Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 25, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1 6.7 警告
Local 		ソニー株式会社 Optical Disc Archive Software Optical Disc Archive Software(Windows版)のインストーラにおけるインストール時の不適切なファイルアクセス権設定の脆弱性 Update CWE-Other
その他 		CVE-2026-50255 2026-06-25 16:27 2026-06-16 Show GitHub Exploit DB Packet Storm
2 - - (複数のベンダ) (複数の製品) CISA ICS Advisory / ICS Medical Advisory(2026年06月23日) New - - 2026-06-25 10:59 2026-06-24 Show GitHub Exploit DB Packet Storm
3 - - 日立 Hitachi Ops Center Analyzer viewpoint
Hitachi Infrastructure Analytics Advisor
Hitachi Ops Center Viewpoint
Hitachi Ops Center&nbs… 		Hitachi Infrastructure Analytics Advisor, Hitachi Ops Center Analyzer, Hitachi Ops Center Analyzer viewpointおよびHitachi Ops Center Viewpointにおける複数の脆弱性 New - CVE-2023-35116
CVE-2025-24970
CVE-2025-25193
CVE-2025-48924
CVE-2025-55163
CVE-2025-58056
CVE-2025-58057 		2026-06-25 09:25 2026-06-23 Show GitHub Exploit DB Packet Storm
4 - - 横河電機株式会社 統合情報サーバ(CIサーバ)
FAST/TOOLS 		横河電機製FAST/TOOLSおよびCI Serverにおける重要情報の平文送信の脆弱性 New CWE-319
重要な情報の平文での送信 		CVE-2026-11833 2026-06-24 14:38 2026-06-23 Show GitHub Exploit DB Packet Storm
5 - - (複数のベンダ) (複数の製品) Microsoft Windows Recovery EnvironmentにおけるUEFI/BIOSパスワード制限回避の脆弱性 New - - 2026-06-24 14:38 2026-06-23 Show GitHub Exploit DB Packet Storm
6 - - (複数のベンダ) (複数の製品) FastStone Image Viewerにおけるファイル解析に関する複数の脆弱性 New - - 2026-06-24 14:38 2026-06-23 Show GitHub Exploit DB Packet Storm
7 9.8 緊急
Network 		InHand Networks IR915L-FQ39-S Firmware
IR912L-FQ58 Firmware 		InHand NetworksのIR912L-FQ58 Firmware等の複数製品におけるコマンドインジェクションの脆弱性 New CWE-77
コマンドインジェクション 		CVE-2026-38714 2026-06-24 10:00 2026-06-18 Show GitHub Exploit DB Packet Storm
8 9.8 緊急
Network 		InHand Networks IR915L-FQ39-S Firmware
IR912L-FQ58 Firmware 		InHand NetworksのIR912L-FQ58 Firmware等の複数製品におけるコマンドインジェクションの脆弱性 New CWE-77
コマンドインジェクション 		CVE-2026-38715 2026-06-24 10:00 2026-06-18 Show GitHub Exploit DB Packet Storm
9 9.8 緊急
Network 		InHand Networks IR915L-FQ39-S Firmware
IR912L-FQ58 Firmware 		InHand NetworksのIR912L-FQ58 Firmware等の複数製品におけるコマンドインジェクションの脆弱性 New CWE-77
コマンドインジェクション 		CVE-2026-38716 2026-06-24 10:00 2026-06-18 Show GitHub Exploit DB Packet Storm
10 9.8 緊急
Network 		InHand Networks IR915L-FQ39-S Firmware
IR912L-FQ58 Firmware 		InHand NetworksのIR912L-FQ58 Firmware等の複数製品におけるコマンドインジェクションの脆弱性 New CWE-77
コマンドインジェクション 		CVE-2026-38717 2026-06-24 10:00 2026-06-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 26, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
191511 6.5 MEDIUM
Network 		siemens sinec_nms A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). An authenticated attacker could change the user profile of any user without proper authorization. With this, the a… NVD-CWE-Other
CVE-2021-33723 2024-11-21 15:09 2021-10-12 Show GitHub Exploit DB Packet Storm
191512 4.9 MEDIUM
Network 		siemens sinec_nms A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). The affected system has a Path Traversal vulnerability when exporting a firmware container. With this a privileged… - CVE-2021-33722 2024-11-21 15:09 2021-10-12 Show GitHub Exploit DB Packet Storm
191513 6.5 MEDIUM
Network 		f-secure linux_security
cloud_protection_for_salesforce
elements_for_microsoft_365
atlant
internet_gatekeeper
elements_endpoint_detection_and_response
elements_endpoint_protection 		A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant whereby the AVPACK module component used in certain F-Secure products can crash while scanning a fuzzed files. The exploit ca… NVD-CWE-noinfo
CVE-2021-33603 2024-11-21 15:09 2021-10-8 Show GitHub Exploit DB Packet Storm
191514 8.8 HIGH
Network 		lancom-systems lcos In LCOS 10.40 to 10.42.0473-RU3 with SNMPv3 enabled on LANCOM devices, changing the password of the root user via the CLI does not change the password of the root user for SNMPv3 access. (However, ch… NVD-CWE-noinfo
CVE-2021-33903 2024-11-21 15:09 2021-10-8 Show GitHub Exploit DB Packet Storm
191515 5.3 MEDIUM
Network 		f-secure atlant
linux_security
cloud_protection
internet_gatekeeper 		A vulnerability affecting the F-Secure Antivirus engine was discovered when the engine tries to unpack a zip archive (LZW decompression method), and this can crash the scanning engine. The vulnerabil… NVD-CWE-noinfo
CVE-2021-33602 2024-11-21 15:09 2021-10-6 Show GitHub Exploit DB Packet Storm
191516 5.4 MEDIUM
Network 		zohocorp zoho_crm_lead_magnet A Cross-Site Scripting (XSS) attack can cause arbitrary code (JavaScript) to run in a user’s browser while the browser is connected to a trusted website. The attack targets your application's users a… CWE-79
Cross-site Scripting 		CVE-2021-33849 2024-11-21 15:09 2021-10-6 Show GitHub Exploit DB Packet Storm
191517 7.8 HIGH
Local 		insyde
siemens 		insydeh2o
ruggedcom_apr1808_firmware
simatic_field_pg_m5_firmware
simatic_field_pg_m6_firmware
simatic_ipc127e_firmware
simatic_ipc227g_firmware
simatic_ipc277g_firmware
simatic_… 		A vulnerability exists in SMM (System Management Mode) branch that registers a SWSMI handler that does not sufficiently check or validate the allocated buffer pointer(QWORD values for CommBuffer). Th… CWE-829
 Inclusion of Functionality from Untrusted Control Sphere 		CVE-2021-33626 2024-11-21 15:09 2021-10-1 Show GitHub Exploit DB Packet Storm
191518 9.8 CRITICAL
Network 		reiner-sct timecard REINER timeCard 6.05.07 installs a Microsoft SQL Server with an sa password that is hardcoded in the TCServer.jar file. CWE-798
 Use of Hard-coded Credentials 		CVE-2021-33583 2024-11-21 15:09 2021-10-1 Show GitHub Exploit DB Packet Storm
191519 9.8 CRITICAL
Network 		confluent ansible Confluent Ansible (cp-ansible) version 5.5.0, 5.5.1, 5.5.2 and 6.0.0 is vulnerable to Incorrect Access Control via its auxiliary component that allows remote attackers to access sensitive information. CWE-862
 Missing Authorization 		CVE-2021-33924 2024-11-21 15:09 2021-09-29 Show GitHub Exploit DB Packet Storm
191520 5.5 MEDIUM
Local 		confluent cp-ansible Insecure permissions in Confluent Ansible (cp-ansible) 5.5.0, 5.5.1, 5.5.2 and 6.0.0 allows local attackers to access some sensitive information (private keys, state database). CWE-276
Incorrect Default Permissions  		CVE-2021-33923 2024-11-21 15:09 2021-09-29 Show GitHub Exploit DB Packet Storm