Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 24, 2026, 4:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 1081 | 6.3 |
警告
Local |
Zephyr Project | Zephyr | Zephyr ProjectのZephyrにおける解放済みメモリの使用に関する脆弱性 |
CWE-416
解放済みメモリの使用 |
CVE-2026-10635 | 2026-06-17 15:35 | 2026-06-16 | Show | GitHub Exploit DB Packet Storm |
| 1082 | 9.8 |
緊急
Network |
Altium | Altium On-Prem Enterprise Server | AltiumのAltium On-Prem Enterprise Serverにおける複数の脆弱性 |
CWE-22 CWE-798 |
CVE-2026-11414 | 2026-06-17 15:35 | 2026-06-5 | Show | GitHub Exploit DB Packet Storm |
| 1083 | 8.8 |
重要
Network |
Altium | Altium On-Prem Enterprise Server | AltiumのAltium On-Prem Enterprise Serverにおける複数の脆弱性 |
CWE-22 CWE-434 |
CVE-2026-11419 | 2026-06-17 15:35 | 2026-06-5 | Show | GitHub Exploit DB Packet Storm |
| 1084 | 9.8 |
緊急
Network |
Altium | Altium On-Prem Enterprise Server | AltiumのAltium On-Prem Enterprise Serverにおける複数の脆弱性 |
CWE-22 CWE-306 |
CVE-2026-11420 | 2026-06-17 15:35 | 2026-06-5 | Show | GitHub Exploit DB Packet Storm |
| 1085 | 8.8 |
重要
Network |
Devolutions | Devolutions Remote Desktop Manager | DevolutionsのDevolutions Remote Desktop ManagerにおけるOS コマンドインジェクションの脆弱性 |
CWE-78
OSコマンド・インジェクション |
CVE-2026-12161 | 2026-06-17 15:35 | 2026-06-16 | Show | GitHub Exploit DB Packet Storm |
| 1086 | 5.5 |
警告
Network |
Devolutions | Devolutions Remote Desktop Manager | DevolutionsのDevolutions Remote Desktop Managerにおけるホストの不一致による証明書の検証に関する脆弱性 |
CWE-297
ホストの不一致による証明書の不適切な検証 |
CVE-2026-12162 | 2026-06-17 15:35 | 2026-06-16 | Show | GitHub Exploit DB Packet Storm |
| 1087 | 8.8 |
重要
Network |
D-Link Corporation | DCS-935L ファームウェア | D-Link CorporationのDCS-935L ファームウェアにおける複数の脆弱性 |
CWE-119 CWE-134 |
CVE-2026-12174 | 2026-06-17 15:35 | 2026-06-13 | Show | GitHub Exploit DB Packet Storm |
| 1088 | 8.8 |
重要
Network |
Mozilla Foundation |
Mozilla Firefox Mozilla Thunderbird |
Mozilla FoundationのMozilla Firefox等の複数製品における権限管理に関する脆弱性 |
CWE-269
不適切な権限管理 |
CVE-2026-12289 | 2026-06-17 15:35 | 2026-06-16 | Show | GitHub Exploit DB Packet Storm |
| 1089 | 5.4 |
警告
Network |
Mozilla Foundation |
Mozilla Firefox Mozilla Thunderbird |
Mozilla FoundationのMozilla Firefox等の複数製品における複数の脆弱性 |
CWE-125 CWE-416 CWE-787 |
CVE-2026-12298 | 2026-06-17 15:35 | 2026-06-16 | Show | GitHub Exploit DB Packet Storm |
| 1090 | 5.4 |
警告
Network |
Mozilla Foundation |
Mozilla Firefox Mozilla Thunderbird |
Mozilla FoundationのMozilla Firefox等の複数製品における型の取り違えに関する脆弱性 |
CWE-843
型の取り違え |
CVE-2026-12299 | 2026-06-17 15:35 | 2026-06-16 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 24, 2026, 4 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 256351 | 5.9 |
MEDIUM
Network |
f5 |
big-ip_local_traffic_manager big-ip_application_acceleration_manager big-ip_advanced_firewall_manager big-ip_access_policy_manager big-ip_application_security_manager big-ip_link_contr… |
In F5 BIG-IP LTM, AAM, AFM, APM, ASM, Link Controller, PEM, PSM software version 12.0.0 to 12.1.2, 11.6.0 to 11.6.1, 11.4.0 to 11.5.4, when a virtual server uses the standard configuration of HTTP/2 … |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-6163 | 2024-11-21 12:29 | 2017-10-27 | Show | GitHub Exploit DB Packet Storm |
| 256352 | 5.9 |
MEDIUM
Network |
f5 |
big-ip_local_traffic_manager big-ip_application_acceleration_manager big-ip_advanced_firewall_manager big-ip_access_policy_manager big-ip_application_security_manager big-ip_link_contr… |
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, Websafe software version 12.0.0 to 12.1.2, 11.6.0 to 11.6.1, 11.4.0 to 11.5.4, 11.2.1, in some cases TMM… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-6162 | 2024-11-21 12:29 | 2017-10-27 | Show | GitHub Exploit DB Packet Storm |
| 256353 | 5.3 |
MEDIUM
Adjacent |
f5 |
big-ip_local_traffic_manager big-ip_application_acceleration_manager big-ip_advanced_firewall_manager big-ip_access_policy_manager big-ip_application_security_manager big-ip_link_contr… |
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, WebAccelerator software version 12.0.0 - 12.1.2, 11.6.0 - 11.6.1, 11.4.0 - 11.5.4, 11.2.1, when ConfigSy… |
CWE-400
Uncontrolled Resource Consumption |
CVE-2017-6161 | 2024-11-21 12:29 | 2017-10-27 | Show | GitHub Exploit DB Packet Storm |
| 256354 | 5.9 |
MEDIUM
Network |
f5 |
big-ip_application_acceleration_manager big-ip_policy_enforcement_manager |
In F5 BIG-IP AAM and PEM software version 12.0.0 to 12.1.1, 11.6.0 to 11.6.1, 11.4.1 to 11.5.4, a remote attacker may create maliciously crafted HTTP request to cause Traffic Management Microkernel (… |
NVD-CWE-noinfo
|
CVE-2017-6160 | 2024-11-21 12:29 | 2017-10-27 | Show | GitHub Exploit DB Packet Storm |
| 256355 | 5.9 |
MEDIUM
Network |
f5 |
big-ip_local_traffic_manager big-ip_application_acceleration_manager big-ip_advanced_firewall_manager big-ip_access_policy_manager big-ip_application_security_manager big-ip_link_contr… |
F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM, Websafe software version 12.0.0 to 12.1.2, 11.6.0 to 11.6.1 are vulnerable to a denial of service attack when the MPTCP o… |
NVD-CWE-noinfo
|
CVE-2017-6159 | 2024-11-21 12:29 | 2017-10-27 | Show | GitHub Exploit DB Packet Storm |
| 256356 | 8.1 |
HIGH
Network |
f5 |
big-ip_local_traffic_manager big-ip_application_acceleration_manager big-ip_advanced_firewall_manager big-ip_access_policy_manager big-ip_application_security_manager big-ip_link_contr… |
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and Websafe software version 12.0.0 to 12.1.1, 11.6.0 to 11.6.1, 11.5.0 - 11.5.4, virtual servers with a configuration … |
NVD-CWE-noinfo
|
CVE-2017-6157 | 2024-11-21 12:29 | 2017-10-27 | Show | GitHub Exploit DB Packet Storm |
| 256357 | 9.8 |
CRITICAL
Network |
f5 |
big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager big-ip_domain_name_system … |
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM, and WebSafe 11.5.1 HF6 through 11.5.4 HF4, 11.6.0 through 11.6.1 HF1, and 12.0.0 through 12.1.2 on VIPRION platforms o… |
CWE-532
Inclusion of Sensitive Information in Log Files |
CVE-2017-6165 | 2024-11-21 12:29 | 2017-10-21 | Show | GitHub Exploit DB Packet Storm |
| 256358 | 7.3 |
HIGH
Network |
f5 |
big-ip_link_controller big-ip_local_traffic_manager big-ip_advanced_firewall_manager big-ip_access_policy_manager big-ip_policy_enforcement_manager big-ip_domain_name_system big-ip_… |
iControl REST in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM, and WebSafe 12.0.0 through 12.1.2 and 13.0.0 includes a service to convert authorization BIGIPAuthCookie cook… |
CWE-613
Insufficient Session Expiration |
CVE-2017-6145 | 2024-11-21 12:29 | 2017-10-21 | Show | GitHub Exploit DB Packet Storm |
| 256359 | 7.4 |
HIGH
Network |
f5 | big-ip_policy_enforcement_manager | In F5 BIG-IP PEM 12.1.0 through 12.1.2 when downloading the Type Allocation Code (TAC) database file via HTTPS, the server's certificate is not verified. Attackers in a privileged network position ma… |
CWE-295
Improper Certificate Validation |
CVE-2017-6144 | 2024-11-21 12:29 | 2017-10-21 | Show | GitHub Exploit DB Packet Storm |
| 256360 | 5.9 |
MEDIUM
Network |
f5 |
big-ip_local_traffic_manager big-ip_advanced_firewall_manager big-ip_access_policy_manager big-ip_policy_enforcement_manager big-ip_application_security_manager big-ip_application_acce… |
In F5 BIG-IP LTM, AAM, AFM, APM, ASM, Link Controller, PEM, and WebSafe 12.1.0 through 12.1.2, certain values in a TLS abbreviated handshake when using a client SSL profile with the Session Ticket op… |
CWE-20
Improper Input Validation |
CVE-2017-6141 | 2024-11-21 12:29 | 2017-10-21 | Show | GitHub Exploit DB Packet Storm |