Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1091	7.8	重要 Local	Google	Android	GoogleのAndroidにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2025-48643	2026-06-22 11:32	2026-06-17	Show	GitHub Exploit DB Packet Storm

1092	5.5	警告 Local	GPAC	GPAC	GPACにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2025-55652	2026-06-22 11:32	2026-06-15	Show	GitHub Exploit DB Packet Storm

1093	5.5	警告 Local	GPAC	GPAC	GPACにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2025-55660	2026-06-22 11:32	2026-06-15	Show	GitHub Exploit DB Packet Storm

1094	5.5	警告 Local	GPAC	GPAC	GPACにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2025-55661	2026-06-22 11:32	2026-06-15	Show	GitHub Exploit DB Packet Storm

1095	5.5	警告 Local	GPAC	GPAC	GPACにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2025-55663	2026-06-22 11:32	2026-06-15	Show	GitHub Exploit DB Packet Storm

1096	7.8	重要 Local	Google	Android	GoogleのAndroidにおける権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2026-0019	2026-06-22 11:32	2026-06-17	Show	GitHub Exploit DB Packet Storm

1097	3.3	低 Local	Google	Android	GoogleのAndroidにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-0057	2026-06-22 11:32	2026-06-17	Show	GitHub Exploit DB Packet Storm

1098	7.8	重要 Local	Google	Android	GoogleのAndroidにおける権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2026-0063	2026-06-22 11:31	2026-06-17	Show	GitHub Exploit DB Packet Storm

1099	5.5	警告 Local	Google	Android	GoogleのAndroidにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-0064	2026-06-22 11:31	2026-06-17	Show	GitHub Exploit DB Packet Storm

1100	7.8	重要 Local	Google	Android	GoogleのAndroidにおける競合状態に関する脆弱性	CWE-362 競合状態	CVE-2026-0068	2026-06-22 11:31	2026-06-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
257221	9.8	CRITICAL Network	debian redhat mozilla	debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox fir…	A use-after-free vulnerability can occur when an editor DOM node is deleted prematurely during tree traversal while still bound to the document. This results in a potentially exploitable crash. This …	CWE-416 Use After Free	CVE-2017-7809	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm

257222	8.1	HIGH Network	debian redhat mozilla	debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox fir…	A mechanism that uses AppCache to hijack a URL in a domain using fallback by serving the files from a sub-path on the domain. This has been addressed by requiring fallback files be inside the manifes…	CWE-20 Improper Input Validation	CVE-2017-7807	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm

257223	7.5	HIGH Network	mozilla debian	firefox thunderbird debian_linux	During TLS 1.2 exchanges, handshake hashes are generated which point to a message buffer. This saved data is used for later messages but in some cases, the handshake transcript can exceed the space a…	CWE-416 Use After Free	CVE-2017-7805	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm

257224	7.5	HIGH Network	mozilla	firefox firefox_esr thunderbird	The destructor function for the "WindowsDllDetourPatcher" class can be re-purposed by malicious code in concert with another vulnerability to write arbitrary data to an attacker controlled location i…	CWE-20 Improper Input Validation	CVE-2017-7804	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm

257225	7.5	HIGH Network	redhat debian mozilla	enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus debian_linux thunderbird firefox firefox_…	When a page's content security policy (CSP) header contains a "sandbox" directive, other directives are ignored. This results in the incorrect enforcement of CSP. This vulnerability affects Thunderbi…	CWE-269 Improper Privilege Management	CVE-2017-7803	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm

257226	6.1	MEDIUM Network	mozilla	firefox	JavaScript in the "about:webrtc" page is not sanitized properly being assigned to "innerHTML". Data on this page is supplied by WebRTC usage and is not under third-party control, making this difficul…	CWE-79 Cross-site Scripting	CVE-2017-7799	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm

257227	7.5	HIGH Network	mozilla	firefox	Response header name interning does not have same-origin protections and these headers are stored in a global registry. This allows stored header names to be available cross-origin. This vulnerabilit…	CWE-346 Origin Validation Error	CVE-2017-7797	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm

257228	4.7	MEDIUM Local	mozilla	firefox	On Windows systems, the logger run by the Windows updater deletes the file "update.log" before it runs in order to write a new log of that name. The path to this file is supplied at the command line …	CWE-20 Improper Input Validation	CVE-2017-7796	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm

257229	7.8	HIGH Local	mozilla	firefox	On Linux systems, if the content process is compromised, the sandbox broker will allow files to be truncated even though the sandbox explicitly only has read access to the local file system and no wr…	CWE-276 Incorrect Default Permissions	CVE-2017-7794	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm

257230	9.8	CRITICAL Network	debian redhat mozilla	debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox fir…	A use-after-free vulnerability can occur when manipulating the DOM during the resize event of an image element. If these elements have been freed due to a lack of strong references, a potentially exp…	CWE-416 Use After Free	CVE-2017-7802	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm