Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 26, 2026, 4:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 101 | 5.4 |
警告
Network |
Mattermost, Inc. | Mattermost Server | Mattermost, Inc.のMattermost Serverにおける認証の欠如に関する脆弱性 New |
CWE-862
認証の欠如 |
CVE-2026-5139 | 2026-06-26 11:56 | 2026-06-22 | Show | GitHub Exploit DB Packet Storm |
| 102 | 7.5 |
重要
Network |
VoidZero Inc. vitejs |
Vite+ vite |
vitejs等の複数ベンダの製品における複数の脆弱性 New |
CWE-200 CWE-22 |
CVE-2026-53571 | 2026-06-26 11:56 | 2026-06-22 | Show | GitHub Exploit DB Packet Storm |
| 103 | 7.5 |
重要
Network |
vLLM | vLLM | vLLMにおける複数の脆弱性 New |
CWE-200 CWE-681 |
CVE-2026-53923 | 2026-06-26 11:56 | 2026-06-22 | Show | GitHub Exploit DB Packet Storm |
| 104 | 4.3 |
警告
Network |
openwebui | open webui | openwebuiのopen webuiにおけるユーザ制御の鍵による認証回避に関する脆弱性 New |
CWE-639
ユーザ制御の鍵による認証回避 |
CVE-2026-54006 | 2026-06-26 11:56 | 2026-06-23 | Show | GitHub Exploit DB Packet Storm |
| 105 | 6.5 |
警告
Network |
openwebui | open webui | openwebuiのopen webuiにおける同一生成元ポリシー違反に関する脆弱性 New |
CWE-346
同一生成元ポリシー違反 |
CVE-2026-54007 | 2026-06-26 11:56 | 2026-06-23 | Show | GitHub Exploit DB Packet Storm |
| 106 | 8.5 |
重要
Network |
openwebui | open webui | openwebuiのopen webuiにおけるサーバサイドのリクエストフォージェリの脆弱性 New |
CWE-918
サーバサイドリクエストフォージェリ |
CVE-2026-54008 | 2026-06-26 11:56 | 2026-06-23 | Show | GitHub Exploit DB Packet Storm |
| 107 | 6.5 |
警告
Network |
openwebui | open webui | openwebuiのopen webuiにおけるユーザ制御の鍵による認証回避に関する脆弱性 New |
CWE-639
ユーザ制御の鍵による認証回避 |
CVE-2026-54009 | 2026-06-26 11:56 | 2026-06-23 | Show | GitHub Exploit DB Packet Storm |
| 108 | 8.3 |
重要
Network |
openwebui | open webui | openwebuiのopen webuiにおける複数の脆弱性 New |
CWE-284 CWE-639 CWE-862 |
CVE-2026-54010 | 2026-06-26 11:55 | 2026-06-23 | Show | GitHub Exploit DB Packet Storm |
| 109 | 5.4 |
警告
Network |
openwebui | open webui | openwebuiのopen webuiにおけるクロスサイトスクリプティングの脆弱性 New |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2026-54011 | 2026-06-26 11:55 | 2026-06-23 | Show | GitHub Exploit DB Packet Storm |
| 110 | 7.1 |
重要
Network |
openwebui | open webui | openwebuiのopen webuiにおける複数の脆弱性 New |
CWE-284 CWE-285 CWE-862 |
CVE-2026-54012 | 2026-06-26 11:55 | 2026-06-23 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 26, 2026, 4 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 256991 | 9.8 |
CRITICAL
Network |
open-xchange | open-xchange_appsuite | Open-Xchange GmbH OX App Suite 7.8.3 and earlier is affected by: Information Exposure. |
CWE-200
Information Exposure |
CVE-2017-5210 | 2024-11-21 12:27 | 2019-05-24 | Show | GitHub Exploit DB Packet Storm |
| 256992 | 9.8 |
CRITICAL
Network |
mozilla | firefox | Memory safety bugs were reported in Firefox 53. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary c… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-5471 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 256993 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox fir… |
A use-after-free vulnerability with the frameloader during tree reconstruction while regenerating CSS layout when attempting to use a node in the tree that no longer exists. This results in a potenti… |
CWE-416
Use After Free |
CVE-2017-5472 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 256994 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox fir… |
Memory safety bugs were reported in Firefox 53 and Firefox ESR 52.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploit… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-5470 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 256995 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus thunderbird
Fixed potential buffer overflows in generated Firefox code due to CVE-2016-6354 issue in Flex. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 45.9, Firefox ESR < 52.1, and Firefox < 53.
|
CWE-119
|
Incorrect Access of Indexable Resource ('Range Error')
CVE-2017-5469
|
2024-11-21 12:27 |
2018-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 256996 | 9.1 |
CRITICAL
Network |
mozilla | firefox | An issue with incorrect ownership model of "privateBrowsing" information exposed through developer tools. This can result in a non-exploitable crash when manually triggered during debugging. This vul… |
CWE-665
Improper Initialization |
CVE-2017-5468 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 256997 | 7.5 |
HIGH
Network |
redhat mozilla |
enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server thunderbird firefox firefox_esr |
A potential memory corruption and crash when using Skia content when drawing content outside of the bounds of a clipping region. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 52.1, and… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-5467 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 256998 | 5.3 |
MEDIUM
Network |
mozilla | firefox | Android intents can be used to launch Firefox for Android in reader mode with a user specified URL. This allows an attacker to spoof the contents of the addressbar as displayed to users. Note: This a… |
CWE-20
Improper Input Validation |
CVE-2017-5463 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 256999 | 5.3 |
MEDIUM
Network |
debian mozilla |
debian_linux thunderbird firefox firefox_esr network_security_services |
A flaw in DRBG number generation within the Network Security Services (NSS) library where the internal state V does not correctly carry bits over. The NSS library has been updated to fix this issue t… |
CWE-682
Incorrect Calculation |
CVE-2017-5462 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 257000 | 9.8 |
CRITICAL
Network |
redhat debian mozilla |
enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus debian_linux thunderbird firefox firefox_… |
A buffer overflow in WebGL triggerable by web content, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 45.9, Firefox ESR < 52.1, and Firefox… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-5459 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |