Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 27, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 1201 | 7.8 |
重要
Local |
Linux | Linux Kernel | LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性 |
CWE-416
解放済みメモリの使用 |
CVE-2026-45996 | 2026-06-17 15:43 | 2026-05-27 | Show | GitHub Exploit DB Packet Storm |
| 1202 | 5.5 |
警告
Local |
Linux | Linux Kernel | LinuxのLinux Kernelにおける不特定の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2026-45997 | 2026-06-17 15:42 | 2026-05-27 | Show | GitHub Exploit DB Packet Storm |
| 1203 | 7.8 |
重要
Local |
Linux | Linux Kernel | LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性 |
CWE-416
解放済みメモリの使用 |
CVE-2026-45998 | 2026-06-17 15:42 | 2026-05-27 | Show | GitHub Exploit DB Packet Storm |
| 1204 | 7.1 |
重要
Local |
Linux | Linux Kernel | LinuxのLinux Kernelにおける整数アンダーフローの脆弱性 |
CWE-191
整数アンダーフロー |
CVE-2026-45999 | 2026-06-17 15:42 | 2026-05-27 | Show | GitHub Exploit DB Packet Storm |
| 1205 | 5.5 |
警告
Local |
Linux | Linux Kernel | LinuxのLinux Kernelにおける不特定の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2026-46000 | 2026-06-17 15:42 | 2026-05-27 | Show | GitHub Exploit DB Packet Storm |
| 1206 | 7.8 |
重要
Local |
Linux | Linux Kernel | LinuxのLinux Kernelにおける境界外書き込みに関する脆弱性 |
CWE-787
境界外書き込み |
CVE-2026-46001 | 2026-06-17 15:42 | 2026-05-27 | Show | GitHub Exploit DB Packet Storm |
| 1207 | 5.5 |
警告
Local |
Linux | Linux Kernel | LinuxのLinux Kernelにおける不特定の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2026-46002 | 2026-06-17 15:42 | 2026-05-27 | Show | GitHub Exploit DB Packet Storm |
| 1208 | 5.5 |
警告
Local |
Linux | Linux Kernel | LinuxのLinux Kernelにおける不特定の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2026-46003 | 2026-06-17 15:42 | 2026-05-27 | Show | GitHub Exploit DB Packet Storm |
| 1209 | 7.8 |
重要
Local |
Linux | Linux Kernel | LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性 |
CWE-416
解放済みメモリの使用 |
CVE-2026-46004 | 2026-06-17 15:42 | 2026-05-27 | Show | GitHub Exploit DB Packet Storm |
| 1210 | 5.5 |
警告
Local |
Linux | Linux Kernel | LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性 |
CWE-401
有効期限後のメモリの解放の欠如 |
CVE-2026-46005 | 2026-06-17 15:42 | 2026-05-27 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 28, 2026, 4:01 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 257231 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox fir… |
A use-after-free vulnerability can occur while re-computing layout for a "marquee" element during window resizing where the updated style object is freed while still in use. This results in a potenti… |
CWE-416
Use After Free |
CVE-2017-7801 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 257232 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox fir… |
A use-after-free vulnerability can occur in WebSockets when the object holding the connection is freed before the disconnection operation is finished. This results in an exploitable crash. This vulne… |
CWE-416
Use After Free |
CVE-2017-7800 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 257233 | 8.8 |
HIGH
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox fir… |
The Developer Tools feature suffers from a XUL injection vulnerability due to improper sanitization of the web page source code. In the worst case, this could allow arbitrary code execution when open… |
CWE-94
Code Injection |
CVE-2017-7798 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 257234 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux enterprise_linux_server_aus enterprise_linux_server_eus thunderbird
A use-after-free vulnerability can occur in the Fetch API when the worker or the associated window are freed when still in use, resulting in a potentially exploitable crash. This vulnerability affect…
|
CWE-416
|
Use After Free
CVE-2017-7793
|
2024-11-21 12:32 |
2018-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 257235 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux enterprise_linux_server_aus enterprise_linux_server_eus thunderbird
A buffer overflow will occur when viewing a certificate in the certificate manager if the certificate has an extremely long object identifier (OID). This results in a potentially exploitable crash. T…
|
CWE-119
|
Incorrect Access of Indexable Resource ('Range Error')
CVE-2017-7792
|
2024-11-21 12:32 |
2018-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 257236 | 7.5 |
HIGH
Network |
mozilla | firefox | On Windows systems, if non-null-terminated strings are copied into the crash reporter for some specific registry keys, stack memory data can be copied until a null is found. This can potentially cont… |
NVD-CWE-noinfo
|
CVE-2017-7790 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 257237 | 5.3 |
MEDIUM
Network |
mozilla | firefox | If a server sends two Strict-Transport-Security (STS) headers for a single connection, they will be rejected as invalid and HTTP Strict Transport Security (HSTS) will not be enabled for the connectio… |
NVD-CWE-noinfo
|
CVE-2017-7789 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 257238 | 9.8 |
CRITICAL
Network |
mozilla | firefox | When an "iframe" has a "sandbox" attribute and its content is specified using "srcdoc", that content does not inherit the containing page's Content Security Policy (CSP) as it should unless the sandb… |
CWE-74
Injection |
CVE-2017-7788 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 257239 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux enterprise_linux_server_aus enterprise_linux_server_eus firefox thu… |
A buffer overflow can occur when the image renderer attempts to paint non-displayable SVG elements. This results in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.3, Fir… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-7786 | 2024-11-21 12:32 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 257240 | 5.3 |
MEDIUM
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux enterprise_linux_server_aus enterprise_linux_server_eus thunderbird
On pages containing an iframe, the "data:" protocol can be used to create a modal alert that will render over arbitrary domains following page navigation, spoofing of the origin of the modal alert fr…
|
CWE-20
|
Improper Input Validation
CVE-2017-7791
|
2024-11-21 12:32 |
2018-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|