Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241 3.5
Network 		OTRS プロジェクト OTRS OTRS プロジェクトのOTRSにおける不適切なデフォルトパーミッションに関する脆弱性 New CWE-276
不適切なデフォルトパーミッション 		CVE-2026-48190 2026-06-16 13:40 2026-06-1 Show GitHub Exploit DB Packet Storm
242 3.5
Network 		OTRS プロジェクト OTRS OTRS プロジェクトのOTRSにおける不適切なデフォルトパーミッションに関する脆弱性 New CWE-276
不適切なデフォルトパーミッション 		CVE-2026-48191 2026-06-16 13:40 2026-06-1 Show GitHub Exploit DB Packet Storm
243 6.5 警告
Network 		OTRS プロジェクト OTRS OTRS プロジェクトのOTRSにおける複数の脆弱性 New CWE-400
CWE-791
CVE-2026-48208 2026-06-16 13:40 2026-06-1 Show GitHub Exploit DB Packet Storm
244 7.1 重要
Network 		OTRS プロジェクト OTRS OTRS プロジェクトのOTRSにおける複数の脆弱性 New CWE-116
CWE-79
CVE-2026-48209 2026-06-16 13:40 2026-06-1 Show GitHub Exploit DB Packet Storm
245 5.7 警告
Network 		OTRS プロジェクト OTRS OTRS プロジェクトのOTRSにおける複数の脆弱性 New CWE-200
CWE-269
CVE-2026-48210 2026-06-16 13:40 2026-05-31 Show GitHub Exploit DB Packet Storm
246 7.5 重要
Network 		Django Software Foundation daphne Django Software Foundationのdaphneにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-44545 2026-06-16 13:40 2026-06-3 Show GitHub Exploit DB Packet Storm
247 5.3 警告
Network 		Django Software Foundation daphne Django Software FoundationのdaphneにおけるHTTP リクエストスマグリングに関する脆弱性 New CWE-444
HTTP リクエストスマグリング 		CVE-2026-44546 2026-06-16 13:40 2026-06-3 Show GitHub Exploit DB Packet Storm
248 6.1 警告
Network 		マイクロソフト Microsoft Exchange Server
Microsoft Exchange Server Subscription Edition (SE) 		Microsoft Exchange Server のなりすましの脆弱性 New CWE-79
CWE-918
CVE-2026-45501 2026-06-16 13:40 2026-06-9 Show GitHub Exploit DB Packet Storm
249 5 警告
Network 		マイクロソフト Microsoft Exchange Server
Microsoft Exchange Server Subscription Edition (SE) 		Microsoft Exchange Server の情報漏えいの脆弱性 New CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-45502 2026-06-16 13:40 2026-06-9 Show GitHub Exploit DB Packet Storm
250 6.5 警告
Network 		マイクロソフト Microsoft Exchange Server
Microsoft Exchange Server Subscription Edition (SE) 		Microsoft Exchange Server の情報漏えいの脆弱性 New CWE-285
CWE-918
CVE-2026-45503 2026-06-16 13:40 2026-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
255821 5.5 MEDIUM
Local 		gnu binutils The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, has an invalid read (of size 8) because the code to emit relocs (bfd_elf_final_link function in bfd/elflink… CWE-125
Out-of-bounds Read 		CVE-2017-7299 2024-11-21 12:31 2017-03-30 Show GitHub Exploit DB Packet Storm
255822 7.5 HIGH
Network 		mikrotik routeros A vulnerability in the network stack of MikroTik Version 6.38.5 released 2017-03-09 could allow an unauthenticated remote attacker to exhaust all available CPU via a flood of TCP RST packets, prevent… CWE-400
 Uncontrolled Resource Consumption 		CVE-2017-7285 2024-11-21 12:31 2017-03-29 Show GitHub Exploit DB Packet Storm
255823 5.4 MEDIUM
Network 		moodle moodle In Moodle 3.2.2+, there is XSS in the Course summary filter of the "Add a new course" page, as demonstrated by a crafted attribute of an SVG element. CWE-79
Cross-site Scripting 		CVE-2017-7298 2024-11-21 12:31 2017-03-29 Show GitHub Exploit DB Packet Storm
255824 7.8 HIGH
Local 		linux linux_kernel The vmw_surface_define_ioctl function in drivers/gpu/drm/vmwgfx/vmwgfx_surface.c in the Linux kernel through 4.10.6 does not validate addition of certain levels data, which allows local users to trig… CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound 		CVE-2017-7294 2024-11-21 12:31 2017-03-29 Show GitHub Exploit DB Packet Storm
255825 8.8 HIGH
Network 		suse rancher Rancher Labs rancher server 1.2.0+ is vulnerable to authenticated users disabling access control via an API call. This is fixed in versions rancher/server:v1.2.4, rancher/server:v1.3.5, rancher/serve… NVD-CWE-noinfo
CVE-2017-7297 2024-11-21 12:31 2017-03-29 Show GitHub Exploit DB Packet Storm
255826 7.1 HIGH
Local 		linux linux_kernel The TCP stack in the Linux kernel through 4.10.6 mishandles the SCM_TIMESTAMPING_OPT_STATS feature, which allows local users to obtain sensitive information from the kernel's internal socket data str… CWE-125
Out-of-bounds Read 		CVE-2017-7277 2024-11-21 12:31 2017-03-28 Show GitHub Exploit DB Packet Storm
255827 5.5 MEDIUM
Local 		imagemagick imagemagick The ReadPCXImage function in coders/pcx.c in ImageMagick 7.0.4.9 allows remote attackers to cause a denial of service (attempted large memory allocation and application crash) via a crafted file. NOT… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-7275 2024-11-21 12:31 2017-03-28 Show GitHub Exploit DB Packet Storm
255828 5.5 MEDIUM
Local 		radare radare2 The r_pkcs7_parse_cms function in libr/util/r_pkcs7.c in radare2 1.3.0 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PE file. CWE-476
 NULL Pointer Dereference 		CVE-2017-7274 2024-11-21 12:31 2017-03-28 Show GitHub Exploit DB Packet Storm
255829 6.6 MEDIUM
Physics 		linux linux_kernel The cp_report_fixup function in drivers/hid/hid-cypress.c in the Linux kernel 3.2 and 4.x before 4.9.4 allows physically proximate attackers to cause a denial of service (integer underflow) or possib… NVD-CWE-Other
CVE-2017-7273 2024-11-21 12:31 2017-03-28 Show GitHub Exploit DB Packet Storm
255830 7.4 HIGH
Network 		php php PHP through 7.1.11 enables potential SSRF in applications that accept an fsockopen or pfsockopen hostname argument with an expectation that the port number is constrained. Because a :port syntax is r… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2017-7272 2024-11-21 12:31 2017-03-28 Show GitHub Exploit DB Packet Storm