Show GitHub Exploit DB Packet Storm
707 6 警告
Local 		オラクル Oracle VM VirtualBox オラクルのOracle VM VirtualBoxにおける権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2026-46877 2026-06-22 11:52 2026-06-17 Show GitHub Exploit DB Packet Storm
708 9.8 緊急
Network 		オラクル JD Edwards EnterpriseOne Tools オラクルのJD Edwards EnterpriseOne Toolsにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-46878 2026-06-22 11:52 2026-06-17 Show GitHub Exploit DB Packet Storm
709 9.8 緊急
Network 		オラクル JD Edwards EnterpriseOne Tools オラクルのJD Edwards EnterpriseOne Toolsにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-46879 2026-06-22 11:52 2026-06-17 Show GitHub Exploit DB Packet Storm
710 9.8 緊急
Network 		オラクル JD Edwards EnterpriseOne Tools オラクルのJD Edwards EnterpriseOne Toolsにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-46880 2026-06-22 11:51 2026-06-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
259661 5.4 MEDIUM
Network 		rsa adaptive_authentication_\(on_premise\) EMC RSA Adaptive Authentication (On-Premise) versions prior to 7.3 P2 (exclusive) contains a fix for a cross-site scripting vulnerability that could potentially be exploited by malicious users to com… CWE-79
Cross-site Scripting 		CVE-2017-4978 2024-11-21 12:26 2017-05-20 Show GitHub Exploit DB Packet Storm
259662 7.2 HIGH
Network 		mcafee epolicy_orchestrator A directory traversal vulnerability in the ePO Extension in McAfee ePolicy Orchestrator (ePO) 5.9.0, 5.3.2, and 5.1.3 and earlier allows remote authenticated users to execute a command of their choic… CWE-22
Path Traversal 		CVE-2017-3980 2024-11-21 12:26 2017-05-19 Show GitHub Exploit DB Packet Storm
259663 5.3 MEDIUM
Network 		mcafee network_data_loss_prevention User Name Disclosure in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote attackers to view user information via the appliance web interface. CWE-200
Information Exposure 		CVE-2017-4017 2024-11-21 12:26 2017-05-18 Show GitHub Exploit DB Packet Storm
259664 5.3 MEDIUM
Network 		mcafee network_data_loss_prevention Web Server method disclosure in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote attackers to exploit and find another hole via HTTP response header. CWE-200
Information Exposure 		CVE-2017-4016 2024-11-21 12:26 2017-05-18 Show GitHub Exploit DB Packet Storm
259665 4.5 MEDIUM
Network 		mcafee network_data_loss_prevention Clickjacking vulnerability in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote authenticated users to inject arbitrary web script or HTML via HTTP response header. CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2017-4015 2024-11-21 12:26 2017-05-18 Show GitHub Exploit DB Packet Storm
259666 8.0 HIGH
Network 		mcafee network_data_loss_prevention Session Side jacking vulnerability in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote authenticated users to view, add, and remove users via modification of the HTTP requ… CWE-384
 Session Fixation 		CVE-2017-4014 2024-11-21 12:26 2017-05-18 Show GitHub Exploit DB Packet Storm
259667 5.3 MEDIUM
Network 		mcafee network_data_loss_prevention Banner Disclosure in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote attackers to obtain product information via HTTP response header. CWE-200
Information Exposure 		CVE-2017-4013 2024-11-21 12:26 2017-05-18 Show GitHub Exploit DB Packet Storm
259668 6.5 MEDIUM
Network 		mcafee network_data_loss_prevention Privilege Escalation vulnerability in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote authenticated users to view confidential information via modification of the HTTP re… NVD-CWE-noinfo
CVE-2017-4012 2024-11-21 12:26 2017-05-18 Show GitHub Exploit DB Packet Storm
259669 6.1 MEDIUM
Network 		mcafee network_data_loss_prevention Embedding Script (XSS) in HTTP Headers vulnerability in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote attackers to get session/cookie information via modification of th… CWE-79
Cross-site Scripting 		CVE-2017-4011 2024-11-21 12:26 2017-05-18 Show GitHub Exploit DB Packet Storm
259670 9.6 CRITICAL
Adjacent 		cisco small_business_rv_router_firmware
small_business_rv_router_firmware_1.0 		A vulnerability in the Universal Plug-and-Play (UPnP) implementation in the Cisco CVR100W Wireless-N VPN Router could allow an unauthenticated, Layer 2-adjacent attacker to execute arbitrary code or … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-3882 2024-11-21 12:26 2017-05-17 Show GitHub Exploit DB Packet Storm