Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 26, 2026, 12:10 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1801	8.8	重要 Network	NSA	Ghidra	NSAのGhidraにおけるデジタル署名の検証に関する脆弱性	CWE-347 デジタル署名の不適切な検証	CVE-2026-52754	2026-06-12 14:45	2026-06-10	Show	GitHub Exploit DB Packet Storm

1802	7.8	重要 Local	NSA	Ghidra	NSAのGhidraにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-52755	2026-06-12 14:45	2026-06-10	Show	GitHub Exploit DB Packet Storm

1803	6.5	警告 Network	NSA	Ghidra	NSAのGhidraにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-52756	2026-06-12 14:45	2026-06-10	Show	GitHub Exploit DB Packet Storm

1804	4.4	警告 Local	NSA	Ghidra	NSAのGhidraにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-52757	2026-06-12 14:45	2026-06-10	Show	GitHub Exploit DB Packet Storm

1805	8.8	重要 Network	NSA	Ghidra	NSAのGhidraにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-52758	2026-06-12 14:45	2026-06-10	Show	GitHub Exploit DB Packet Storm

1806	5.5	警告 Local	NSA	Ghidra	NSAのGhidraにおける過剰なサイズ値のメモリ割り当てに関する脆弱性	CWE-789 過剰なサイズ値のメモリ割り当て	CVE-2026-52759	2026-06-12 14:45	2026-06-10	Show	GitHub Exploit DB Packet Storm

1807	8.8	重要 Network	Jenkins プロジェクト	Jenkins	Jenkinsにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-53435	2026-06-12 14:45	2026-06-10	Show	GitHub Exploit DB Packet Storm

1808	4.3	警告 Network	Jenkins プロジェクト	Jenkins	Jenkinsにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2026-53436	2026-06-12 14:45	2026-06-10	Show	GitHub Exploit DB Packet Storm

1809	4.3	警告 Network	Jenkins プロジェクト	Jenkins	Jenkinsにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2026-53437	2026-06-12 14:45	2026-06-10	Show	GitHub Exploit DB Packet Storm

1810	4.3	警告 Network	Jenkins プロジェクト	Jenkins	Jenkinsにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-53438	2026-06-12 14:44	2026-06-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 26, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
255121	5.3	MEDIUM Network	mozilla redhat debian canonical	thunderbird enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_aus enterprise_linux_eus debian_linux ubuntu_linux	It is possible to spoof the sender's email address and display an arbitrary sender address to the email recipient. The real sender's address is not displayed if preceded by a null character in the di…	CWE-20 Improper Input Validation	CVE-2017-7829	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm

255122	9.8	CRITICAL Network	debian redhat mozilla	debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox firefox_esr thunderb…	A use-after-free vulnerability can occur when flushing and resizing layout because the "PressShell" object has been freed while still in use. This results in a potentially exploitable crash during th…	CWE-416 Use After Free	CVE-2017-7828	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm

255123	9.8	CRITICAL Network	mozilla	firefox	Memory safety bugs were reported in Firefox 56. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary c…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-7827	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm

255124	9.8	CRITICAL Network	debian redhat canonical mozilla	debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus ubuntu_linux firefox firefox…	Memory safety bugs were reported in Firefox 56 and Firefox ESR 52.4. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploit…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-7826	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm

255125	5.3	MEDIUM Network	debian mozilla	debian_linux firefox firefox_esr thunderbird	Several fonts on OS X display some Tibetan and Arabic characters as whitespace. When used in the addressbar as part of an IDN this can be used for domain name spoofing attacks. Note: This attack only…	CWE-20 Improper Input Validation	CVE-2017-7825	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm

255126	9.8	CRITICAL Network	redhat debian mozilla	enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_aus enterprise_linux_eus debian_linux firefox firefox_esr thunderbird	A buffer overflow occurs when drawing and validating elements with the ANGLE graphics library, used for WebGL content. This is due to an incorrect value being passed within the library during checks …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-7824	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm

255127	5.4	MEDIUM Network	redhat debian mozilla	enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus debian_linux firefox firefox_esr thunderb…	The content security policy (CSP) "sandbox" directive did not create a unique origin for the document, causing it to behave as if the "allow-same-origin" keyword were always specified. This could all…	CWE-79 Cross-site Scripting	CVE-2017-7823	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm

255128	5.3	MEDIUM Network	mozilla	firefox	The AES-GCM implementation in WebCrypto API accepts 0-length IV when it should require a length of 1 according to the NIST Special Publication 800-38D specification. This might allow for the authenti…	NVD-CWE-noinfo	CVE-2017-7822	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm

255129	9.8	CRITICAL Network	mozilla	firefox	A vulnerability where WebExtensions can download and attempt to open a file of some non-executable file types. This can be triggered without specific user interaction for the file download and open a…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2017-7821	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm

255130	5.3	MEDIUM Network	mozilla	firefox	The "instanceof" operator can bypass the Xray wrapper mechanism. When called on web content from the browser itself or an extension the web content can provide its own result for that operator, possi…	NVD-CWE-noinfo	CVE-2017-7820	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm