Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
721	8.8	重要 Network	Devolutions	Devolutions Remote Desktop Manager	DevolutionsのDevolutions Remote Desktop ManagerにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-12161	2026-06-17 15:35	2026-06-16	Show	GitHub Exploit DB Packet Storm

722	5.5	警告 Network	Devolutions	Devolutions Remote Desktop Manager	DevolutionsのDevolutions Remote Desktop Managerにおけるホストの不一致による証明書の検証に関する脆弱性	CWE-297 ホストの不一致による証明書の不適切な検証	CVE-2026-12162	2026-06-17 15:35	2026-06-16	Show	GitHub Exploit DB Packet Storm

723	8.8	重要 Network	D-Link Corporation	DCS-935L ファームウェア	D-Link CorporationのDCS-935L ファームウェアにおける複数の脆弱性	CWE-119 CWE-134	CVE-2026-12174	2026-06-17 15:35	2026-06-13	Show	GitHub Exploit DB Packet Storm

724	8.8	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2026-12289	2026-06-17 15:35	2026-06-16	Show	GitHub Exploit DB Packet Storm

725	5.4	警告 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における複数の脆弱性	CWE-125 CWE-416 CWE-787	CVE-2026-12298	2026-06-17 15:35	2026-06-16	Show	GitHub Exploit DB Packet Storm

726	5.4	警告 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における型の取り違えに関する脆弱性	CWE-843 型の取り違え	CVE-2026-12299	2026-06-17 15:35	2026-06-16	Show	GitHub Exploit DB Packet Storm

727	4.3	警告 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-12303	2026-06-17 15:35	2026-06-16	Show	GitHub Exploit DB Packet Storm

728	4.7	警告 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における複数の脆弱性	CWE-200 CWE-688	CVE-2026-12311	2026-06-17 15:35	2026-06-16	Show	GitHub Exploit DB Packet Storm

729	4.7	警告 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品における権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2026-12313	2026-06-17 15:35	2026-06-16	Show	GitHub Exploit DB Packet Storm

730	6.5	警告 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-12319	2026-06-17 15:35	2026-06-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
254521	5.0	MEDIUM Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1	Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an authen…	CWE-200 Information Exposure	CVE-2017-8471	2024-11-21 12:34	2017-06-15	Show	GitHub Exploit DB Packet Storm

254522	5.0	MEDIUM Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1	Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an authen…	CWE-200 Information Exposure	CVE-2017-8470	2024-11-21 12:34	2017-06-15	Show	GitHub Exploit DB Packet Storm

254523	5.5	MEDIUM Local	microsoft	windows_server_2008 windows_server_2012 windows_8.1 windows_7 windows_rt_8.1	The kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and Windows Server 2016 allows an…	CWE-200 Information Exposure	CVE-2017-8469	2024-11-21 12:34	2017-06-15	Show	GitHub Exploit DB Packet Storm

254524	5.0	MEDIUM Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1	The kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 all…	CWE-200 Information Exposure	CVE-2017-8462	2024-11-21 12:34	2017-06-15	Show	GitHub Exploit DB Packet Storm

254525	8.8	HIGH Network	atlassian	bamboo	Atlassian Bamboo 5.x before 5.15.7 and 6.x before 6.0.1 did not correctly check if a user creating a deployment project had the edit permission and therefore the rights to do so. An attacker who can…	CWE-863 Incorrect Authorization	CVE-2017-8907	2024-11-21 12:34	2017-06-15	Show	GitHub Exploit DB Packet Storm

254526	6.5	MEDIUM Network	gnome opensuse	libcroco leap	The cr_parser_parse_selector_core function in cr-parser.c in libcroco 0.6.12 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted CSS file.	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2017-8871	2024-11-21 12:34	2017-06-12	Show	GitHub Exploit DB Packet Storm

254527	6.5	MEDIUM Network	gnome opensuse	libcroco leap	The cr_tknzr_parse_comment function in cr-tknzr.c in libcroco 0.6.12 allows remote attackers to cause a denial of service (memory allocation error) via a crafted CSS file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-8834	2024-11-21 12:34	2017-06-12	Show	GitHub Exploit DB Packet Storm

254528	6.1	MEDIUM Network	cgiirc	cgi\	irc.cgi in CGI:IRC before 0.5.12 reflects user-supplied input from the R parameter without proper output encoding, aka XSS.	CWE-79 Cross-site Scripting	CVE-2017-8920	2024-11-21 12:34	2017-06-7	Show	GitHub Exploit DB Packet Storm

254529	8.1	HIGH Network	peplink	b305hw2_firmware 380hw6_firmware 580hw2_firmware 710hw3_firmware 1350hw2_firmware 2500_firmware	Arbitrary file deletion exists on Peplink Balance 305, 380, 580, 710, 1350, and 2500 devices with firmware before fw-b305hw2_380hw6_580hw2_710hw3_1350hw2_2500-7.0.1-build2093. The attack methodology …	CWE-22 Path Traversal	CVE-2017-8841	2024-11-21 12:34	2017-06-5	Show	GitHub Exploit DB Packet Storm

254530	5.3	MEDIUM Network	peplink	b305hw2_firmware 380hw6_firmware 580hw2_firmware 710hw3_firmware 1350hw2_firmware 2500_firmware	Debug information disclosure exists on Peplink Balance 305, 380, 580, 710, 1350, and 2500 devices with firmware before fw-b305hw2_380hw6_580hw2_710hw3_1350hw2_2500-7.0.1-build2093. A direct request t…	CWE-200 Information Exposure	CVE-2017-8840	2024-11-21 12:34	2017-06-5	Show	GitHub Exploit DB Packet Storm