Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
361	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2025 Microsoft Windows 11 25h2 Microsoft Windows 11 26h1 Microsoft Windows 11 24h2	Windows ホットパッチ監視サービスの特権昇格の脆弱性	CWE-787 境界外書き込み	CVE-2026-42910	2026-06-12 14:52	2026-06-9	Show	GitHub Exploit DB Packet Storm

362	7	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	WinSock 用 Windows Ancillary Function Driver の特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-42911	2026-06-12 14:52	2026-06-9	Show	GitHub Exploit DB Packet Storm

363	7	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	Windows テレフォニーサービスの特権昇格の脆弱性	CWE-362 競合状態	CVE-2026-42912	2026-06-12 14:52	2026-06-9	Show	GitHub Exploit DB Packet Storm

364	5.3	警告 Network	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	Windows Kerberos のサービス拒否の脆弱性	CWE-125 境界外読み取り	CVE-2026-42914	2026-06-12 14:52	2026-06-9	Show	GitHub Exploit DB Packet Storm

365	5.7	警告 Adjacent	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows 11 26h1 Microsoft Windows 11 24h2 Microsoft Wind…	Windows TCP/IP のサービス拒否の脆弱性	CWE-131 正しくないバッファサイズ計算	CVE-2026-42915	2026-06-12 14:52	2026-06-9	Show	GitHub Exploit DB Packet Storm

366	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	NT OS カーネルの特権の昇格の脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-42916	2026-06-12 14:52	2026-06-9	Show	GitHub Exploit DB Packet Storm

367	5.5	警告 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	Windows テレフォニーサーバーの情報漏えいの脆弱性	CWE-125 境界外読み取り	CVE-2026-42968	2026-06-12 14:52	2026-06-9	Show	GitHub Exploit DB Packet Storm

368	5.5	警告 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	Windows プッシュ通知の情報漏えいの脆弱性	CWE-908 初期化されていないリソースの使用	CVE-2026-42969	2026-06-12 14:52	2026-06-9	Show	GitHub Exploit DB Packet Storm

369	5.5	警告 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	Windows プッシュ通知の情報漏えいの脆弱性	CWE-200 情報漏えい	CVE-2026-42970	2026-06-12 14:52	2026-06-9	Show	GitHub Exploit DB Packet Storm

370	5.5	警告 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	Windows プッシュ通知の情報漏えいの脆弱性	CWE-200 情報漏えい	CVE-2026-42971	2026-06-12 14:52	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
255691	6.5	MEDIUM Adjacent	siemens	sinaut_st7cc simatic_step_7_\(tia_portal\) simatic_winac_rtx_2010 simatic_wincc_\(tia_portal\) sinumerik_808d_programming_tool simatic_winac_rtx_f_2010 simatic_wincc_flexible_2008	A vulnerability has been identified in Primary Setup Tool (PST) (All versions < V4.2 HF1), SIMATIC Automation Tool (All versions < V3.0), SIMATIC NET PC-Software (All versions < V14 SP1), SIMATIC PCS…	CWE-20 Improper Input Validation	CVE-2017-6865	2024-11-21 12:30	2017-05-11	Show	GitHub Exploit DB Packet Storm

255692	7.8	HIGH Local	gemalto	smartdiag_diagnosis_tool	Gemalto SmartDiag Diagnosis Tool v2.5 has a stack-based Buffer Overflow with SEH Overwrite via long "Register a new card" input fields. There may be a risk of local code execution with untrusted inpu…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-6953	2024-11-21 12:30	2017-05-9	Show	GitHub Exploit DB Packet Storm

255693	8.8	HIGH Network	xirrus	arrayos	SQL injection vulnerability in ArrayOS before AG 9.4.0.135, when the portal bookmark function is enabled, allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2017-6557	2024-11-21 12:30	2017-05-5	Show	GitHub Exploit DB Packet Storm

255694	5.3	MEDIUM Network	cisco	unity_connection	A vulnerability in the ImageID parameter of Cisco Unity Connection 10.5(2) could allow an unauthenticated, remote attacker to access files in arbitrary locations on the filesystem of an affected devi…	CWE-22 Path Traversal	CVE-2017-6629	2024-11-21 12:30	2017-05-4	Show	GitHub Exploit DB Packet Storm

255695	6.8	MEDIUM Network	cisco	wide_area_application_services	A vulnerability in SMART-SSL Accelerator functionality for Cisco Wide Area Application Services (WAAS) 6.2.1, 6.2.1a, and 6.2.3a could allow an unauthenticated, remote attacker to cause a denial of s…	CWE-755 Improper Handling of Exceptional Conditions	CVE-2017-6628	2024-11-21 12:30	2017-05-4	Show	GitHub Exploit DB Packet Storm

255696	5.3	MEDIUM Network	cisco	ios	A vulnerability in Cisco IOS 15.5(3)M Software for Cisco CallManager Express (CME) could allow an unauthenticated, remote attacker to make unauthorized phone calls. The vulnerability is due to a conf…	CWE-287 Improper Authentication	CVE-2017-6624	2024-11-21 12:30	2017-05-4	Show	GitHub Exploit DB Packet Storm

255697	5.3	MEDIUM Network	cisco	unified_contact_center_enterprise	A vulnerability in the Cisco Finesse Notification Service for Cisco Unified Contact Center Enterprise (UCCE) 11.5(1) and 11.6(1) could allow an unauthenticated, remote attacker to retrieve informatio…	CWE-200 Information Exposure	CVE-2017-6626	2024-11-21 12:30	2017-05-4	Show	GitHub Exploit DB Packet Storm

255698	7.1	HIGH Network	cisco	firepower_threat_defense	A "Cisco Firepower Threat Defense 6.0.0 through 6.2.2 and Cisco ASA with FirePOWER Module Denial of Service" vulnerability in the access control policy of Cisco Firepower System Software could allow …	NVD-CWE-noinfo	CVE-2017-6625	2024-11-21 12:30	2017-05-4	Show	GitHub Exploit DB Packet Storm

255699	5.8	MEDIUM Network	cisco	small_business_rv_series_router_firmware	A vulnerability in the remote management access control list (ACL) feature of the Cisco CVR100W Wireless-N VPN Router could allow an unauthenticated, remote attacker to bypass the remote management A…	CWE-20 Improper Input Validation	CVE-2017-6620	2024-11-21 12:30	2017-05-4	Show	GitHub Exploit DB Packet Storm

255700	9.8	CRITICAL Network	pexip	pexip_infinity	Pexip Infinity before 14.2 allows remote attackers to cause a denial of service (service restart) or execute arbitrary code via vectors related to Conferencing Nodes.	CWE-20 Improper Input Validation	CVE-2017-6551	2024-11-21 12:30	2017-05-2	Show	GitHub Exploit DB Packet Storm