Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 12:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
381	10	緊急 Network	Netty	Netty	Nettyにおけるデータの信頼性についての不十分な検証に関する脆弱性	CWE-345 データの信頼性についての不十分な検証	CVE-2026-45674	2026-06-15 18:37	2026-06-12	Show	GitHub Exploit DB Packet Storm

382	7.5	重要 Network	Netty	Netty	Nettyにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-46340	2026-06-15 18:37	2026-06-12	Show	GitHub Exploit DB Packet Storm

383	5.3	警告 Network	Netty	Netty	Nettyにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-47244	2026-06-15 18:37	2026-06-12	Show	GitHub Exploit DB Packet Storm

384	10	緊急 Network	Netty	Netty	Nettyにおけるデータの信頼性についての不十分な検証に関する脆弱性	CWE-345 データの信頼性についての不十分な検証	CVE-2026-47691	2026-06-15 18:37	2026-06-12	Show	GitHub Exploit DB Packet Storm

385	7.5	重要 Network	Netty	Netty	Nettyにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-48006	2026-06-15 18:36	2026-06-12	Show	GitHub Exploit DB Packet Storm

386	7.5	重要 Network	Netty	Netty	Nettyにおける複数の脆弱性	CWE-400 CWE-401	CVE-2026-48043	2026-06-15 18:36	2026-06-12	Show	GitHub Exploit DB Packet Storm

387	7.5	重要 Network	Netty	Netty	Nettyにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-48059	2026-06-15 18:36	2026-06-12	Show	GitHub Exploit DB Packet Storm

388	7.5	重要 Network	Netty	Netty	Nettyにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-48748	2026-06-15 18:36	2026-06-12	Show	GitHub Exploit DB Packet Storm

389	4.8	警告 Network	Netty	Netty	Nettyにおける複数の脆弱性	CWE-200 CWE-330	CVE-2026-50009	2026-06-15 18:36	2026-06-12	Show	GitHub Exploit DB Packet Storm

390	7.5	重要 Network	Netty	Netty	Nettyにおけるデジタル署名の検証に関する脆弱性	CWE-347 デジタル署名の不適切な検証	CVE-2026-50010	2026-06-15 18:36	2026-06-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
255821	5.5	MEDIUM Local	gnu	binutils	The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, has an invalid read (of size 8) because the code to emit relocs (bfd_elf_final_link function in bfd/elflink…	CWE-125 Out-of-bounds Read	CVE-2017-7299	2024-11-21 12:31	2017-03-30	Show	GitHub Exploit DB Packet Storm

255822	7.5	HIGH Network	mikrotik	routeros	A vulnerability in the network stack of MikroTik Version 6.38.5 released 2017-03-09 could allow an unauthenticated remote attacker to exhaust all available CPU via a flood of TCP RST packets, prevent…	CWE-400 Uncontrolled Resource Consumption	CVE-2017-7285	2024-11-21 12:31	2017-03-29	Show	GitHub Exploit DB Packet Storm

255823	5.4	MEDIUM Network	moodle	moodle	In Moodle 3.2.2+, there is XSS in the Course summary filter of the "Add a new course" page, as demonstrated by a crafted attribute of an SVG element.	CWE-79 Cross-site Scripting	CVE-2017-7298	2024-11-21 12:31	2017-03-29	Show	GitHub Exploit DB Packet Storm

255824	7.8	HIGH Local	linux	linux_kernel	The vmw_surface_define_ioctl function in drivers/gpu/drm/vmwgfx/vmwgfx_surface.c in the Linux kernel through 4.10.6 does not validate addition of certain levels data, which allows local users to trig…	CWE-787 CWE-190 Out-of-bounds Write Integer Overflow or Wraparound	CVE-2017-7294	2024-11-21 12:31	2017-03-29	Show	GitHub Exploit DB Packet Storm

255825	8.8	HIGH Network	suse	rancher	Rancher Labs rancher server 1.2.0+ is vulnerable to authenticated users disabling access control via an API call. This is fixed in versions rancher/server:v1.2.4, rancher/server:v1.3.5, rancher/serve…	NVD-CWE-noinfo	CVE-2017-7297	2024-11-21 12:31	2017-03-29	Show	GitHub Exploit DB Packet Storm

255826	7.1	HIGH Local	linux	linux_kernel	The TCP stack in the Linux kernel through 4.10.6 mishandles the SCM_TIMESTAMPING_OPT_STATS feature, which allows local users to obtain sensitive information from the kernel's internal socket data str…	CWE-125 Out-of-bounds Read	CVE-2017-7277	2024-11-21 12:31	2017-03-28	Show	GitHub Exploit DB Packet Storm

255827	5.5	MEDIUM Local	imagemagick	imagemagick	The ReadPCXImage function in coders/pcx.c in ImageMagick 7.0.4.9 allows remote attackers to cause a denial of service (attempted large memory allocation and application crash) via a crafted file. NOT…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-7275	2024-11-21 12:31	2017-03-28	Show	GitHub Exploit DB Packet Storm

255828	5.5	MEDIUM Local	radare	radare2	The r_pkcs7_parse_cms function in libr/util/r_pkcs7.c in radare2 1.3.0 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PE file.	CWE-476 NULL Pointer Dereference	CVE-2017-7274	2024-11-21 12:31	2017-03-28	Show	GitHub Exploit DB Packet Storm

255829	6.6	MEDIUM Physics	linux	linux_kernel	The cp_report_fixup function in drivers/hid/hid-cypress.c in the Linux kernel 3.2 and 4.x before 4.9.4 allows physically proximate attackers to cause a denial of service (integer underflow) or possib…	NVD-CWE-Other	CVE-2017-7273	2024-11-21 12:31	2017-03-28	Show	GitHub Exploit DB Packet Storm

255830	7.4	HIGH Network	php	php	PHP through 7.1.11 enables potential SSRF in applications that accept an fsockopen or pfsockopen hostname argument with an expectation that the port number is constrained. Because a :port syntax is r…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2017-7272	2024-11-21 12:31	2017-03-28	Show	GitHub Exploit DB Packet Storm