Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
531	5.5	警告 Local	マイクロソフト	Visual Studio Code	Visual Studio Code セキュリティ機能のバイパスの脆弱性	CWE-20 CWE-23 CWE-noinfo	CVE-2026-48569	2026-06-15 11:15	2026-06-9	Show	GitHub Exploit DB Packet Storm

532	7.8	重要 Local	マイクロソフト	Microsoft PC Manager	Microsoft PC マネージャーのセキュリティ機能バイパスの脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-49161	2026-06-15 11:15	2026-06-9	Show	GitHub Exploit DB Packet Storm

533	8.8	重要 Network	Apache Software Foundation	Apache OFBiz	Apache Software FoundationのApache OFBizにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-50223	2026-06-15 11:15	2026-06-10	Show	GitHub Exploit DB Packet Storm

534	6.5	警告 Network	Apache Software Foundation	Apache CXF	Apache Software FoundationのApache CXFにおける認証に関する脆弱性	CWE-287 CWE-noinfo	CVE-2026-50623	2026-06-15 11:15	2026-06-12	Show	GitHub Exploit DB Packet Storm

535	5.3	警告 Network	Apache Software Foundation	Apache CXF	Apache Software FoundationのApache CXFにおけるCRLF インジェクションの脆弱性	CWE-93 CRLF インジェクション	CVE-2026-50629	2026-06-15 11:15	2026-06-12	Show	GitHub Exploit DB Packet Storm

536	6.5	警告 Network	Apache Software Foundation	Apache CXF	Apache Software FoundationのApache CXFにおけるHTTP レスポンス分割に関する脆弱性	CWE-113 HTTP レスポンスの分割	CVE-2026-50630	2026-06-15 11:15	2026-06-12	Show	GitHub Exploit DB Packet Storm

537	7.4	重要 Network	Apache Software Foundation	Apache CXF	Apache Software FoundationのApache CXFにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-50631	2026-06-15 11:15	2026-06-12	Show	GitHub Exploit DB Packet Storm

538	8.1	重要 Network	Apache Software Foundation	Apache CXF	Apache Software FoundationのApache CXFにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-50632	2026-06-15 11:15	2026-06-12	Show	GitHub Exploit DB Packet Storm

539	8.1	重要 Network	Apache Software Foundation	Apache CXF	Apache Software FoundationのApache CXFにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-50633	2026-06-15 11:15	2026-06-12	Show	GitHub Exploit DB Packet Storm

540	6.5	警告 Network	Apache Software Foundation	Apache CXF	Apache Software FoundationのApache CXFにおけるデジタル署名の検証に関する脆弱性	CWE-347 デジタル署名の不適切な検証	CVE-2026-50634	2026-06-15 11:15	2026-06-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
258961	8.6	HIGH Network	juniper	northstar_controller	A denial of service vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an unauthenticated, unprivileged, network-based attacker to caus…	CWE-200 Information Exposure	CVE-2017-2317	2024-11-21 12:23	2017-04-25	Show	GitHub Exploit DB Packet Storm

258962	6.5	MEDIUM Local	juniper	northstar_controller	A buffer overflow vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an authenticated malicious user to cause a buffer overflow leading…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-2316	2024-11-21 12:23	2017-04-25	Show	GitHub Exploit DB Packet Storm

258963	6.2	MEDIUM Local	juniper	northstar_controller	A denial of service vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an unauthenticated, local user, to create a fork bomb scenario, …	CWE-834 Excessive Iteration	CVE-2017-2330	2024-11-21 12:23	2017-04-25	Show	GitHub Exploit DB Packet Storm

258964	8.6	HIGH Network	juniper	northstar_controller	A vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an unauthenticated, unprivileged, network-based attacker to cause various system s…	NVD-CWE-noinfo	CVE-2017-2321	2024-11-21 12:23	2017-04-25	Show	GitHub Exploit DB Packet Storm

258965	10.0	CRITICAL Network	juniper	northstar_controller	A vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an unauthenticated, unprivileged, network-based attacker to cause various denials …	CWE-200 Information Exposure	CVE-2017-2320	2024-11-21 12:23	2017-04-25	Show	GitHub Exploit DB Packet Storm

258966	7.5	HIGH Network	juniper	junos	On Juniper Networks EX Series Ethernet Switches running affected Junos OS versions, a vulnerability in IPv6 processing has been discovered that may allow a specially crafted IPv6 Neighbor Discovery (…	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-2315	2024-11-21 12:23	2017-04-25	Show	GitHub Exploit DB Packet Storm

258967	7.5	HIGH Network	juniper	junos	Juniper Networks devices running affected Junos OS versions may be impacted by the receipt of a crafted BGP UPDATE which can lead to an rpd (routing process daemon) crash and restart. Repeated crashe…	CWE-20 Improper Input Validation	CVE-2017-2313	2024-11-21 12:23	2017-04-25	Show	GitHub Exploit DB Packet Storm

258968	6.5	MEDIUM Network	juniper	junos	On Juniper Networks devices running Junos OS affected versions and with LDP enabled, a specific LDP packet destined to the RE (Routing Engine) will consume a small amount of the memory allocated for …	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-2312	2024-11-21 12:23	2017-04-25	Show	GitHub Exploit DB Packet Storm

258969	4.8	MEDIUM Adjacent	apple	apple_music	The Apple Music (aka com.apple.android.music) application before 2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obt…	CWE-295 Improper Certificate Validation	CVE-2017-2387	2024-11-21 12:23	2017-04-7	Show	GitHub Exploit DB Packet Storm

258970	7.8	HIGH Local	objective_development obdev	little_snitch	Little Snitch version 3.0 through 3.7.3 suffer from a local privilege escalation vulnerability in the installer part. The vulnerability is related to the installation of the configuration file "at.ob…	NVD-CWE-noinfo	CVE-2017-2675	2024-11-21 12:23	2017-04-7	Show	GitHub Exploit DB Packet Storm