Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
981	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2012 Microsoft Windows 11 24h2 Microsoft Windows 10 21h2 Microsoft Wind…	Windows Media のリモートでコードが実行される脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-48574	2026-06-11 16:15	2026-06-9	Show	GitHub Exploit DB Packet Storm

982	7.9	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2012 Microsoft Windows 11 24h2 Microsoft Windows 10 21h2 Microsoft Wind…	セキュアブートのセキュリティ機能のバイパスの脆弱性	CWE-693 保護メカニズムの不具合	CVE-2026-48575	2026-06-11 16:15	2026-06-9	Show	GitHub Exploit DB Packet Storm

983	7.9	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2012 Microsoft Windows 11 24h2 Microsoft Windows 10 21h2 Microsoft Wind…	セキュアブートのセキュリティ機能のバイパスの脆弱性	CWE-1329 アップデートができないコンポーネントへの依存	CVE-2026-48576	2026-06-11 16:15	2026-06-9	Show	GitHub Exploit DB Packet Storm

984	7.9	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2012 Microsoft Windows 11 24h2 Microsoft Windows 10 21h2 Microsoft Wind…	セキュアブートのセキュリティ機能のバイパスの脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-48578	2026-06-11 16:15	2026-06-9	Show	GitHub Exploit DB Packet Storm

985	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 11 24h2 Microsoft Windows 10 21h2 Microsoft Windows Server 2016 Microsoft Wind…	Windows カーネルの特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-48583	2026-06-11 16:15	2026-06-9	Show	GitHub Exploit DB Packet Storm

986	7.3	重要 Network	Apache Software Foundation	Apache HTTP Server	Apache Software FoundationのApache HTTP Serverにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-48913	2026-06-11 16:15	2026-06-8	Show	GitHub Exploit DB Packet Storm

987	7.5	重要 Network	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 11 24h2 Microsoft Windows 10 21h2 Microsoft Windows Server 2016 Microsoft Wind…	HTTP.sys のサービス拒否の脆弱性	CWE-400 リソースの枯渇	CVE-2026-49160	2026-06-11 16:15	2026-06-9	Show	GitHub Exploit DB Packet Storm

988	5.3	警告 Network	FreeSWITCH	FreeSWITCH	FreeSWITCHにおけるエンコードおよびエスケープに関する脆弱性	CWE-116 不適切なエンコード、または出力のエスケープ	CVE-2026-49472	2026-06-11 16:15	2026-06-9	Show	GitHub Exploit DB Packet Storm

989	7.5	重要 Network	FreeSWITCH	FreeSWITCH	FreeSWITCHにおける複数の脆弱性	CWE-125 CWE-20 CWE-787	CVE-2026-49475	2026-06-11 16:15	2026-06-9	Show	GitHub Exploit DB Packet Storm

990	9.1	緊急 Network	FreeSWITCH	FreeSWITCH	FreeSWITCHにおける複数の脆弱性	CWE-122 CWE-195 CWE-20 CWE-787	CVE-2026-49840	2026-06-11 16:15	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
255821	5.5	MEDIUM Local	gnu	binutils	The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.28, has an invalid read (of size 8) because the code to emit relocs (bfd_elf_final_link function in bfd/elflink…	CWE-125 Out-of-bounds Read	CVE-2017-7299	2024-11-21 12:31	2017-03-30	Show	GitHub Exploit DB Packet Storm

255822	7.5	HIGH Network	mikrotik	routeros	A vulnerability in the network stack of MikroTik Version 6.38.5 released 2017-03-09 could allow an unauthenticated remote attacker to exhaust all available CPU via a flood of TCP RST packets, prevent…	CWE-400 Uncontrolled Resource Consumption	CVE-2017-7285	2024-11-21 12:31	2017-03-29	Show	GitHub Exploit DB Packet Storm

255823	5.4	MEDIUM Network	moodle	moodle	In Moodle 3.2.2+, there is XSS in the Course summary filter of the "Add a new course" page, as demonstrated by a crafted attribute of an SVG element.	CWE-79 Cross-site Scripting	CVE-2017-7298	2024-11-21 12:31	2017-03-29	Show	GitHub Exploit DB Packet Storm

255824	7.8	HIGH Local	linux	linux_kernel	The vmw_surface_define_ioctl function in drivers/gpu/drm/vmwgfx/vmwgfx_surface.c in the Linux kernel through 4.10.6 does not validate addition of certain levels data, which allows local users to trig…	CWE-787 CWE-190 Out-of-bounds Write Integer Overflow or Wraparound	CVE-2017-7294	2024-11-21 12:31	2017-03-29	Show	GitHub Exploit DB Packet Storm

255825	8.8	HIGH Network	suse	rancher	Rancher Labs rancher server 1.2.0+ is vulnerable to authenticated users disabling access control via an API call. This is fixed in versions rancher/server:v1.2.4, rancher/server:v1.3.5, rancher/serve…	NVD-CWE-noinfo	CVE-2017-7297	2024-11-21 12:31	2017-03-29	Show	GitHub Exploit DB Packet Storm

255826	7.1	HIGH Local	linux	linux_kernel	The TCP stack in the Linux kernel through 4.10.6 mishandles the SCM_TIMESTAMPING_OPT_STATS feature, which allows local users to obtain sensitive information from the kernel's internal socket data str…	CWE-125 Out-of-bounds Read	CVE-2017-7277	2024-11-21 12:31	2017-03-28	Show	GitHub Exploit DB Packet Storm

255827	5.5	MEDIUM Local	imagemagick	imagemagick	The ReadPCXImage function in coders/pcx.c in ImageMagick 7.0.4.9 allows remote attackers to cause a denial of service (attempted large memory allocation and application crash) via a crafted file. NOT…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-7275	2024-11-21 12:31	2017-03-28	Show	GitHub Exploit DB Packet Storm

255828	5.5	MEDIUM Local	radare	radare2	The r_pkcs7_parse_cms function in libr/util/r_pkcs7.c in radare2 1.3.0 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PE file.	CWE-476 NULL Pointer Dereference	CVE-2017-7274	2024-11-21 12:31	2017-03-28	Show	GitHub Exploit DB Packet Storm

255829	6.6	MEDIUM Physics	linux	linux_kernel	The cp_report_fixup function in drivers/hid/hid-cypress.c in the Linux kernel 3.2 and 4.x before 4.9.4 allows physically proximate attackers to cause a denial of service (integer underflow) or possib…	NVD-CWE-Other	CVE-2017-7273	2024-11-21 12:31	2017-03-28	Show	GitHub Exploit DB Packet Storm

255830	7.4	HIGH Network	php	php	PHP through 7.1.11 enables potential SSRF in applications that accept an fsockopen or pfsockopen hostname argument with an expectation that the port number is constrained. Because a :port syntax is r…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2017-7272	2024-11-21 12:31	2017-03-28	Show	GitHub Exploit DB Packet Storm