Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
351	7	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	Windows Function Discovery Service (fdwsd.dll) の特権昇格の脆弱性	CWE-362 CWE-416	CVE-2026-42836	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

352	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2019 Microsoft Windows 11 26h1 Microsoft …	Windows Projected File System の特権の昇格の脆弱性	CWE-125 境界外読み取り	CVE-2026-42837	2026-06-12 14:53	2026-06-9	Show	GitHub Exploit DB Packet Storm

353	9.6	緊急 Network	flowiseai	flowise	flowiseaiのflowiseにおける複数の脆弱性	CWE-284 CWE-639 CWE-915	CVE-2026-42861	2026-06-12 14:52	2026-06-8	Show	GitHub Exploit DB Packet Storm

354	5	警告 Network	flowiseai	flowise	flowiseaiのflowiseにおける複数の脆弱性	CWE-284 CWE-639 CWE-915	CVE-2026-42862	2026-06-12 14:52	2026-06-8	Show	GitHub Exploit DB Packet Storm

355	8.1	重要 Network	flowiseai	flowise	flowiseaiのflowiseにおける複数の脆弱性	CWE-284 CWE-639 CWE-915	CVE-2026-42863	2026-06-12 14:52	2026-06-8	Show	GitHub Exploit DB Packet Storm

356	6.5	警告 Network	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	Windows Kerberos のサービス拒否の脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-42903	2026-06-12 14:52	2026-06-9	Show	GitHub Exploit DB Packet Storm

357	9.6	緊急 Adjacent	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows 11 26h1 Microsoft Windows 11 24h2 Microsoft Wind…	Windows TCP/IP の特権昇格の脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-42904	2026-06-12 14:52	2026-06-9	Show	GitHub Exploit DB Packet Storm

358	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	Windows DWM Core ライブラリの特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-42905	2026-06-12 14:52	2026-06-9	Show	GitHub Exploit DB Packet Storm

359	5.5	警告 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows 11 26h1 Microsoft Windows 11 24h2 Microsoft Wind…	Windows シェルの情報漏えいの脆弱性	CWE-200 情報漏えい	CVE-2026-42906	2026-06-12 14:52	2026-06-9	Show	GitHub Exploit DB Packet Storm

360	6.5	警告 Network	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2019 Microsoft Windows 11 26h1 Microsoft …	Windows シェルの情報漏えいの脆弱性	CWE-200 情報漏えい	CVE-2026-42907	2026-06-12 14:52	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
255691	6.5	MEDIUM Adjacent	siemens	sinaut_st7cc simatic_step_7_\(tia_portal\) simatic_winac_rtx_2010 simatic_wincc_\(tia_portal\) sinumerik_808d_programming_tool simatic_winac_rtx_f_2010 simatic_wincc_flexible_2008	A vulnerability has been identified in Primary Setup Tool (PST) (All versions < V4.2 HF1), SIMATIC Automation Tool (All versions < V3.0), SIMATIC NET PC-Software (All versions < V14 SP1), SIMATIC PCS…	CWE-20 Improper Input Validation	CVE-2017-6865	2024-11-21 12:30	2017-05-11	Show	GitHub Exploit DB Packet Storm

255692	7.8	HIGH Local	gemalto	smartdiag_diagnosis_tool	Gemalto SmartDiag Diagnosis Tool v2.5 has a stack-based Buffer Overflow with SEH Overwrite via long "Register a new card" input fields. There may be a risk of local code execution with untrusted inpu…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-6953	2024-11-21 12:30	2017-05-9	Show	GitHub Exploit DB Packet Storm

255693	8.8	HIGH Network	xirrus	arrayos	SQL injection vulnerability in ArrayOS before AG 9.4.0.135, when the portal bookmark function is enabled, allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2017-6557	2024-11-21 12:30	2017-05-5	Show	GitHub Exploit DB Packet Storm

255694	5.3	MEDIUM Network	cisco	unity_connection	A vulnerability in the ImageID parameter of Cisco Unity Connection 10.5(2) could allow an unauthenticated, remote attacker to access files in arbitrary locations on the filesystem of an affected devi…	CWE-22 Path Traversal	CVE-2017-6629	2024-11-21 12:30	2017-05-4	Show	GitHub Exploit DB Packet Storm

255695	6.8	MEDIUM Network	cisco	wide_area_application_services	A vulnerability in SMART-SSL Accelerator functionality for Cisco Wide Area Application Services (WAAS) 6.2.1, 6.2.1a, and 6.2.3a could allow an unauthenticated, remote attacker to cause a denial of s…	CWE-755 Improper Handling of Exceptional Conditions	CVE-2017-6628	2024-11-21 12:30	2017-05-4	Show	GitHub Exploit DB Packet Storm

255696	5.3	MEDIUM Network	cisco	ios	A vulnerability in Cisco IOS 15.5(3)M Software for Cisco CallManager Express (CME) could allow an unauthenticated, remote attacker to make unauthorized phone calls. The vulnerability is due to a conf…	CWE-287 Improper Authentication	CVE-2017-6624	2024-11-21 12:30	2017-05-4	Show	GitHub Exploit DB Packet Storm

255697	5.3	MEDIUM Network	cisco	unified_contact_center_enterprise	A vulnerability in the Cisco Finesse Notification Service for Cisco Unified Contact Center Enterprise (UCCE) 11.5(1) and 11.6(1) could allow an unauthenticated, remote attacker to retrieve informatio…	CWE-200 Information Exposure	CVE-2017-6626	2024-11-21 12:30	2017-05-4	Show	GitHub Exploit DB Packet Storm

255698	7.1	HIGH Network	cisco	firepower_threat_defense	A "Cisco Firepower Threat Defense 6.0.0 through 6.2.2 and Cisco ASA with FirePOWER Module Denial of Service" vulnerability in the access control policy of Cisco Firepower System Software could allow …	NVD-CWE-noinfo	CVE-2017-6625	2024-11-21 12:30	2017-05-4	Show	GitHub Exploit DB Packet Storm

255699	5.8	MEDIUM Network	cisco	small_business_rv_series_router_firmware	A vulnerability in the remote management access control list (ACL) feature of the Cisco CVR100W Wireless-N VPN Router could allow an unauthenticated, remote attacker to bypass the remote management A…	CWE-20 Improper Input Validation	CVE-2017-6620	2024-11-21 12:30	2017-05-4	Show	GitHub Exploit DB Packet Storm

255700	9.8	CRITICAL Network	pexip	pexip_infinity	Pexip Infinity before 14.2 allows remote attackers to cause a denial of service (service restart) or execute arbitrary code via vectors related to Conferencing Nodes.	CWE-20 Improper Input Validation	CVE-2017-6551	2024-11-21 12:30	2017-05-2	Show	GitHub Exploit DB Packet Storm