Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 25, 2026, 2 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 371 | 5.5 |
警告
Local |
マイクロソフト | .NET | .NET の改ざんの脆弱性 |
CWE-59
リンク解釈の問題 |
CVE-2026-45491 | 2026-06-22 11:56 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 372 | 6.1 |
警告
Network |
マイクロソフト |
Microsoft Exchange Server Subscription Edition (SE) Microsoft Exchange Server |
Microsoft Exchange Server のなりすましの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2026-45500 | 2026-06-22 11:56 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 373 | 8.1 |
重要
Network |
マイクロソフト |
Microsoft Exchange Server Subscription Edition (SE) Microsoft Exchange Server |
Microsoft Exchange Server のリモートでコードが実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2026-45583 | 2026-06-22 11:56 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 374 | 7.5 |
重要
Network |
マイクロソフト |
Microsoft Visual Studio 2026 .NET ASP.NET Core |
ASP.NET Core のサービス拒否の脆弱性 |
CWE-400 CWE-noinfo |
CVE-2026-45591 | 2026-06-22 11:56 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 375 | 7.5 |
重要
Network |
マイクロソフト |
Microsoft Windows 11 26h1 Microsoft Windows Server 2022 Microsoft Windows 10 22h2 Microsoft Windows 10 1607 Microsoft Wind… |
Windows リモート デスクトップ プロトコル (RDP) の情報漏えいの脆弱性 |
CWE-125
境界外読み取り |
CVE-2026-45639 | 2026-06-22 11:56 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 376 | 7.8 |
重要
Local |
マイクロソフト |
Microsoft Office 2021 Long Term Servicing Channel Edition Microsoft Office 365 Microsoft Office 2024 Long-Term Servicing Ch… |
Microsoft Office のリモート コードが実行される脆弱性 |
CWE-787 CWE-822 |
CVE-2026-45645 | 2026-06-22 11:56 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 377 | 7 |
重要
Local |
マイクロソフト | Microsoft Defender for Endpoint | Microsoft Defender for Endpoint for Mac の特権の昇格の脆弱性 |
CWE-367
Time-of-check Time-of-use (TOCTOU) 競合状態 |
CVE-2026-45647 | 2026-06-22 11:55 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 378 | 7.1 |
重要
Local |
マイクロソフト |
Microsoft Word Microsoft Excel Microsoft PowerPoint |
Office for Android のなりすましの脆弱性 |
CWE-284
不適切なアクセス制御 |
CVE-2026-45649 | 2026-06-22 11:55 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
| 379 | 6.8 |
警告
Network |
Discourse | Discourse | Discourseにおけるパストラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2026-45775 | 2026-06-22 11:55 | 2026-06-12 | Show | GitHub Exploit DB Packet Storm |
| 380 | 9.9 |
緊急
Network |
オラクル | Oracle WebCenter Portal | オラクルのOracle WebCenter Portalにおけるアクセス制御に関する脆弱性 |
CWE-284
不適切なアクセス制御 |
CVE-2026-46765 | 2026-06-22 11:55 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 25, 2026, 4:04 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 256991 | 9.8 |
CRITICAL
Network |
open-xchange | open-xchange_appsuite | Open-Xchange GmbH OX App Suite 7.8.3 and earlier is affected by: Information Exposure. |
CWE-200
Information Exposure |
CVE-2017-5210 | 2024-11-21 12:27 | 2019-05-24 | Show | GitHub Exploit DB Packet Storm |
| 256992 | 9.8 |
CRITICAL
Network |
mozilla | firefox | Memory safety bugs were reported in Firefox 53. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary c… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-5471 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 256993 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox fir… |
A use-after-free vulnerability with the frameloader during tree reconstruction while regenerating CSS layout when attempting to use a node in the tree that no longer exists. This results in a potenti… |
CWE-416
Use After Free |
CVE-2017-5472 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 256994 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox fir… |
Memory safety bugs were reported in Firefox 53 and Firefox ESR 52.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploit… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-5470 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 256995 | 9.8 |
CRITICAL
Network |
debian redhat mozilla |
debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus thunderbird
Fixed potential buffer overflows in generated Firefox code due to CVE-2016-6354 issue in Flex. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 45.9, Firefox ESR < 52.1, and Firefox < 53.
|
CWE-119
|
Incorrect Access of Indexable Resource ('Range Error')
CVE-2017-5469
|
2024-11-21 12:27 |
2018-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 256996 | 9.1 |
CRITICAL
Network |
mozilla | firefox | An issue with incorrect ownership model of "privateBrowsing" information exposed through developer tools. This can result in a non-exploitable crash when manually triggered during debugging. This vul… |
CWE-665
Improper Initialization |
CVE-2017-5468 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 256997 | 7.5 |
HIGH
Network |
redhat mozilla |
enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server thunderbird firefox firefox_esr |
A potential memory corruption and crash when using Skia content when drawing content outside of the bounds of a clipping region. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 52.1, and… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-5467 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 256998 | 5.3 |
MEDIUM
Network |
mozilla | firefox | Android intents can be used to launch Firefox for Android in reader mode with a user specified URL. This allows an attacker to spoof the contents of the addressbar as displayed to users. Note: This a… |
CWE-20
Improper Input Validation |
CVE-2017-5463 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 256999 | 5.3 |
MEDIUM
Network |
debian mozilla |
debian_linux thunderbird firefox firefox_esr network_security_services |
A flaw in DRBG number generation within the Network Security Services (NSS) library where the internal state V does not correctly carry bits over. The NSS library has been updated to fix this issue t… |
CWE-682
Incorrect Calculation |
CVE-2017-5462 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |
| 257000 | 9.8 |
CRITICAL
Network |
redhat debian mozilla |
enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus debian_linux thunderbird firefox firefox_… |
A buffer overflow in WebGL triggerable by web content, resulting in a potentially exploitable crash. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 45.9, Firefox ESR < 52.1, and Firefox… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-5459 | 2024-11-21 12:27 | 2018-06-12 | Show | GitHub Exploit DB Packet Storm |