Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1011	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおけるリソースのロックに関する脆弱性	CWE-667 不適切なロック	CVE-2026-46061	2026-06-17 15:39	2026-05-27	Show	GitHub Exploit DB Packet Storm

1012	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-46062	2026-06-17 15:39	2026-05-27	Show	GitHub Exploit DB Packet Storm

1013	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおけるリソースのロックに関する脆弱性	CWE-667 不適切なロック	CVE-2026-46063	2026-06-17 15:39	2026-05-27	Show	GitHub Exploit DB Packet Storm

1014	6.1	警告 Network	diagrams	drawio	diagramsのdrawioにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-46642	2026-06-17 15:39	2026-06-10	Show	GitHub Exploit DB Packet Storm

1015	7.2	重要 Network	MariaDB Corporation Ab.	MariaDB	MariaDB Corporation Ab.のMariaDBにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-48163	2026-06-17 15:39	2026-06-12	Show	GitHub Exploit DB Packet Storm

1016	7.2	重要 Network	MariaDB Corporation Ab.	MariaDB	MariaDB Corporation Ab.のMariaDBにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-48165	2026-06-17 15:39	2026-06-12	Show	GitHub Exploit DB Packet Storm

1017	7.8	重要 Local	レッドハット X.Org Foundation	X.Org X Server Red Hat Enterprise Linux xwayland	レッドハット等の複数ベンダの製品における境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-50264	2026-06-17 15:39	2026-06-5	Show	GitHub Exploit DB Packet Storm

1018	7.5	重要 Network	Express.js	Multer	Express.jsのMulterにおける不完全なクリーンアップに関する脆弱性	CWE-459 不完全なクリーンアップ	CVE-2026-5038	2026-06-17 15:39	2026-06-15	Show	GitHub Exploit DB Packet Storm

1019	7.5	重要 Network	Express.js	Multer	Express.jsのMulterにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-5079	2026-06-17 15:39	2026-06-15	Show	GitHub Exploit DB Packet Storm

1020	8.1	重要 Network	Zoom Video Communications, Inc.	Zoom Meeting SDK Zoom Workplace	Zoom Video Communications, Inc.のZoom Meeting SDK等の複数製品におけるカスタム URL スキームのハンドラの不適切な認可に関する脆弱性	CWE-939 カスタム URL スキームのハンドラの不適切な認可	CVE-2026-53408	2026-06-17 15:39	2026-06-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
256371	7.8	HIGH Local	nvidia	gpu_driver	NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape where a value passed from a user to the driver is not correctly validated …	CWE-20 Improper Input Validation	CVE-2017-6268	2024-11-21 12:29	2017-09-23	Show	GitHub Exploit DB Packet Storm

256372	5.5	MEDIUM Local	nvidia	gpu_driver	NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where an incorrect initialization of internal objects can cause an infinite loop which may lead to a denial of serv…	CWE-665 CWE-835 Improper Initialization Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2017-6267	2024-11-21 12:29	2017-09-23	Show	GitHub Exploit DB Packet Storm

256373	5.5	MEDIUM Local	nvidia	gpu_driver	NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where improper access controls could allow unprivileged users to cause a denial of service.	NVD-CWE-noinfo	CVE-2017-6266	2024-11-21 12:29	2017-09-23	Show	GitHub Exploit DB Packet Storm

256374	9.8	CRITICAL Network	sophos	astaro_security_gateway_firmware	Astaro Security Gateway (aka ASG) 7 allows remote attackers to execute arbitrary code via a crafted request to index.plx.	CWE-20 Improper Input Validation	CVE-2017-6315	2024-11-21 12:29	2017-09-20	Show	GitHub Exploit DB Packet Storm

256375	5.9	MEDIUM Network	f5	big-ip_local_traffic_manager big-ip_application_acceleration_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_access_policy_manager big-ip_application_security_manager<…	In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM, and WebSafe 12.1.2-HF1 and 13.0.0, an undisclosed type of responses may cause TMM to restart, causing an interruption of se…	NVD-CWE-noinfo	CVE-2017-6147	2024-11-21 12:29	2017-09-19	Show	GitHub Exploit DB Packet Storm

256376	6.5	MEDIUM Network	symantec	encryption_desktop	Symantec Encryption Desktop before SED 10.4.1MP2 can allow remote attackers to cause a denial of service (resource consumption) via crafted web requests."	NVD-CWE-noinfo	CVE-2017-6330	2024-11-21 12:29	2017-09-13	Show	GitHub Exploit DB Packet Storm

256377	7.5	HIGH Network	libgd debian fedoraproject canonical	libgd debian_linux fedora ubuntu_linux	Double free vulnerability in the gdImagePngPtr function in libgd2 before 2.2.5 allows remote attackers to cause a denial of service via vectors related to a palette with no colors.	CWE-415 Double Free	CVE-2017-6362	2024-11-21 12:29	2017-09-7	Show	GitHub Exploit DB Packet Storm

256378	7.8	HIGH Local	symantec	vip_access_for_desktop	Symantec VIP Access for Desktop prior to 2.2.4 can be susceptible to a DLL Pre-Loading vulnerability. These types of issues occur when an application looks to call a DLL for execution and an attacker…	CWE-427 Uncontrolled Search Path Element	CVE-2017-6329	2024-11-21 12:29	2017-08-22	Show	GitHub Exploit DB Packet Storm

256379	8.8	HIGH Adjacent	google	android	In the touch controller function in all Qualcomm products with Android for MSM, Firefox OS for MSM, or QRD Android, a variable may be controlled by the user and can lead to a buffer overflow.	CWE-120 Classic Buffer Overflow	CVE-2017-6421	2024-11-21 12:29	2017-08-17	Show	GitHub Exploit DB Packet Storm

256380	8.8	HIGH Network	symantec	message_gateway	The Symantec Messaging Gateway before 10.6.3-267 can encounter an issue of cross site request forgery (also known as one-click attack and is abbreviated as CSRF or XSRF), which is a type of malicious…	CWE-352 Origin Validation Error	CVE-2017-6328	2024-11-21 12:29	2017-08-12	Show	GitHub Exploit DB Packet Storm