Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 24, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1101	-	-	三菱電機	ルームエアコン向け無線LANアダプター冷蔵庫炊飯器パッケージエアコンロスナイセントラル換気システム換気扇用・ロスナイ用スマートスイッチバス乾燥・暖房・換気システムルームエアコンヒートポンプ給湯機・HEMS対応アダプター、無線LANアダプター IHクッキングヒーターエアフロー換気システム、ヒートポンプ式冷温水システム、換…	三菱電機製複数の家電製品におけるハードコードされた認証情報の使用に関する脆弱性	CWE-798 ハードコードされた認証情報の使用	CVE-2026-5667	2026-06-16 15:07	2026-06-15	Show	GitHub Exploit DB Packet Storm

1102	-	-	（複数のベンダ）	（複数の製品）	OpenSSLにおける脆弱性に対するアップデート（2026年6月9日）	-	-	2026-06-16 15:07	2026-06-15	Show	GitHub Exploit DB Packet Storm

1103	7.5	重要 Network	image-size	image-size	image-sizeにおける無限ループに関する脆弱性	CWE-835 無限ループ	CVE-2025-71319	2026-06-16 13:41	2026-06-9	Show	GitHub Exploit DB Packet Storm

1104	7.5	重要 Network	image-size	image-size	image-sizeにおける無限ループに関する脆弱性	CWE-835 無限ループ	CVE-2025-71329	2026-06-16 13:41	2026-06-10	Show	GitHub Exploit DB Packet Storm

1105	7.5	重要 Network	image-size	image-size	image-sizeにおける無限ループに関する脆弱性	CWE-835 無限ループ	CVE-2025-71330	2026-06-16 13:41	2026-06-10	Show	GitHub Exploit DB Packet Storm

1106	5.7	警告 Network	OTRS プロジェクト	OTRS	OTRS プロジェクトのOTRSにおける複数の脆弱性	CWE-400 CWE-770	CVE-2026-48187	2026-06-16 13:40	2026-06-1	Show	GitHub Exploit DB Packet Storm

1107	9.1	緊急 Network	OTRS プロジェクト	OTRS	OTRS プロジェクトのOTRSにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-48188	2026-06-16 13:40	2026-06-1	Show	GitHub Exploit DB Packet Storm

1108	5.7	警告 Network	OTRS プロジェクト	OTRS	OTRS プロジェクトのOTRSにおける情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2026-48189	2026-06-16 13:40	2026-06-1	Show	GitHub Exploit DB Packet Storm

1109	3.5	低 Network	OTRS プロジェクト	OTRS	OTRS プロジェクトのOTRSにおける不適切なデフォルトパーミッションに関する脆弱性	CWE-276 不適切なデフォルトパーミッション	CVE-2026-48190	2026-06-16 13:40	2026-06-1	Show	GitHub Exploit DB Packet Storm

1110	3.5	低 Network	OTRS プロジェクト	OTRS	OTRS プロジェクトのOTRSにおける不適切なデフォルトパーミッションに関する脆弱性	CWE-276 不適切なデフォルトパーミッション	CVE-2026-48191	2026-06-16 13:40	2026-06-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
256371	7.8	HIGH Local	nvidia	gpu_driver	NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape where a value passed from a user to the driver is not correctly validated …	CWE-20 Improper Input Validation	CVE-2017-6268	2024-11-21 12:29	2017-09-23	Show	GitHub Exploit DB Packet Storm

256372	5.5	MEDIUM Local	nvidia	gpu_driver	NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where an incorrect initialization of internal objects can cause an infinite loop which may lead to a denial of serv…	CWE-665 CWE-835 Improper Initialization Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2017-6267	2024-11-21 12:29	2017-09-23	Show	GitHub Exploit DB Packet Storm

256373	5.5	MEDIUM Local	nvidia	gpu_driver	NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where improper access controls could allow unprivileged users to cause a denial of service.	NVD-CWE-noinfo	CVE-2017-6266	2024-11-21 12:29	2017-09-23	Show	GitHub Exploit DB Packet Storm

256374	9.8	CRITICAL Network	sophos	astaro_security_gateway_firmware	Astaro Security Gateway (aka ASG) 7 allows remote attackers to execute arbitrary code via a crafted request to index.plx.	CWE-20 Improper Input Validation	CVE-2017-6315	2024-11-21 12:29	2017-09-20	Show	GitHub Exploit DB Packet Storm

256375	5.9	MEDIUM Network	f5	big-ip_local_traffic_manager big-ip_application_acceleration_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_access_policy_manager big-ip_application_security_manager<…	In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM, and WebSafe 12.1.2-HF1 and 13.0.0, an undisclosed type of responses may cause TMM to restart, causing an interruption of se…	NVD-CWE-noinfo	CVE-2017-6147	2024-11-21 12:29	2017-09-19	Show	GitHub Exploit DB Packet Storm

256376	6.5	MEDIUM Network	symantec	encryption_desktop	Symantec Encryption Desktop before SED 10.4.1MP2 can allow remote attackers to cause a denial of service (resource consumption) via crafted web requests."	NVD-CWE-noinfo	CVE-2017-6330	2024-11-21 12:29	2017-09-13	Show	GitHub Exploit DB Packet Storm

256377	7.5	HIGH Network	libgd debian fedoraproject canonical	libgd debian_linux fedora ubuntu_linux	Double free vulnerability in the gdImagePngPtr function in libgd2 before 2.2.5 allows remote attackers to cause a denial of service via vectors related to a palette with no colors.	CWE-415 Double Free	CVE-2017-6362	2024-11-21 12:29	2017-09-7	Show	GitHub Exploit DB Packet Storm

256378	7.8	HIGH Local	symantec	vip_access_for_desktop	Symantec VIP Access for Desktop prior to 2.2.4 can be susceptible to a DLL Pre-Loading vulnerability. These types of issues occur when an application looks to call a DLL for execution and an attacker…	CWE-427 Uncontrolled Search Path Element	CVE-2017-6329	2024-11-21 12:29	2017-08-22	Show	GitHub Exploit DB Packet Storm

256379	8.8	HIGH Adjacent	google	android	In the touch controller function in all Qualcomm products with Android for MSM, Firefox OS for MSM, or QRD Android, a variable may be controlled by the user and can lead to a buffer overflow.	CWE-120 Classic Buffer Overflow	CVE-2017-6421	2024-11-21 12:29	2017-08-17	Show	GitHub Exploit DB Packet Storm

256380	8.8	HIGH Network	symantec	message_gateway	The Symantec Messaging Gateway before 10.6.3-267 can encounter an issue of cross site request forgery (also known as one-click attack and is abbreviated as CSRF or XSRF), which is a type of malicious…	CWE-352 Origin Validation Error	CVE-2017-6328	2024-11-21 12:29	2017-08-12	Show	GitHub Exploit DB Packet Storm