Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
811 8.8 重要
Network 		Mattermost, Inc. Mattermost Server Mattermost, Inc.のMattermost Serverにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-7387 2026-06-22 11:46 2026-06-12 Show GitHub Exploit DB Packet Storm
812 6.5 警告
Adjacent 		TP-LINK Technologies Tapo C520WS Firmware TP-LINK TechnologiesのTapo C520WS Firmwareにおける入力確認に関する脆弱性 CWE-20
CWE-noinfo
CVE-2026-8714 2026-06-22 11:46 2026-06-5 Show GitHub Exploit DB Packet Storm
813 6.5 警告
Network 		MongoDB Inc. MongoDB MongoDB Inc.のMongoDBにおける重要な情報の平文での送信に関する脆弱性 CWE-319
重要な情報の平文での送信 		CVE-2026-9741 2026-06-22 11:46 2026-06-9 Show GitHub Exploit DB Packet Storm
814 5.9 警告
Network 		MongoDB Inc. MongoDB MongoDB Inc.のMongoDBにおける指定されたタイプの入力に対する不適切な検証に関する脆弱性 CWE-1287
指定されたタイプの入力に対する不適切な検証 		CVE-2026-9742 2026-06-22 11:46 2026-06-9 Show GitHub Exploit DB Packet Storm
815 6.5 警告
Network 		MongoDB Inc. MongoDB MongoDB Inc.のMongoDBにおける到達可能なアサーションに関する脆弱性 CWE-617
到達可能なアサーション 		CVE-2026-9746 2026-06-22 11:46 2026-06-9 Show GitHub Exploit DB Packet Storm
816 6.5 警告
Network 		MongoDB Inc. MongoDB MongoDB Inc.のMongoDBにおける到達可能なアサーションに関する脆弱性 CWE-617
到達可能なアサーション 		CVE-2026-9749 2026-06-22 11:46 2026-06-9 Show GitHub Exploit DB Packet Storm
817 6.5 警告
Network 		MongoDB Inc. MongoDB MongoDB Inc.のMongoDBにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-9752 2026-06-22 11:46 2026-06-9 Show GitHub Exploit DB Packet Storm
818 8.1 重要
Network 		MongoDB Inc. MongoDB MongoDB Inc.のMongoDBにおける複数の脆弱性 CWE-1287
CWE-787
CVE-2026-9753 2026-06-22 11:46 2026-06-9 Show GitHub Exploit DB Packet Storm
819 6.5 警告
Network 		MongoDB Inc. MongoDB MongoDB Inc.のMongoDBにおける初期化されていない変数の使用に関する脆弱性 CWE-457
初期化されていない変数の使用 		CVE-2026-9754 2026-06-22 11:46 2026-06-9 Show GitHub Exploit DB Packet Storm
820 7.8 重要
Local 		Google Android GoogleのAndroidにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-0143 2026-06-22 11:45 2026-06-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
259381 5.9 MEDIUM
Network 		chatsecure
zom 		chatsecure
zom 		An incorrect implementation of "XEP-0280: Message Carbons" in multiple XMPP clients allows a remote attacker to impersonate any user, including contacts, in the vulnerable application's display. This… CWE-20
CWE-346
 Improper Input Validation 
 Origin Validation Error 		CVE-2017-5590 2024-11-21 12:27 2017-02-10 Show GitHub Exploit DB Packet Storm
259382 5.9 MEDIUM
Network 		yaxim bruno
yaxim 		An incorrect implementation of "XEP-0280: Message Carbons" in multiple XMPP clients allows a remote attacker to impersonate any user, including contacts, in the vulnerable application's display. This… CWE-20
CWE-346
 Improper Input Validation 
 Origin Validation Error 		CVE-2017-5589 2024-11-21 12:27 2017-02-10 Show GitHub Exploit DB Packet Storm
259383 8.8 HIGH
Local 		firejail_project firejail Firejail before 0.9.44.4 and 0.9.38.x LTS before 0.9.38.8 LTS does not consider the .Xauthority case during its attempt to prevent accessing user files with an euid of zero, which allows local users … CWE-862
 Missing Authorization 		CVE-2017-5180 2024-11-21 12:27 2017-02-10 Show GitHub Exploit DB Packet Storm
259384 5.5 MEDIUM
Local 		zoneminder zoneminder A file disclosure and inclusion vulnerability exists in web/views/file.php in ZoneMinder 1.x through v1.30.0 because of unfiltered user-input being passed to readfile(), which allows an authenticated… CWE-200
Information Exposure 		CVE-2017-5595 2024-11-21 12:27 2017-02-7 Show GitHub Exploit DB Packet Storm
259385 8.8 HIGH
Network 		zoneminder zoneminder ZoneMinder v1.30 and v1.29, an open-source CCTV server web application, is vulnerable to CSRF (Cross Site Request Forgery) which allows a remote attack to make changes to the web application as the c… CWE-352
 Origin Validation Error 		CVE-2017-5368 2024-11-21 12:27 2017-02-7 Show GitHub Exploit DB Packet Storm
259386 6.1 MEDIUM
Network 		zoneminder zoneminder Multiple reflected XSS vulnerabilities exist within form and link input parameters of ZoneMinder v1.30 and v1.29, an open-source CCTV server web application, which allows a remote attacker to execute… CWE-79
Cross-site Scripting 		CVE-2017-5367 2024-11-21 12:27 2017-02-7 Show GitHub Exploit DB Packet Storm
259387 5.5 MEDIUM
Local 		linux linux_kernel The vc4_get_bcl function in drivers/gpu/drm/vc4/vc4_gem.c in the VideoCore DRM driver in the Linux kernel before 4.9.7 does not set an errno value upon certain overflow detections, which allows local… CWE-388
 7PK - Errors 		CVE-2017-5577 2024-11-21 12:27 2017-02-6 Show GitHub Exploit DB Packet Storm
259388 7.8 HIGH
Local 		linux linux_kernel Integer overflow in the vc4_get_bcl function in drivers/gpu/drm/vc4/vc4_gem.c in the VideoCore DRM driver in the Linux kernel before 4.9.7 allows local users to cause a denial of service or possibly … CWE-190
 Integer Overflow or Wraparound 		CVE-2017-5576 2024-11-21 12:27 2017-02-6 Show GitHub Exploit DB Packet Storm
259389 4.4 MEDIUM
Local 		linux linux_kernel The simple_set_acl function in fs/posix_acl.c in the Linux kernel before 4.9.6 preserves the setgid bit during a setxattr call involving a tmpfs filesystem, which allows local users to gain group pri… NVD-CWE-noinfo
CVE-2017-5551 2024-11-21 12:27 2017-02-6 Show GitHub Exploit DB Packet Storm
259390 5.5 MEDIUM
Local 		linux linux_kernel Off-by-one error in the pipe_advance function in lib/iov_iter.c in the Linux kernel before 4.9.5 allows local users to obtain sensitive information from uninitialized heap-memory locations in opportu… CWE-200
Information Exposure 		CVE-2017-5550 2024-11-21 12:27 2017-02-6 Show GitHub Exploit DB Packet Storm