Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
131331	4.9	警告 Network	SonicWALL	e-mail security	SonicWall Email Security におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2021-20023	2021-12-21 12:24	2021-04-20	Show	GitHub Exploit DB Packet Storm

131332	8.8	重要 Network	Apache Software Foundation	Apache OpenOffice	Apache OpenOffice における別領域リソースに対する外部からの制御可能な参照に関する脆弱性	CWE-610 別領域リソースに対する外部からの制御可能な参照	CVE-2021-30245	2021-12-21 12:06	2021-04-15	Show	GitHub Exploit DB Packet Storm

131333	7.5	重要 Network	IBM	Lotus	Lotus におけるデジタル署名の検証に関する脆弱性	CWE-347 デジタル署名の不適切な検証	CVE-2021-21405	2021-12-21 12:06	2021-01-26	Show	GitHub Exploit DB Packet Storm

131334	6.5	警告 Network	Textpattern	Textpattern CMS	Textpattern における危険なタイプのファイルの無制限アップロードに関する脆弱性	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2021-30209	2021-12-21 12:05	2021-03-18	Show	GitHub Exploit DB Packet Storm

131335	3.2	低 Local	Parallels	parallels desktop	Parallels Desktop における境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2021-27260	2021-12-21 12:05	2021-02-24	Show	GitHub Exploit DB Packet Storm

131336	8.8	重要 Adjacent	ネットギア	EX6400 ファームウェア EX6410 ファームウェア EX6400v2 ファームウェア EX6150 ファームウェア BR500 ファームウェア EX6250 ファームウェア EX6100v2 ファームウェア BR200 ファームウェア EX6420 フ…	NETGEAR Nighthawk R7800 における境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2021-27253	2021-12-21 12:05	2021-02-11	Show	GitHub Exploit DB Packet Storm

131337	6.1	警告 Network	Cheetah Browser project	Cheetah Browser	Android 用 Cheetah Browser におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2021-29370	2021-12-21 12:05	2021-04-13	Show	GitHub Exploit DB Packet Storm

131338	4.9	警告 Network	Lenovo	Lenovo XClarity Controller (XCC)	Lenovo XClarity Controller における重要な情報の平文保存に関する脆弱性	CWE-312 重要な情報の平文保存	CVE-2021-3473	2021-12-21 12:05	2021-04-13	Show	GitHub Exploit DB Packet Storm

131339	4.4	警告 Local	Lenovo	Lenovo Power Management ドライバ	Windows 10 用 Lenovo Power Management ドライバにおける NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2021-3463	2021-12-21 12:05	2021-04-13	Show	GitHub Exploit DB Packet Storm

131340	7.8	重要 Local	Lenovo	Lenovo Power Management ドライバ	Windows 10 用 Lenovo Power Management ドライバにおける権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2021-3462	2021-12-21 12:05	2021-04-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 26, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
101	7.8	HIGH Local	-	-	A code injection vulnerability in the wxExecute() function of OpenCPN v5.12.0 allows attackers to execute arbitrary code via embedding shell metacharacters.	CWE-77 Command Injection	CVE-2025-56814	2026-06-17 00:51	2026-06-16	Show	GitHub Exploit DB Packet Storm

102	8.0	HIGH Network	-	-	An issue was discovered in Rakuten Send Anywhere (File Transfer) for Android (com.estmob.android.sendanywhere) 23.2.9. The vulnerability allows untrusted applications (with no permissions) to force a…	CWE-926 Improper Export of Android Application Components	CVE-2025-68713	2026-06-17 00:51	2026-06-16	Show	GitHub Exploit DB Packet Storm

103	6.3	MEDIUM Adjacent	-	-	A NULL pointer dereference occurs in Roy Marples NetworkConfiguration/dhcpcd 10.3.0 while parsing configuration options. In parse_option() (src/if-options.c:1886), the code performs a member access o…	CWE-476 NULL Pointer Dereference	CVE-2025-70102	2026-06-17 00:51	2026-06-16	Show	GitHub Exploit DB Packet Storm

104	7.8	HIGH Local	-	-	An issue in Microvirt MEmu Android Emulator 9.2.7.0 allows a local attacker to escalate privileges via the MemuService.exe component.	CWE-269 Improper Privilege Management	CVE-2026-36213	2026-06-17 00:51	2026-06-16	Show	GitHub Exploit DB Packet Storm

105	-		-	-	PublicCMS V5.202506.d has a Cross Site Scripting (XSS) vulnerability in the site configuration management module.	-	CVE-2026-36521	2026-06-17 00:51	2026-06-16	Show	GitHub Exploit DB Packet Storm

106	9.8	CRITICAL Network	-	-	ThingsBoard v4.3.0.1 is vulnerable to an authentication bypass during the OAuth authorization code exchange. The application improperly trusts user-supplied identity data within the user parameter of…	CWE-290 Authentication Bypass by Spoofing	CVE-2026-36537	2026-06-17 00:51	2026-06-16	Show	GitHub Exploit DB Packet Storm

107	6.8	MEDIUM Physics	-	-	An issue in Boyleep K11, y108 firmware v.2.3.0.11291 allows a physically proximate attacker to execute arbitrary code via the factory test feature.	CWE-284 Improper Access Control	CVE-2026-36933	2026-06-17 00:51	2026-06-16	Show	GitHub Exploit DB Packet Storm

108	-		-	-	Ruoyi 4.8.2 is vulnerable to Cross Site Scripting (XSS) at the interface /system/notice/add.	-	CVE-2026-37216	2026-06-17 00:50	2026-06-16	Show	GitHub Exploit DB Packet Storm

109	9.8	CRITICAL Network	-	-	RuoYi v4.8.2 is vulnerable to SQL Injection via the /tool/gen/createTable endpoint. The issue affects the code generation module and may allow an authenticated attacker with administrative privileges…	CWE-89 SQL Injection	CVE-2026-38812	2026-06-17 00:50	2026-06-16	Show	GitHub Exploit DB Packet Storm

110	9.8	CRITICAL Network	-	-	An issue in SNMP4J-Agent 3.8.3 allows a remote attacker to execute arbitrary code via the snmp4jCfgStoragePath component.	CWE-73 CWE-284 CWE-502 External Control of File Name or Path Improper Access Control Deserialization of Untrusted Data	CVE-2026-39006	2026-06-17 00:50	2026-06-16	Show	GitHub Exploit DB Packet Storm