Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 14, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
81	7	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	WinSock 用 Windows Ancillary Function Driver の特権の昇格の脆弱性 New	CWE-362 CWE-416	CVE-2026-45596	2026-06-12 14:50	2026-06-9	Show	GitHub Exploit DB Packet Storm

82	7	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows 11 26h1 Microsoft Windows 11 24h2 Microsoft Wind…	Windows UI オートメーションマネージャー (uiamanager.dll) の特権昇格の脆弱性 New	CWE-362 競合状態	CVE-2026-45597	2026-06-12 14:50	2026-06-9	Show	GitHub Exploit DB Packet Storm

83	7	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	WinSock 用 Windows Ancillary Function Driver の特権の昇格の脆弱性 New	CWE-362 競合状態	CVE-2026-45598	2026-06-12 14:50	2026-06-9	Show	GitHub Exploit DB Packet Storm

84	8.1	重要 Network	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	Windows UPnP デバイスホストのリモートでコードが実行される脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2026-45599	2026-06-12 14:50	2026-06-9	Show	GitHub Exploit DB Packet Storm

85	7	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	WinSock 用 Windows Ancillary Function Driver の特権の昇格の脆弱性 New	CWE-362 CWE-416	CVE-2026-45601	2026-06-12 14:50	2026-06-9	Show	GitHub Exploit DB Packet Storm

86	7	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	WinSock 用 Windows Ancillary Function Driver の特権の昇格の脆弱性 New	CWE-362 CWE-416	CVE-2026-45603	2026-06-12 14:50	2026-06-9	Show	GitHub Exploit DB Packet Storm

87	5.5	警告 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows 11 26h1 Microsoft Windows 11 24h2 Microsoft Windows Server 2025 Microsoft Wind…	Windows マネージドインストーラーの情報漏えいの脆弱性 New	CWE-125 境界外読み取り	CVE-2026-45604	2026-06-12 14:50	2026-06-9	Show	GitHub Exploit DB Packet Storm

88	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	Windows Bluetooth サービスの特権の昇格の脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2026-45605	2026-06-12 14:49	2026-06-9	Show	GitHub Exploit DB Packet Storm

89	5.5	警告 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	Microsoft UxTheme ライブラリ (uxtheme.dll) のサービス拒否の脆弱性 New	CWE-125 境界外読み取り	CVE-2026-45606	2026-06-12 14:49	2026-06-9	Show	GitHub Exploit DB Packet Storm

90	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft&n…	Windows Hyper-V のリモートでコードが実行される脆弱性 New	CWE-125 境界外読み取り	CVE-2026-45607	2026-06-12 14:49	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
258161	5.4	MEDIUM Network	jenkins	jenkins	jenkins before versions 2.44, 2.32.2 is vulnerable to a persisted cross-site scripting vulnerability in console notes (SECURITY-382). Jenkins allows plugins to annotate build logs, adding new content…	CWE-79 Cross-site Scripting	CVE-2017-2607	2024-11-21 12:23	2018-05-22	Show	GitHub Exploit DB Packet Storm

258162	5.4	MEDIUM Network	jenkins	jenkins	jenkins before versions 2.44, 2.32.2 is vulnerable to a user creation CSRF using GET by admins. While this user record was only retained until restart in most cases, administrators' web browsers coul…	CWE-352 Origin Validation Error	CVE-2017-2613	2024-11-21 12:23	2018-05-16	Show	GitHub Exploit DB Packet Storm

258163	5.4	MEDIUM Network	jenkins	jenkins	jenkins before versions 2.44, 2.32.2 is vulnerable to a persisted cross-site scripting in search suggestions due to improperly escaping users with less-than and greater-than characters in their names…	CWE-79 Cross-site Scripting	CVE-2017-2610	2024-11-21 12:23	2018-05-16	Show	GitHub Exploit DB Packet Storm

258164	4.3	MEDIUM Network	jenkins	jenkins	In Jenkins before versions 2.44, 2.32.2 low privilege users were able to act on administrative monitors due to them not being consistently protected by permission checks (SECURITY-371).	CWE-287 Improper Authentication	CVE-2017-2604	2024-11-21 12:23	2018-05-16	Show	GitHub Exploit DB Packet Storm

258165	3.5	LOW Network	jenkins	jenkins	Jenkins before versions 2.44, 2.32.2 is vulnerable to a user data leak in disconnected agents' config.xml API. This could leak sensitive data such as API tokens (SECURITY-362).	CWE-200 Information Exposure	CVE-2017-2603	2024-11-21 12:23	2018-05-16	Show	GitHub Exploit DB Packet Storm

258166	4.3	MEDIUM Network	jenkins	jenkins	jenkins before versions 2.44, 2.32.2 is vulnerable to an improper blacklisting of the Pipeline metadata files in the agent-to-master security subsystem. This could allow metadata files to be written …	NVD-CWE-noinfo	CVE-2017-2602	2024-11-21 12:23	2018-05-16	Show	GitHub Exploit DB Packet Storm

258167	5.4	MEDIUM Network	jenkins	jenkins	In Jenkins before versions 2.44, 2.32.2 low privilege users were able to override JDK download credentials (SECURITY-392), resulting in future builds possibly failing to download a JDK.	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2017-2612	2024-11-21 12:23	2018-05-16	Show	GitHub Exploit DB Packet Storm

258168	8.8	HIGH Network	jenkins	jenkins	Jenkins before versions 2.44, 2.32.2 is vulnerable to a remote code execution vulnerability involving the deserialization of various types in javax.imageio in XStream-based APIs (SECURITY-383).	CWE-502 Deserialization of Untrusted Data	CVE-2017-2608	2024-11-21 12:23	2018-05-16	Show	GitHub Exploit DB Packet Storm

258169	4.3	MEDIUM Network	jenkins	jenkins	In jenkins before versions 2.44, 2.32.2 node monitor data could be viewed by low privilege users via the remote API. These included system configuration and runtime information of these nodes (SECURI…	CWE-200 Information Exposure	CVE-2017-2600	2024-11-21 12:23	2018-05-16	Show	GitHub Exploit DB Packet Storm

258170	5.4	MEDIUM Network	jenkins	jenkins	Jenkins before versions 2.44, 2.32.2 is vulnerable to a persisted cross-site scripting in parameter names and descriptions (SECURITY-353). Users with the permission to configure jobs were able to inj…	-	CVE-2017-2601	2024-11-21 12:23	2018-05-10	Show	GitHub Exploit DB Packet Storm