Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 20, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 1431 | 9.8 |
緊急
Network |
日本エイサー | Acer Connect M6E 5G Firmware | エイサーのAcer Connect M6E 5G Firmwareにおけるデータの信頼性についての不十分な検証に関する脆弱性 |
CWE-345
データの信頼性についての不十分な検証 |
CVE-2026-50214 | 2026-06-9 14:13 | 2026-06-4 | Show | GitHub Exploit DB Packet Storm |
| 1432 | 4.9 |
警告
Network |
日本エイサー | Acer Connect M6E 5G Firmware | エイサーのAcer Connect M6E 5G Firmwareにおける情報漏えいに関する脆弱性 |
CWE-200
情報漏えい |
CVE-2026-50224 | 2026-06-9 14:13 | 2026-06-4 | Show | GitHub Exploit DB Packet Storm |
| 1433 | 9.1 |
緊急
Network |
日本エイサー | Acer Connect M6E 5G Firmware | エイサーのAcer Connect M6E 5G Firmwareにおける重要な機能に対する認証の欠如に関する脆弱性 |
CWE-306
重要な機能に対する認証の欠如 解説 |
CVE-2026-50225 | 2026-06-9 14:12 | 2026-06-4 | Show | GitHub Exploit DB Packet Storm |
| 1434 | 5.3 |
警告
Network |
日本エイサー | Acer Connect M6E 5G Firmware | エイサーのAcer Connect M6E 5G Firmwareにおけるハードコードされた暗号鍵の使用に関する脆弱性 |
CWE-321
ハードコードされた暗号鍵の使用 |
CVE-2026-50226 | 2026-06-9 14:12 | 2026-06-4 | Show | GitHub Exploit DB Packet Storm |
| 1435 | 5.4 |
警告
Network |
Check MK | Check MK | Check MKにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2026-7186 | 2026-06-9 14:12 | 2026-06-8 | Show | GitHub Exploit DB Packet Storm |
| 1436 | 4.8 |
警告
Network |
Check MK | Check MK | Check MKにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2026-8078 | 2026-06-9 14:12 | 2026-06-8 | Show | GitHub Exploit DB Packet Storm |
| 1437 | 4.8 |
警告
Network |
Check MK | Check MK | Check MKにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2026-9549 | 2026-06-9 14:12 | 2026-06-8 | Show | GitHub Exploit DB Packet Storm |
| 1438 | 6.5 |
警告
Adjacent |
エリクソン | Packet Core Controller | エリクソンのPacket Core Controllerにおける不正な構文構造の不適切な処理に関する脆弱性 |
CWE-228
不正な構文構造の不適切な処理 |
CVE-2025-59174 | 2026-06-9 14:12 | 2026-06-5 | Show | GitHub Exploit DB Packet Storm |
| 1439 | 8.8 |
重要
Network |
Pointsharp | ID Server | PointsharpのID Serverにおけるユーザ制御の鍵による認証回避に関する脆弱性 |
CWE-639
ユーザ制御の鍵による認証回避 |
CVE-2026-3999 | 2026-06-9 14:12 | 2026-03-13 | Show | GitHub Exploit DB Packet Storm |
| 1440 | 7.8 |
重要
Local |
レッドハット X.Org Foundation |
X.Org X Server xwayland Red Hat Enterprise Linux |
レッドハット等の複数ベンダの製品におけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-121
スタックオーバーフロー |
CVE-2026-50256 | 2026-06-9 14:12 | 2026-06-5 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 21, 2026, 4:01 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 255161 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux enterprise_linux_server_aus enterprise_linux_server_eus firefox thu… |
A buffer overflow can occur when the image renderer attempts to paint non-displayable SVG elements. This results in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.3, Fir… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-7786 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 255162 | 5.3 |
MEDIUM
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux enterprise_linux_server_aus enterprise_linux_server_eus thunderbird
On pages containing an iframe, the "data:" protocol can be used to create a modal alert that will render over arbitrary domains following page navigation, spoofing of the origin of the modal alert fr…
|
CWE-20
|
Improper Input Validation
CVE-2017-7791
|
2024-11-21 12:32 |
2018-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 255163 | 7.5 |
HIGH
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux enterprise_linux_server_aus enterprise_linux_server_eus thunderbird
Same-origin policy protections can be bypassed on pages with embedded iframes during page reloads, allowing the iframes to access content on the top level page, leading to information disclosure. Thi…
|
CWE-200
|
Information Exposure
CVE-2017-7787
|
2024-11-21 12:32 |
2018-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 255164 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux enterprise_linux_server_aus enterprise_linux_server_eus thunderbird
A buffer overflow can occur when manipulating Accessible Rich Internet Applications (ARIA) attributes within the DOM. This results in a potentially exploitable crash. This vulnerability affects Thund…
|
CWE-119
|
Incorrect Access of Indexable Resource ('Range Error')
CVE-2017-7785
|
2024-11-21 12:32 |
2018-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 255165 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux enterprise_linux_server_aus enterprise_linux_server_eus thunderbird
A use-after-free vulnerability can occur when reading an image observer during frame reconstruction after the observer has been freed. This results in a potentially exploitable crash. This vulnerabil…
|
CWE-416
|
Use After Free
CVE-2017-7784
|
2024-11-21 12:32 |
2018-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 255166 | 7.5 |
HIGH
Network |
mozilla | firefox | If a long user name is used in a username/password combination in a site URL (such as " http://UserName:Password@example.com"), the resulting modal prompt will hang in a non-responsive state or crash… |
CWE-20
Improper Input Validation |
CVE-2017-7783 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 255167 | 5.3 |
MEDIUM
Network |
mozilla |
firefox firefox_esr thunderbird |
An error in the "WindowsDllDetourPatcher" where a RWX ("Read/Write/Execute") 4k block is allocated but never protected, violating DEP protections. Note: This attack only affects Windows operating sys… |
CWE-269
Improper Privilege Management |
CVE-2017-7782 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 255168 | 5.9 |
MEDIUM
Network |
mozilla | firefox | An error occurs in the elliptic curve point addition algorithm that uses mixed Jacobian-affine coordinates where it can yield a result "POINT_AT_INFINITY" when it should not. A man-in-the-middle atta… |
NVD-CWE-noinfo
|
CVE-2017-7781 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 255169 | 9.8 |
CRITICAL
Network |
mozilla | firefox | Memory safety bugs were reported in Firefox 54. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary c… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-7780 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 255170 | 9.8 |
CRITICAL
Network |
mozilla debian sil |
firefox thunderbird firefox_esr debian_linux graphite2 |
A number of security vulnerabilities in the Graphite 2 library including out-of-bounds reads, buffer overflow reads and writes, and the use of uninitialized memory. These issues were addressed in Gra… |
CWE-119 CWE-125 CWE-787 Incorrect Access of Indexable Resource ('Range Error') Out-of-bounds Read Out-of-bounds Write |
CVE-2017-7778 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |