Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
271 6.5 警告
Network 		レッドハット 389 Directory Server
Red Hat Directory Server
Red Hat Enterprise Linux 		レッドハットの389 Directory Server等の複数製品におけるリソースの枯渇に関する脆弱性 New CWE-400
リソースの枯渇 		CVE-2026-11611 2026-06-16 13:39 2026-06-8 Show GitHub Exploit DB Packet Storm
272 4.9 警告
Network 		レッドハット 389 Directory Server レッドハットの389 Directory Serverにおけるスタックベースのバッファオーバーフローの脆弱性 New CWE-121
スタックオーバーフロー 		CVE-2026-11793 2026-06-16 13:39 2026-06-9 Show GitHub Exploit DB Packet Storm
273 6.5 警告
Network 		Google Google Chrome GoogleのGoogle Chromeにおける境界外読み取りに関する脆弱性 New CWE-125
境界外読み取り 		CVE-2026-12026 2026-06-16 13:39 2026-06-11 Show GitHub Exploit DB Packet Storm
274 8.8 重要
Network 		Splunk Splunk
Splunk Secure Gateway
splunk cloud platform 		SplunkのSplunk等の複数製品における信頼できないデータのデシリアライゼーションに関する脆弱性 New CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-20251 2026-06-16 13:39 2026-06-10 Show GitHub Exploit DB Packet Storm
275 7.6 重要
Network 		Splunk Splunk
splunk cloud platform 		SplunkのSplunk等の複数製品におけるサーバサイドのリクエストフォージェリの脆弱性 New CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-20252 2026-06-16 13:39 2026-06-10 Show GitHub Exploit DB Packet Storm
276 9.8 緊急
Network 		Splunk Splunk Splunkにおける重要な機能に対する認証の欠如に関する脆弱性 New CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-20253 2026-06-16 13:39 2026-06-10 Show GitHub Exploit DB Packet Storm
277 5.7 警告
Network 		Splunk Splunk
splunk cloud platform 		SplunkのSplunk等の複数製品における入力確認に関する脆弱性 New CWE-20
不適切な入力確認 		CVE-2026-20254 2026-06-16 13:39 2026-06-10 Show GitHub Exploit DB Packet Storm
278 5.7 警告
Network 		Splunk Splunk
splunk cloud platform 		SplunkのSplunk等の複数製品における入力確認に関する脆弱性 New CWE-20
不適切な入力確認 		CVE-2026-20255 2026-06-16 13:39 2026-06-10 Show GitHub Exploit DB Packet Storm
279 5.7 警告
Network 		Splunk Splunk
splunk cloud platform 		SplunkのSplunk等の複数製品における入力確認に関する脆弱性 New CWE-20
不適切な入力確認 		CVE-2026-20256 2026-06-16 13:38 2026-06-10 Show GitHub Exploit DB Packet Storm
280 5.7 警告
Network 		Splunk Splunk
splunk cloud platform 		SplunkのSplunk等の複数製品における入力確認に関する脆弱性 New CWE-20
不適切な入力確認 		CVE-2026-20257 2026-06-16 13:38 2026-06-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
255131 9.8 CRITICAL
Network 		redhat
debian
mozilla 		enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_server_eus
debian_linux
firefox
firefox_esr
thunderb… 		A use-after-free vulnerability can occur in design mode when image objects are resized if objects referenced during the resizing have been freed from memory. This results in a potentially exploitable… CWE-416
 Use After Free 		CVE-2017-7819 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm
255132 9.8 CRITICAL
Network 		redhat
debian
mozilla 		enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_eus
enterprise_linux_server_aus
debian_linux
firefox
firefox_esr
thunderb… 		A use-after-free vulnerability can occur when manipulating arrays of Accessible Rich Internet Applications (ARIA) elements within containers through the DOM. This results in a potentially exploitable… CWE-416
 Use After Free 		CVE-2017-7818 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm
255133 5.3 MEDIUM
Network 		mozilla firefox A spoofing vulnerability can occur when a page switches to fullscreen mode without user notification, allowing a fake address bar to be displayed. This allows an attacker to spoof which page is actua… CWE-20
 Improper Input Validation  		CVE-2017-7817 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm
255134 5.3 MEDIUM
Network 		mozilla firefox WebExtensions could use popups and panels in the extension UI to load an "about:" privileged URL, violating security checks that disallow this behavior. This vulnerability affects Firefox < 56. CWE-20
 Improper Input Validation  		CVE-2017-7816 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm
255135 5.3 MEDIUM
Network 		mozilla firefox On pages containing an iframe, the "data:" protocol can be used to create a modal dialog through Javascript that will have an arbitrary domains as the dialog's location, spoofing of the origin of the… CWE-20
 Improper Input Validation  		CVE-2017-7815 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm
255136 7.8 HIGH
Local 		redhat
mozilla
debian 		enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_server_eus
firefox
firefox_esr
thunderbird
debian_li… 		File downloads encoded with "blob:" and "data:" URL elements bypassed normal file download checks though the Phishing and Malware Protection feature and its block lists of suspicious sites and files.… CWE-20
 Improper Input Validation  		CVE-2017-7814 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm
255137 8.2 HIGH
Network 		mozilla firefox Inside the JavaScript parser, a cast of an integer to a narrower type can result in data read from outside the buffer being parsed. This usually results in a non-exploitable crash, but can leak a lim… CWE-125
CWE-704
Out-of-bounds Read
 Incorrect Type Conversion or Cast 		CVE-2017-7813 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm
255138 5.3 MEDIUM
Network 		mozilla firefox If web content on a page is dragged onto portions of the browser UI, such as the tab bar, links can be opened that otherwise would not be allowed to open. This can allow malicious web content to open… CWE-200
Information Exposure 		CVE-2017-7812 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm
255139 9.8 CRITICAL
Network 		mozilla firefox Memory safety bugs were reported in Firefox 55. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary c… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-7811 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm
255140 5.3 MEDIUM
Network 		mozilla firefox A content security policy (CSP) "frame-ancestors" directive containing origins with paths allows for comparisons against those paths instead of the origin. This results in a cross-origin information … CWE-200
CWE-346
Information Exposure
 Origin Validation Error 		CVE-2017-7808 2024-11-21 12:32 2018-06-12 Show GitHub Exploit DB Packet Storm