Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 25, 2026, 10:01 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 351 | 8.1 |
重要
Network |
VMware | Spring Data MongoDB | VMwareのSpring Data MongoDBにおける言語構文の表現に使用される特殊な要素の不適切な無効化に関する脆弱性 New |
CWE-917
言語構文の表現に使用される特殊な要素の不適切な無効化 |
CVE-2026-41717 | 2026-06-23 10:00 | 2026-06-10 | Show | GitHub Exploit DB Packet Storm |
| 352 | 6.5 |
警告
Network |
VMware | spring for apache kafka | VMwareのspring for apache kafkaにおける入力確認に関する脆弱性 New |
CWE-20
不適切な入力確認 |
CVE-2026-41727 | 2026-06-23 10:00 | 2026-06-10 | Show | GitHub Exploit DB Packet Storm |
| 353 | 7.5 |
重要
Network |
VMware | Spring Data REST | VMwareのSpring Data RESTにおけるアクセス制御に関する脆弱性 New |
CWE-284
不適切なアクセス制御 |
CVE-2026-41728 | 2026-06-23 10:00 | 2026-06-10 | Show | GitHub Exploit DB Packet Storm |
| 354 | 8.1 |
重要
Network |
VMware | Spring Data REST | VMwareのSpring Data RESTにおける言語構文の表現に使用される特殊な要素の不適切な無効化に関する脆弱性 New |
CWE-917
言語構文の表現に使用される特殊な要素の不適切な無効化 |
CVE-2026-41729 | 2026-06-23 10:00 | 2026-06-10 | Show | GitHub Exploit DB Packet Storm |
| 355 | 5.3 |
警告
Network |
VMware | Spring Data REST | VMwareのSpring Data RESTにおけるエラーメッセージによる情報漏えいに関する脆弱性 New |
CWE-209
エラーメッセージによる情報漏えい |
CVE-2026-41730 | 2026-06-23 10:00 | 2026-06-10 | Show | GitHub Exploit DB Packet Storm |
| 356 | 8.1 |
重要
Network |
VMware | spring for apache kafka | VMwareのspring for apache kafkaにおける信頼できないデータのデシリアライゼーションに関する脆弱性 New |
CWE-502
信頼性のないデータのデシリアライゼーション |
CVE-2026-41731 | 2026-06-23 10:00 | 2026-06-10 | Show | GitHub Exploit DB Packet Storm |
| 357 | 5.3 |
警告
Network |
VMware | Spring Data REST | VMwareのSpring Data RESTにおけるアクセス制御に関する脆弱性 New |
CWE-284
不適切なアクセス制御 |
CVE-2026-41837 | 2026-06-23 10:00 | 2026-06-10 | Show | GitHub Exploit DB Packet Storm |
| 358 | 9.9 |
緊急
Network |
オラクル | MySQL Shell | オラクルのMySQL Shellにおけるコードインジェクションの脆弱性 New |
CWE-94
コード・インジェクション |
CVE-2026-46850 | 2026-06-23 10:00 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 359 | 8.5 |
重要
Network |
オラクル | MySQL Shell | オラクルのMySQL Shellにおけるアクセス制御に関する脆弱性 New |
CWE-284
不適切なアクセス制御 |
CVE-2026-46870 | 2026-06-23 10:00 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 360 | 6.5 |
警告
Network |
オラクル | MySQL Shell | オラクルのMySQL Shellにおけるアクセス制御に関する脆弱性 New |
CWE-284
不適切なアクセス制御 |
CVE-2026-46871 | 2026-06-23 10:00 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 25, 2026, 4:04 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 256991 | 9.8 |
CRITICAL
Network |
open-xchange | open-xchange_appsuite | Open-Xchange GmbH OX App Suite 7.8.3 and earlier is affected by: Information Exposure. |
CWE-200
Information Exposure |
CVE-2017-5210 | 2024-11-21 12:27 | 2019-05-24 | Show | GitHub Exploit DB Packet Storm |
| 256992 | 9.8 |
CRITICAL
Network |
mozilla | firefox | Memory safety bugs were reported in Firefox 53. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary c… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-5471 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 256993 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox fir… |
A use-after-free vulnerability with the frameloader during tree reconstruction while regenerating CSS layout when attempting to use a node in the tree that no longer exists. This results in a potenti… |
CWE-416
Use After Free |
CVE-2017-5472 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 256994 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox fir… |
Memory safety bugs were reported in Firefox 53 and Firefox ESR 52.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploit… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-5470 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 256995 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus thunderbird
Fixed potential buffer overflows in generated Firefox code due to CVE-2016-6354 issue in Flex. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 45.9, Firefox ESR < 52.1, and Firefox < 53.
|
CWE-119
|
Incorrect Access of Indexable Resource ('Range Error')
CVE-2017-5469
|
2024-11-21 12:27 |
2018-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 256996 | 9.1 |
CRITICAL
Network |
mozilla | firefox | An issue with incorrect ownership model of "privateBrowsing" information exposed through developer tools. This can result in a non-exploitable crash when manually triggered during debugging. This vul… |
CWE-665
Improper Initialization |
CVE-2017-5468 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 256997 | 7.5 |
HIGH
Network |
redhat mozilla |
enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server thunderbird firefox firefox_esr |
A potential memory corruption and crash when using Skia content when drawing content outside of the bounds of a clipping region. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 52.1, and… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-5467 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 256998 | 5.3 |
MEDIUM
Network |
mozilla | firefox | Android intents can be used to launch Firefox for Android in reader mode with a user specified URL. This allows an attacker to spoof the contents of the addressbar as displayed to users. Note: This a… |
CWE-20
Improper Input Validation |
CVE-2017-5463 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 256999 | 5.3 |
MEDIUM
Network |
debian mozilla |
debian_linux thunderbird firefox firefox_esr network_security_services |
A flaw in DRBG number generation within the Network Security Services (NSS) library where the internal state V does not correctly carry bits over. The NSS library has been updated to fix this issue t… |
CWE-682
Incorrect Calculation |
CVE-2017-5462 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 257000 | 9.8 |
CRITICAL
Network |
redhat debian mozilla |
enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus debian_linux thunderbird firefox firefox_… |
A buffer overflow in WebGL triggerable by web content, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 45.9, Firefox ESR < 52.1, and Firefox… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-5459 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |