Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 23, 2026, 2:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 701 | 8.7 |
重要
Network |
F5 Networks |
BIG-IP WebSafe big-ip container ingress services BIG-IP Application Security Manager (ASM) BIG-IP Advanced Web Application Firewal… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品におけるパストラバーサルの脆弱性 New |
CWE-35
パストラバーサル |
CVE-2026-42930 | 2026-06-22 11:37 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 702 | 4.8 |
警告
Network |
F5 Networks |
nginx open source DoS NGINX plus NGINX Gateway Fabric WAF NGINX Instance Manager NGINX Ingress Controller |
F5 NetworksのDoS等の複数製品における境界外読み取りに関する脆弱性 New |
CWE-125
境界外読み取り |
CVE-2026-42934 | 2026-06-22 11:37 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 703 | 6.5 |
警告
Network |
F5 Networks |
BIG-IP WebSafe big-ip container ingress services BIG-IP Application Security Manager (ASM) BIG-IP Advanced Web Application Firewal… |
F5 NetworksのBIG-IP Access Policy Manager (APM)等の複数製品における重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性 New |
CWE-732
重要なリソースに対する不適切なパーミッションの割り当て |
CVE-2026-42937 | 2026-06-22 11:37 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 704 | 8.1 |
重要
Network |
F5 Networks |
nginx open source DoS NGINX plus NGINX Gateway Fabric WAF NGINX Instance Manager NGINX Ingress Controller |
F5 NetworksのDoS等の複数製品におけるヒープベースのバッファオーバーフローの脆弱性 New |
CWE-122
ヒープオーバーフロー |
CVE-2026-42945 | 2026-06-22 11:37 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 705 | 7.7 |
重要
Network |
OpenStack | OpenStack Ironic | OpenStackのOpenStack Ironicにおける領域間での誤ったリソース移動に関する脆弱性 New |
CWE-669
領域間での誤ったリソース移動 |
CVE-2026-42997 | 2026-06-22 11:37 | 2026-05-5 | Show | GitHub Exploit DB Packet Storm |
| 706 | 8 |
重要
Network |
MariaDB Corporation Ab. | MariaDB | MariaDB Corporation Ab.のMariaDBにおけるOS コマンドインジェクションの脆弱性 New |
CWE-78
OSコマンド・インジェクション |
CVE-2026-44168 | 2026-06-22 11:37 | 2026-06-12 | Show | GitHub Exploit DB Packet Storm |
| 707 | 4.3 |
警告
Network |
MariaDB Corporation Ab. | MariaDB | MariaDB Corporation Ab.のMariaDBにおける不正な認証に関する脆弱性 New |
CWE-863
不正な認証 |
CVE-2026-44169 | 2026-06-22 11:37 | 2026-06-12 | Show | GitHub Exploit DB Packet Storm |
| 708 | 6.1 |
警告
Network |
CarrierWave project | CarrierWave | CarrierWave projectのCarrierWaveにおける複数の脆弱性 New |
CWE-184 CWE-625 CWE-79 |
CVE-2026-44587 | 2026-06-22 11:37 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 709 | 4.3 |
警告
Network |
Discourse | Discourse | Discourseにおける情報漏えいに関する脆弱性 New |
CWE-200
情報漏えい |
CVE-2026-44779 | 2026-06-22 11:37 | 2026-06-12 | Show | GitHub Exploit DB Packet Storm |
| 710 | 4.3 |
警告
Network |
Discourse | Discourse | Discourseにおける情報漏えいに関する脆弱性 New |
CWE-200
情報漏えい |
CVE-2026-44780 | 2026-06-22 11:37 | 2026-06-12 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 23, 2026, 4 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 256351 | 5.9 |
MEDIUM
Network |
f5 |
big-ip_local_traffic_manager big-ip_application_acceleration_manager big-ip_advanced_firewall_manager big-ip_access_policy_manager big-ip_application_security_manager big-ip_link_contr… |
In F5 BIG-IP LTM, AAM, AFM, APM, ASM, Link Controller, PEM, PSM software version 12.0.0 to 12.1.2, 11.6.0 to 11.6.1, 11.4.0 to 11.5.4, when a virtual server uses the standard configuration of HTTP/2 … |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-6163 | 2024-11-21 12:29 | 2017-10-27 | Show | GitHub Exploit DB Packet Storm |
| 256352 | 5.9 |
MEDIUM
Network |
f5 |
big-ip_local_traffic_manager big-ip_application_acceleration_manager big-ip_advanced_firewall_manager big-ip_access_policy_manager big-ip_application_security_manager big-ip_link_contr… |
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, Websafe software version 12.0.0 to 12.1.2, 11.6.0 to 11.6.1, 11.4.0 to 11.5.4, 11.2.1, in some cases TMM… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-6162 | 2024-11-21 12:29 | 2017-10-27 | Show | GitHub Exploit DB Packet Storm |
| 256353 | 5.3 |
MEDIUM
Adjacent |
f5 |
big-ip_local_traffic_manager big-ip_application_acceleration_manager big-ip_advanced_firewall_manager big-ip_access_policy_manager big-ip_application_security_manager big-ip_link_contr… |
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, WebAccelerator software version 12.0.0 - 12.1.2, 11.6.0 - 11.6.1, 11.4.0 - 11.5.4, 11.2.1, when ConfigSy… |
CWE-400
Uncontrolled Resource Consumption |
CVE-2017-6161 | 2024-11-21 12:29 | 2017-10-27 | Show | GitHub Exploit DB Packet Storm |
| 256354 | 5.9 |
MEDIUM
Network |
f5 |
big-ip_application_acceleration_manager big-ip_policy_enforcement_manager |
In F5 BIG-IP AAM and PEM software version 12.0.0 to 12.1.1, 11.6.0 to 11.6.1, 11.4.1 to 11.5.4, a remote attacker may create maliciously crafted HTTP request to cause Traffic Management Microkernel (… |
NVD-CWE-noinfo
|
CVE-2017-6160 | 2024-11-21 12:29 | 2017-10-27 | Show | GitHub Exploit DB Packet Storm |
| 256355 | 5.9 |
MEDIUM
Network |
f5 |
big-ip_local_traffic_manager big-ip_application_acceleration_manager big-ip_advanced_firewall_manager big-ip_access_policy_manager big-ip_application_security_manager big-ip_link_contr… |
F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM, Websafe software version 12.0.0 to 12.1.2, 11.6.0 to 11.6.1 are vulnerable to a denial of service attack when the MPTCP o… |
NVD-CWE-noinfo
|
CVE-2017-6159 | 2024-11-21 12:29 | 2017-10-27 | Show | GitHub Exploit DB Packet Storm |
| 256356 | 8.1 |
HIGH
Network |
f5 |
big-ip_local_traffic_manager big-ip_application_acceleration_manager big-ip_advanced_firewall_manager big-ip_access_policy_manager big-ip_application_security_manager big-ip_link_contr… |
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and Websafe software version 12.0.0 to 12.1.1, 11.6.0 to 11.6.1, 11.5.0 - 11.5.4, virtual servers with a configuration … |
NVD-CWE-noinfo
|
CVE-2017-6157 | 2024-11-21 12:29 | 2017-10-27 | Show | GitHub Exploit DB Packet Storm |
| 256357 | 9.8 |
CRITICAL
Network |
f5 |
big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager big-ip_domain_name_system … |
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM, and WebSafe 11.5.1 HF6 through 11.5.4 HF4, 11.6.0 through 11.6.1 HF1, and 12.0.0 through 12.1.2 on VIPRION platforms o… |
CWE-532
Inclusion of Sensitive Information in Log Files |
CVE-2017-6165 | 2024-11-21 12:29 | 2017-10-21 | Show | GitHub Exploit DB Packet Storm |
| 256358 | 7.3 |
HIGH
Network |
f5 |
big-ip_link_controller big-ip_local_traffic_manager big-ip_advanced_firewall_manager big-ip_access_policy_manager big-ip_policy_enforcement_manager big-ip_domain_name_system big-ip_… |
iControl REST in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM, and WebSafe 12.0.0 through 12.1.2 and 13.0.0 includes a service to convert authorization BIGIPAuthCookie cook… |
CWE-613
Insufficient Session Expiration |
CVE-2017-6145 | 2024-11-21 12:29 | 2017-10-21 | Show | GitHub Exploit DB Packet Storm |
| 256359 | 7.4 |
HIGH
Network |
f5 | big-ip_policy_enforcement_manager | In F5 BIG-IP PEM 12.1.0 through 12.1.2 when downloading the Type Allocation Code (TAC) database file via HTTPS, the server's certificate is not verified. Attackers in a privileged network position ma… |
CWE-295
Improper Certificate Validation |
CVE-2017-6144 | 2024-11-21 12:29 | 2017-10-21 | Show | GitHub Exploit DB Packet Storm |
| 256360 | 5.9 |
MEDIUM
Network |
f5 |
big-ip_local_traffic_manager big-ip_advanced_firewall_manager big-ip_access_policy_manager big-ip_policy_enforcement_manager big-ip_application_security_manager big-ip_application_acce… |
In F5 BIG-IP LTM, AAM, AFM, APM, ASM, Link Controller, PEM, and WebSafe 12.1.0 through 12.1.2, certain values in a TLS abbreviated handshake when using a client SSL profile with the Session Ticket op… |
CWE-20
Improper Input Validation |
CVE-2017-6141 | 2024-11-21 12:29 | 2017-10-21 | Show | GitHub Exploit DB Packet Storm |