Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
541 7.8 重要
Local 		マイクロソフト Microsoft Office 2024 Long-Term Servicing Channel Edition
Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft&nb… 		Microsoft Word のリモートでコードが実行される脆弱性 CWE-822
信頼性のないポインタデリファレンス 		CVE-2026-45643 2026-06-12 14:34 2026-06-9 Show GitHub Exploit DB Packet Storm
542 8.4 重要
Local 		マイクロソフト Microsoft Office 2024 Long-Term Servicing Channel Edition Microsoft Outlook および Word のリモートでコードが実行される脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-47635 2026-06-12 14:34 2026-06-9 Show GitHub Exploit DB Packet Storm
543 6.5 警告
Network 		ERLANG
chilkat software		 Erlang/OTP
Erlang/Inets (Inets)
ftp 		ERLANGのErlang/Inets (Inets)等の複数製品におけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-48858 2026-06-12 14:34 2026-06-10 Show GitHub Exploit DB Packet Storm
544 7.1 重要
Local 		- アップルのmacOSにおける競合状態に関する脆弱性 CWE-362
競合状態 		CVE-2022-26758 2026-06-12 14:34 2026-06-10 Show GitHub Exploit DB Packet Storm
545 3.5
Physics 		- アップルのmacOSにおける認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2022-48575 2026-06-12 14:34 2026-06-10 Show GitHub Exploit DB Packet Storm
546 4 警告
Local 		NSA Ghidra NSAのGhidraにおける未定義、未指定、または実装定義の動作への依存に関する脆弱性 CWE-758
未定義、未指定、または実装定義の動作への依存 		CVE-2024-58350 2026-06-12 14:34 2026-06-10 Show GitHub Exploit DB Packet Storm
547 6 警告
Local 		NVIDIA gpu display driver NVIDIAのgpu display driverにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2025-33221 2026-06-12 14:34 2026-05-26 Show GitHub Exploit DB Packet Storm
548 6.7 警告
Local 		フォーティネット FortiProxy
FortiOS 		フォーティネットのFortiOS等の複数製品における安全でないデバッグアクセスレベルまたは状態にさらされた内部アセットに関する脆弱性 CWE-1244
安全でないデバッグアクセスレベルまたは状態にさらされた内部アセット 		CVE-2025-67862 2026-06-12 14:34 2026-06-9 Show GitHub Exploit DB Packet Storm
549 7.8 重要
Local 		SQLite SQLite SQLiteにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-11822 2026-06-12 14:34 2026-06-9 Show GitHub Exploit DB Packet Storm
550 7.8 重要
Local 		SQLite SQLite SQLiteにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-11824 2026-06-12 14:34 2026-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
254981 6.5 MEDIUM
Network 		wireshark
debian 		wireshark
debian_linux 		In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the NetScaler file parser could go into an infinite loop, triggered by a malformed capture file. This was addressed in wiretap/netscaler.c by ensuring… CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2017-7700 2024-11-21 12:32 2017-04-13 Show GitHub Exploit DB Packet Storm
254982 5.5 MEDIUM
Local 		libsndfile_project libsndfile In libsndfile before 1.0.28, an error in the "flac_buffer_copy()" function (flac.c) can be exploited to cause a segmentation violation (with read memory access) via a specially crafted FLAC file duri… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-7742 2024-11-21 12:32 2017-04-13 Show GitHub Exploit DB Packet Storm
254983 5.5 MEDIUM
Local 		libsndfile_project libsndfile In libsndfile before 1.0.28, an error in the "flac_buffer_copy()" function (flac.c) can be exploited to cause a segmentation violation (with write memory access) via a specially crafted FLAC file dur… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-7741 2024-11-21 12:32 2017-04-13 Show GitHub Exploit DB Packet Storm
254984 10.0 CRITICAL
Network 		solarwinds log_\&_event_manager In SolarWinds Log & Event Manager (LEM) before 6.3.1 Hotfix 4, a menu system is encountered when the SSH service is accessed with "cmc" and "password" (the default username and password). By exploiti… CWE-77
Command Injection 		CVE-2017-7722 2024-11-21 12:32 2017-04-13 Show GitHub Exploit DB Packet Storm
254985 9.8 CRITICAL
Network 		web-dorado spider_event_calendar SQL injection in the Spider Event Calendar (aka spider-event-calendar) plugin before 1.5.52 for WordPress is exploitable with the order_by parameter to calendar_functions.php or widget_Theme_function… CWE-89
SQL Injection 		CVE-2017-7719 2024-11-21 12:32 2017-04-13 Show GitHub Exploit DB Packet Storm
254986 5.5 MEDIUM
Local 		radare radare2 The read_u32_leb128 function in libr/util/uleb128.c in radare2 1.3.0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted Web Assembl… CWE-125
Out-of-bounds Read 		CVE-2017-7716 2024-11-21 12:32 2017-04-13 Show GitHub Exploit DB Packet Storm
254987 9.8 CRITICAL
Network 		brother mfc_firmware
dcp_firmware
ads_firmware
hl_firmware 		On certain Brother devices, authorization is mishandled by including a valid AuthCookie cookie in the HTTP response to a failed login attempt. Affected models are: MFC-J6973CDW MFC-J4420DW MFC-8710DW… CWE-287
Improper Authentication 		CVE-2017-7588 2024-11-21 12:32 2017-04-12 Show GitHub Exploit DB Packet Storm
254988 5.5 MEDIUM
Local 		libsamplerate_project
debian 		libsamplerate
debian_linux 		In libsamplerate before 0.1.9, a buffer over-read occurs in the calc_output_single function in src_sinc.c via a crafted audio file. CWE-125
Out-of-bounds Read 		CVE-2017-7697 2024-11-21 12:32 2017-04-12 Show GitHub Exploit DB Packet Storm
254989 9.8 CRITICAL
Network 		bigtreecms bigtree_cms Unrestricted File Upload exists in BigTree CMS before 4.2.17: if an attacker uploads an 'xxx.php[space]' file, they could bypass a safety check and execute any code. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2017-7695 2024-11-21 12:32 2017-04-12 Show GitHub Exploit DB Packet Storm
254990 8.8 HIGH
Network 		getsymphony symphony Remote Code Execution vulnerability in symphony/content/content.blueprintsdatasources.php in Symphony CMS through 2.6.11 allows remote attackers to execute code and get a webshell from the back-end. … CWE-94
Code Injection 		CVE-2017-7694 2024-11-21 12:32 2017-04-12 Show GitHub Exploit DB Packet Storm