Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 23, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 331 | 5.4 |
警告
Network |
マイクロソフト | Microsoft SharePoint Server | Microsoft Office Project Server のなりすましの脆弱性 New |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2026-45483 | 2026-06-22 11:56 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 332 | 7.8 |
重要
Local |
マイクロソフト | .NET | .NET SDK の特権昇格の脆弱性 New |
CWE-285 CWE-863 |
CVE-2026-45490 | 2026-06-22 11:56 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 333 | 5.5 |
警告
Local |
マイクロソフト | .NET | .NET の改ざんの脆弱性 New |
CWE-59
リンク解釈の問題 |
CVE-2026-45491 | 2026-06-22 11:56 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 334 | 6.1 |
警告
Network |
マイクロソフト |
Microsoft Exchange Server Subscription Edition (SE) Microsoft Exchange Server |
Microsoft Exchange Server のなりすましの脆弱性 New |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2026-45500 | 2026-06-22 11:56 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 335 | 8.1 |
重要
Network |
マイクロソフト |
Microsoft Exchange Server Subscription Edition (SE) Microsoft Exchange Server |
Microsoft Exchange Server のリモートでコードが実行される脆弱性 New |
CWE-94
コード・インジェクション |
CVE-2026-45583 | 2026-06-22 11:56 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 336 | 7.5 |
重要
Network |
マイクロソフト |
Microsoft Visual Studio 2026 .NET ASP.NET Core |
ASP.NET Core のサービス拒否の脆弱性 New |
CWE-400 CWE-noinfo |
CVE-2026-45591 | 2026-06-22 11:56 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 337 | 7.5 |
重要
Network |
マイクロソフト |
Microsoft Windows 11 26h1 Microsoft Windows Server 2022 Microsoft Windows 10 22h2 Microsoft Windows 10 1607 Microsoft Wind… |
Windows リモート デスクトップ プロトコル (RDP) の情報漏えいの脆弱性 New |
CWE-125
境界外読み取り |
CVE-2026-45639 | 2026-06-22 11:56 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 338 | 7.8 |
重要
Local |
マイクロソフト |
Microsoft Office 2021 Long Term Servicing Channel Edition Microsoft Office 365 Microsoft Office 2024 Long-Term Servicing Ch… |
Microsoft Office のリモート コードが実行される脆弱性 New |
CWE-787 CWE-822 |
CVE-2026-45645 | 2026-06-22 11:56 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 339 | 7 |
重要
Local |
マイクロソフト | Microsoft Defender for Endpoint | Microsoft Defender for Endpoint for Mac の特権の昇格の脆弱性 New |
CWE-367
Time-of-check Time-of-use (TOCTOU) 競合状態 |
CVE-2026-45647 | 2026-06-22 11:55 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 340 | 7.1 |
重要
Local |
マイクロソフト |
Microsoft Word Microsoft Excel Microsoft PowerPoint |
Office for Android のなりすましの脆弱性 New |
CWE-284
不適切なアクセス制御 |
CVE-2026-45649 | 2026-06-22 11:55 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 24, 2026, 4 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 256351 | 5.9 |
MEDIUM
Network |
f5 |
big-ip_local_traffic_manager big-ip_application_acceleration_manager big-ip_advanced_firewall_manager big-ip_access_policy_manager big-ip_application_security_manager big-ip_link_contr… |
In F5 BIG-IP LTM, AAM, AFM, APM, ASM, Link Controller, PEM, PSM software version 12.0.0 to 12.1.2, 11.6.0 to 11.6.1, 11.4.0 to 11.5.4, when a virtual server uses the standard configuration of HTTP/2 … |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-6163 | 2024-11-21 12:29 | 2017-10-27 | Show | GitHub Exploit DB Packet Storm |
| 256352 | 5.9 |
MEDIUM
Network |
f5 |
big-ip_local_traffic_manager big-ip_application_acceleration_manager big-ip_advanced_firewall_manager big-ip_access_policy_manager big-ip_application_security_manager big-ip_link_contr… |
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, Websafe software version 12.0.0 to 12.1.2, 11.6.0 to 11.6.1, 11.4.0 to 11.5.4, 11.2.1, in some cases TMM… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-6162 | 2024-11-21 12:29 | 2017-10-27 | Show | GitHub Exploit DB Packet Storm |
| 256353 | 5.3 |
MEDIUM
Adjacent |
f5 |
big-ip_local_traffic_manager big-ip_application_acceleration_manager big-ip_advanced_firewall_manager big-ip_access_policy_manager big-ip_application_security_manager big-ip_link_contr… |
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, WebAccelerator software version 12.0.0 - 12.1.2, 11.6.0 - 11.6.1, 11.4.0 - 11.5.4, 11.2.1, when ConfigSy… |
CWE-400
Uncontrolled Resource Consumption |
CVE-2017-6161 | 2024-11-21 12:29 | 2017-10-27 | Show | GitHub Exploit DB Packet Storm |
| 256354 | 5.9 |
MEDIUM
Network |
f5 |
big-ip_application_acceleration_manager big-ip_policy_enforcement_manager |
In F5 BIG-IP AAM and PEM software version 12.0.0 to 12.1.1, 11.6.0 to 11.6.1, 11.4.1 to 11.5.4, a remote attacker may create maliciously crafted HTTP request to cause Traffic Management Microkernel (… |
NVD-CWE-noinfo
|
CVE-2017-6160 | 2024-11-21 12:29 | 2017-10-27 | Show | GitHub Exploit DB Packet Storm |
| 256355 | 5.9 |
MEDIUM
Network |
f5 |
big-ip_local_traffic_manager big-ip_application_acceleration_manager big-ip_advanced_firewall_manager big-ip_access_policy_manager big-ip_application_security_manager big-ip_link_contr… |
F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM, Websafe software version 12.0.0 to 12.1.2, 11.6.0 to 11.6.1 are vulnerable to a denial of service attack when the MPTCP o… |
NVD-CWE-noinfo
|
CVE-2017-6159 | 2024-11-21 12:29 | 2017-10-27 | Show | GitHub Exploit DB Packet Storm |
| 256356 | 8.1 |
HIGH
Network |
f5 |
big-ip_local_traffic_manager big-ip_application_acceleration_manager big-ip_advanced_firewall_manager big-ip_access_policy_manager big-ip_application_security_manager big-ip_link_contr… |
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and Websafe software version 12.0.0 to 12.1.1, 11.6.0 to 11.6.1, 11.5.0 - 11.5.4, virtual servers with a configuration … |
NVD-CWE-noinfo
|
CVE-2017-6157 | 2024-11-21 12:29 | 2017-10-27 | Show | GitHub Exploit DB Packet Storm |
| 256357 | 9.8 |
CRITICAL
Network |
f5 |
big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager big-ip_domain_name_system … |
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM, and WebSafe 11.5.1 HF6 through 11.5.4 HF4, 11.6.0 through 11.6.1 HF1, and 12.0.0 through 12.1.2 on VIPRION platforms o… |
CWE-532
Inclusion of Sensitive Information in Log Files |
CVE-2017-6165 | 2024-11-21 12:29 | 2017-10-21 | Show | GitHub Exploit DB Packet Storm |
| 256358 | 7.3 |
HIGH
Network |
f5 |
big-ip_link_controller big-ip_local_traffic_manager big-ip_advanced_firewall_manager big-ip_access_policy_manager big-ip_policy_enforcement_manager big-ip_domain_name_system big-ip_… |
iControl REST in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM, and WebSafe 12.0.0 through 12.1.2 and 13.0.0 includes a service to convert authorization BIGIPAuthCookie cook… |
CWE-613
Insufficient Session Expiration |
CVE-2017-6145 | 2024-11-21 12:29 | 2017-10-21 | Show | GitHub Exploit DB Packet Storm |
| 256359 | 7.4 |
HIGH
Network |
f5 | big-ip_policy_enforcement_manager | In F5 BIG-IP PEM 12.1.0 through 12.1.2 when downloading the Type Allocation Code (TAC) database file via HTTPS, the server's certificate is not verified. Attackers in a privileged network position ma… |
CWE-295
Improper Certificate Validation |
CVE-2017-6144 | 2024-11-21 12:29 | 2017-10-21 | Show | GitHub Exploit DB Packet Storm |
| 256360 | 5.9 |
MEDIUM
Network |
f5 |
big-ip_local_traffic_manager big-ip_advanced_firewall_manager big-ip_access_policy_manager big-ip_policy_enforcement_manager big-ip_application_security_manager big-ip_application_acce… |
In F5 BIG-IP LTM, AAM, AFM, APM, ASM, Link Controller, PEM, and WebSafe 12.1.0 through 12.1.2, certain values in a TLS abbreviated handshake when using a client SSL profile with the Session Ticket op… |
CWE-20
Improper Input Validation |
CVE-2017-6141 | 2024-11-21 12:29 | 2017-10-21 | Show | GitHub Exploit DB Packet Storm |