Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1661	5.4	警告 Network	マイクロソフト	Microsoft SharePoint Server	Microsoft SharePoint Server のなりすましの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-45465	2026-06-11 16:23	2026-06-9	Show	GitHub Exploit DB Packet Storm

1662	5.4	警告 Network	マイクロソフト	Microsoft SharePoint Server	Microsoft SharePoint Server のなりすましの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-45479	2026-06-11 16:23	2026-06-9	Show	GitHub Exploit DB Packet Storm

1663	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 24h2 Microsoft Windows 11 26h1 Microsoft Windows Server 2025 Microsoft Windows 11 25h2	Windows カーネルモードドライバーの特権の昇格の脆弱性	CWE-843 型の取り違え	CVE-2026-45600	2026-06-11 16:23	2026-06-9	Show	GitHub Exploit DB Packet Storm

1664	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2012 Microsoft Windows 11 24h2 Microsoft Windows 10 21h2 Microsoft Wind…	UEFI セキュアブートのセキュリティ機能バイパスの脆弱性	CWE-693 保護メカニズムの不具合	CVE-2026-45656	2026-06-11 16:23	2026-06-9	Show	GitHub Exploit DB Packet Storm

1665	9.8	緊急 Network	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 11 24h2 Microsoft Windows Server 2022 Microsoft Windows 11 23h2 Microsoft Wind…	Windows カーネルのリモートでコードが実行される脆弱性	CWE-122 CWE-416	CVE-2026-45657	2026-06-11 16:23	2026-06-9	Show	GitHub Exploit DB Packet Storm

1666	6.8	警告 Physics	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2012 Microsoft Windows 11 24h2 Microsoft Windows 10 21h2 Microsoft Wind…	Windows BitLocker セキュリティ機能バイパスの脆弱性	CWE-284 CWE-noinfo	CVE-2026-45658	2026-06-11 16:23	2026-06-9	Show	GitHub Exploit DB Packet Storm

1667	7.5	重要 Network	FreeSWITCH	FreeSWITCH	FreeSWITCHにおけるDTD の再帰的なエンティティ参照の不適切な制限に関する脆弱性	CWE-776 DTD の再帰的なエンティティ参照の不適切な制限	CVE-2026-45771	2026-06-11 16:23	2026-06-9	Show	GitHub Exploit DB Packet Storm

1668	4.3	警告 Network	University at Buffalo	Open XDMoD	University at BuffaloのOpen XDMoDにおけるアクセス制御に関する脆弱性	CWE-284 CWE-noinfo	CVE-2026-45776	2026-06-11 16:23	2026-06-5	Show	GitHub Exploit DB Packet Storm

1669	9.8	緊急 Network	University at Buffalo	Open XDMoD	University at BuffaloのOpen XDMoDにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-45777	2026-06-11 16:23	2026-06-5	Show	GitHub Exploit DB Packet Storm

1670	5.4	警告 Network	University at Buffalo	Open XDMoD	University at BuffaloのOpen XDMoDにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-45778	2026-06-11 16:23	2026-06-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
255411	7.5	HIGH Network	wireshark	wireshark	In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the WBXML dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/p…	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2017-7702	2024-11-21 12:32	2017-04-13	Show	GitHub Exploit DB Packet Storm

255412	7.5	HIGH Network	wireshark	wireshark	In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the BGP dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/pac…	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2017-7701	2024-11-21 12:32	2017-04-13	Show	GitHub Exploit DB Packet Storm

255413	6.5	MEDIUM Network	wireshark debian	wireshark debian_linux	In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the NetScaler file parser could go into an infinite loop, triggered by a malformed capture file. This was addressed in wiretap/netscaler.c by ensuring…	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2017-7700	2024-11-21 12:32	2017-04-13	Show	GitHub Exploit DB Packet Storm

255414	5.5	MEDIUM Local	libsndfile_project	libsndfile	In libsndfile before 1.0.28, an error in the "flac_buffer_copy()" function (flac.c) can be exploited to cause a segmentation violation (with read memory access) via a specially crafted FLAC file duri…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-7742	2024-11-21 12:32	2017-04-13	Show	GitHub Exploit DB Packet Storm

255415	5.5	MEDIUM Local	libsndfile_project	libsndfile	In libsndfile before 1.0.28, an error in the "flac_buffer_copy()" function (flac.c) can be exploited to cause a segmentation violation (with write memory access) via a specially crafted FLAC file dur…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-7741	2024-11-21 12:32	2017-04-13	Show	GitHub Exploit DB Packet Storm

255416	10.0	CRITICAL Network	solarwinds	log_\&_event_manager	In SolarWinds Log & Event Manager (LEM) before 6.3.1 Hotfix 4, a menu system is encountered when the SSH service is accessed with "cmc" and "password" (the default username and password). By exploiti…	CWE-77 Command Injection	CVE-2017-7722	2024-11-21 12:32	2017-04-13	Show	GitHub Exploit DB Packet Storm

255417	9.8	CRITICAL Network	web-dorado	spider_event_calendar	SQL injection in the Spider Event Calendar (aka spider-event-calendar) plugin before 1.5.52 for WordPress is exploitable with the order_by parameter to calendar_functions.php or widget_Theme_function…	CWE-89 SQL Injection	CVE-2017-7719	2024-11-21 12:32	2017-04-13	Show	GitHub Exploit DB Packet Storm

255418	5.5	MEDIUM Local	radare	radare2	The read_u32_leb128 function in libr/util/uleb128.c in radare2 1.3.0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted Web Assembl…	CWE-125 Out-of-bounds Read	CVE-2017-7716	2024-11-21 12:32	2017-04-13	Show	GitHub Exploit DB Packet Storm

255419	9.8	CRITICAL Network	brother	mfc_firmware dcp_firmware ads_firmware hl_firmware	On certain Brother devices, authorization is mishandled by including a valid AuthCookie cookie in the HTTP response to a failed login attempt. Affected models are: MFC-J6973CDW MFC-J4420DW MFC-8710DW…	CWE-287 Improper Authentication	CVE-2017-7588	2024-11-21 12:32	2017-04-12	Show	GitHub Exploit DB Packet Storm

255420	5.5	MEDIUM Local	libsamplerate_project debian	libsamplerate debian_linux	In libsamplerate before 0.1.9, a buffer over-read occurs in the calc_output_single function in src_sinc.c via a crafted audio file.	CWE-125 Out-of-bounds Read	CVE-2017-7697	2024-11-21 12:32	2017-04-12	Show	GitHub Exploit DB Packet Storm