Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
331	5.4	警告 Network	マイクロソフト	Microsoft SharePoint Server	Microsoft Office Project Server のなりすましの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-45483	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

332	7.8	重要 Local	マイクロソフト	.NET	.NET SDK の特権昇格の脆弱性 New	CWE-285 CWE-863	CVE-2026-45490	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

333	5.5	警告 Local	マイクロソフト	.NET	.NET の改ざんの脆弱性 New	CWE-59 リンク解釈の問題	CVE-2026-45491	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

334	6.1	警告 Network	マイクロソフト	Microsoft Exchange Server Subscription Edition (SE) Microsoft Exchange Server	Microsoft Exchange Server のなりすましの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-45500	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

335	8.1	重要 Network	マイクロソフト	Microsoft Exchange Server Subscription Edition (SE) Microsoft Exchange Server	Microsoft Exchange Server のリモートでコードが実行される脆弱性 New	CWE-94 コード・インジェクション	CVE-2026-45583	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

336	7.5	重要 Network	マイクロソフト	Microsoft Visual Studio 2026 .NET ASP.NET Core	ASP.NET Core のサービス拒否の脆弱性 New	CWE-400 CWE-noinfo	CVE-2026-45591	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

337	7.5	重要 Network	マイクロソフト	Microsoft Windows 11 26h1 Microsoft Windows Server 2022 Microsoft Windows 10 22h2 Microsoft Windows 10 1607 Microsoft Wind…	Windows リモートデスクトッププロトコル (RDP) の情報漏えいの脆弱性 New	CWE-125 境界外読み取り	CVE-2026-45639	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

338	7.8	重要 Local	マイクロソフト	Microsoft Office 2021 Long Term Servicing Channel Edition Microsoft Office 365 Microsoft Office 2024 Long-Term Servicing Ch…	Microsoft Office のリモートコードが実行される脆弱性 New	CWE-787 CWE-822	CVE-2026-45645	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

339	7	重要 Local	マイクロソフト	Microsoft Defender for Endpoint	Microsoft Defender for Endpoint for Mac の特権の昇格の脆弱性 New	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-45647	2026-06-22 11:55	2026-06-9	Show	GitHub Exploit DB Packet Storm

340	7.1	重要 Local	マイクロソフト	Microsoft Word Microsoft Excel Microsoft PowerPoint	Office for Android のなりすましの脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-45649	2026-06-22 11:55	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
256371	7.8	HIGH Local	nvidia	gpu_driver	NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape where a value passed from a user to the driver is not correctly validated …	CWE-20 Improper Input Validation	CVE-2017-6268	2024-11-21 12:29	2017-09-23	Show	GitHub Exploit DB Packet Storm

256372	5.5	MEDIUM Local	nvidia	gpu_driver	NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where an incorrect initialization of internal objects can cause an infinite loop which may lead to a denial of serv…	CWE-665 CWE-835 Improper Initialization Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2017-6267	2024-11-21 12:29	2017-09-23	Show	GitHub Exploit DB Packet Storm

256373	5.5	MEDIUM Local	nvidia	gpu_driver	NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where improper access controls could allow unprivileged users to cause a denial of service.	NVD-CWE-noinfo	CVE-2017-6266	2024-11-21 12:29	2017-09-23	Show	GitHub Exploit DB Packet Storm

256374	9.8	CRITICAL Network	sophos	astaro_security_gateway_firmware	Astaro Security Gateway (aka ASG) 7 allows remote attackers to execute arbitrary code via a crafted request to index.plx.	CWE-20 Improper Input Validation	CVE-2017-6315	2024-11-21 12:29	2017-09-20	Show	GitHub Exploit DB Packet Storm

256375	5.9	MEDIUM Network	f5	big-ip_local_traffic_manager big-ip_application_acceleration_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_access_policy_manager big-ip_application_security_manager<…	In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM, and WebSafe 12.1.2-HF1 and 13.0.0, an undisclosed type of responses may cause TMM to restart, causing an interruption of se…	NVD-CWE-noinfo	CVE-2017-6147	2024-11-21 12:29	2017-09-19	Show	GitHub Exploit DB Packet Storm

256376	6.5	MEDIUM Network	symantec	encryption_desktop	Symantec Encryption Desktop before SED 10.4.1MP2 can allow remote attackers to cause a denial of service (resource consumption) via crafted web requests."	NVD-CWE-noinfo	CVE-2017-6330	2024-11-21 12:29	2017-09-13	Show	GitHub Exploit DB Packet Storm

256377	7.5	HIGH Network	libgd debian fedoraproject canonical	libgd debian_linux fedora ubuntu_linux	Double free vulnerability in the gdImagePngPtr function in libgd2 before 2.2.5 allows remote attackers to cause a denial of service via vectors related to a palette with no colors.	CWE-415 Double Free	CVE-2017-6362	2024-11-21 12:29	2017-09-7	Show	GitHub Exploit DB Packet Storm

256378	7.8	HIGH Local	symantec	vip_access_for_desktop	Symantec VIP Access for Desktop prior to 2.2.4 can be susceptible to a DLL Pre-Loading vulnerability. These types of issues occur when an application looks to call a DLL for execution and an attacker…	CWE-427 Uncontrolled Search Path Element	CVE-2017-6329	2024-11-21 12:29	2017-08-22	Show	GitHub Exploit DB Packet Storm

256379	8.8	HIGH Adjacent	google	android	In the touch controller function in all Qualcomm products with Android for MSM, Firefox OS for MSM, or QRD Android, a variable may be controlled by the user and can lead to a buffer overflow.	CWE-120 Classic Buffer Overflow	CVE-2017-6421	2024-11-21 12:29	2017-08-17	Show	GitHub Exploit DB Packet Storm

256380	8.8	HIGH Network	symantec	message_gateway	The Symantec Messaging Gateway before 10.6.3-267 can encounter an issue of cross site request forgery (also known as one-click attack and is abbreviated as CSRF or XSRF), which is a type of malicious…	CWE-352 Origin Validation Error	CVE-2017-6328	2024-11-21 12:29	2017-08-12	Show	GitHub Exploit DB Packet Storm