Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, 4:10 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
221 5.4 警告
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における複数の脆弱性 New CWE-125
CWE-416
CWE-787
CVE-2026-12298 2026-06-17 15:35 2026-06-16 Show GitHub Exploit DB Packet Storm
222 5.4 警告
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における型の取り違えに関する脆弱性 New CWE-843
型の取り違え 		CVE-2026-12299 2026-06-17 15:35 2026-06-16 Show GitHub Exploit DB Packet Storm
223 4.3 警告
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における境界外読み取りに関する脆弱性 New CWE-125
境界外読み取り 		CVE-2026-12303 2026-06-17 15:35 2026-06-16 Show GitHub Exploit DB Packet Storm
224 4.7 警告
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における複数の脆弱性 New CWE-200
CWE-688
CVE-2026-12311 2026-06-17 15:35 2026-06-16 Show GitHub Exploit DB Packet Storm
225 4.7 警告
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における権限管理に関する脆弱性 New CWE-269
不適切な権限管理 		CVE-2026-12313 2026-06-17 15:35 2026-06-16 Show GitHub Exploit DB Packet Storm
226 6.5 警告
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品におけるリソースの枯渇に関する脆弱性 New CWE-400
リソースの枯渇 		CVE-2026-12319 2026-06-17 15:35 2026-06-16 Show GitHub Exploit DB Packet Storm
227 4.3 警告
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における情報漏えいに関する脆弱性 New CWE-200
情報漏えい 		CVE-2026-12320 2026-06-17 15:34 2026-06-16 Show GitHub Exploit DB Packet Storm
228 5.4 警告
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における常に不適切な制御フローの実装に関する脆弱性 New CWE-670
常に不適切な制御フローの実装 		CVE-2026-12321 2026-06-17 15:34 2026-06-16 Show GitHub Exploit DB Packet Storm
229 5.4 警告
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品におけるレンダリングされたユーザインターフェースレイヤまたはフレームの不適切な制限に関する脆弱性 New CWE-1021
レンダリングされたユーザインターフェースレイヤまたはフレームの不適切な制限 		CVE-2026-12322 2026-06-17 15:34 2026-06-16 Show GitHub Exploit DB Packet Storm
230 5.4 警告
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品におけるレンダリングされたユーザインターフェースレイヤまたはフレームの不適切な制限に関する脆弱性 New CWE-1021
レンダリングされたユーザインターフェースレイヤまたはフレームの不適切な制限 		CVE-2026-12323 2026-06-17 15:34 2026-06-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
255301 5.9 MEDIUM
Network 		openvpn openvpn OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to remote denial-of-service due to memory exhaustion caused by memory leaks and double-free issue in extract_x509_extension(). CWE-415
CWE-772
 Double Free
 Missing Release of Resource after Effective Lifetime 		CVE-2017-7521 2024-11-21 12:32 2017-06-27 Show GitHub Exploit DB Packet Storm
255302 7.4 HIGH
Network 		openvpn openvpn OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to denial-of-service and/or possibly sensitive memory leak triggered by man-in-the-middle attacker. CWE-125
Out-of-bounds Read 		CVE-2017-7520 2024-11-21 12:32 2017-06-27 Show GitHub Exploit DB Packet Storm
255303 7.5 HIGH
Network 		openvpn openvpn OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to remote denial-of-service when receiving malformed IPv6 packet. CWE-617
 Reachable Assertion 		CVE-2017-7508 2024-11-21 12:32 2017-06-27 Show GitHub Exploit DB Packet Storm
255304 7.0 HIGH
Local 		fedoraproject arm_installer fedora-arm-installer up to and including 1.99.16 is vulnerable to local privilege escalation due to lack of checking the error condition of mount operation failure on unsafely created temporary direc… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2017-7496 2024-11-21 12:32 2017-06-26 Show GitHub Exploit DB Packet Storm
255305 7.6 HIGH
Network 		cambium_networks epmp_1000_firmware
epmp_elevate_firmware
epmp_2000_firmware
epmp_1000_hotspot_firmware 		An Improper Privilege Management issue was discovered in Cambium Networks ePMP. The privileges for SNMP community strings are not properly restricted, which may allow an attacker to gain access to se… CWE-269
 Improper Privilege Management 		CVE-2017-7922 2024-11-21 12:32 2017-06-22 Show GitHub Exploit DB Packet Storm
255306 6.8 MEDIUM
Network 		cambium_networks epmp_1000_firmware
epmp_elevate_firmware
epmp_2000_firmware
epmp_1000_hotspot_firmware 		An Improper Access Control issue was discovered in Cambium Networks ePMP. After a valid user has used SNMP configuration export, an attacker is able to remotely trigger device configuration backups u… CWE-269
 Improper Privilege Management 		CVE-2017-7918 2024-11-21 12:32 2017-06-22 Show GitHub Exploit DB Packet Storm
255307 9.8 CRITICAL
Network 		apache http_server In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, mod_mime can read one byte past the end of a buffer when sending a malicious Content-Type response header. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-7679 2024-11-21 12:32 2017-06-20 Show GitHub Exploit DB Packet Storm
255308 7.5 HIGH
Network 		apache
netapp
redhat
debian
oracle
apple 		http_server
storagegrid
clustered_data_ontap
oncommand_unified_manager
enterprise_linux_desktop
enterprise_linux_server_aus
enterprise_linux_workstation
enterprise_linux_server_t… 		The HTTP strict parsing changes added in Apache httpd 2.2.32 and 2.4.24 introduced a bug in token list parsing, which allows ap_find_token() to search past the end of its input string. By maliciously… CWE-125
Out-of-bounds Read 		CVE-2017-7668 2024-11-21 12:32 2017-06-20 Show GitHub Exploit DB Packet Storm
255309 7.5 HIGH
Network 		gnu gnutls GnuTLS version 3.5.12 and earlier is vulnerable to a NULL pointer dereference while decoding a status response TLS extension with valid contents. This could lead to a crash of the GnuTLS server appli… CWE-476
 NULL Pointer Dereference 		CVE-2017-7507 2024-11-21 12:32 2017-06-17 Show GitHub Exploit DB Packet Storm
255310 8.4 HIGH
Local 		apcupsd apc_ups_daemon In Adam Kropelin adk0212 APC UPS Daemon through 3.14.14, the default installation of APCUPSD allows a local authenticated, but unprivileged, user to run arbitrary code with elevated privileges by rep… CWE-427
 Uncontrolled Search Path Element 		CVE-2017-7884 2024-11-21 12:32 2017-06-16 Show GitHub Exploit DB Packet Storm