Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
131441 5.8 警告
Network 		HedgeDoc HedgeDoc HedgeDoc におけるパストラバーサルの脆弱性 CWE-20
CWE-22
CVE-2021-29474 2022-01-4 18:05 2021-04-26 Show GitHub Exploit DB Packet Storm
131442 2.5
Local 		Exiv2 project
Debian
Fedora Project		 Debian GNU/Linux
Exiv2
Fedora 		Exiv2 における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2021-29473 2022-01-4 18:05 2021-04-25 Show GitHub Exploit DB Packet Storm
131443 5.4 警告
Network 		TYPO3 Association TYPO3 TYPO3 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2021-21365 2022-01-4 17:58 2021-04-27 Show GitHub Exploit DB Packet Storm
131444 9.8 緊急
Network 		Kenneth Reitz Requests Requests における信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2021-29476 2022-01-4 17:37 2021-04-27 Show GitHub Exploit DB Packet Storm
131445 3.3
Local 		Google Exposure Notifications API for Android Android 用 GAEN における重要な情報の平文での送信に関する脆弱性 CWE-319
重要な情報の平文での送信 		CVE-2021-31815 2022-01-4 17:37 2021-04-27 Show GitHub Exploit DB Packet Storm
131446 7.2 重要
Network 		Prisma Prisma Prisma における OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2021-21414 2022-01-4 17:28 2021-03-26 Show GitHub Exploit DB Packet Storm
131447 7.5 重要
Network 		miraheze ManageWiki ManageWiki における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2021-29483 2022-01-4 17:28 2021-04-29 Show GitHub Exploit DB Packet Storm
131448 7.5 重要
Network 		アバイア Equinox Conferencing Avaya Equinox Conferencing における不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2020-7038 2022-01-4 17:28 2020-01-14 Show GitHub Exploit DB Packet Storm
131449 8.1 重要
Network 		アバイア Equinox Conferencing Avaya Equinox Conferencing における XML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2020-7037 2022-01-4 17:28 2020-01-14 Show GitHub Exploit DB Packet Storm
131450 3.3
Local 		OpenAPI-Generator Contributors OpenAPI Generator OpenAPI Generator における外部からアクセス可能なファイルまたはディレクトリに関する脆弱性 CWE-552
外部からアクセス可能なファイルまたはディレクトリ 		CVE-2021-21429 2022-01-4 17:27 2021-02-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
561 7.1 HIGH
Local 		- - In the Linux kernel, the following vulnerability has been resolved: netfilter: ip6t_hbh: reject oversized option lists struct ip6t_opts stores at most IP6T_OPTS_OPTSNR option descriptors, but hbh_m… New - CVE-2026-52915 2026-06-28 17:16 2026-06-24 Show GitHub Exploit DB Packet Storm
562 9.8 CRITICAL
Network 		- - In the Linux kernel, the following vulnerability has been resolved: batman-adv: fix fragment reassembly length accounting batman-adv keeps a running payload length for queued fragments and uses it … New - CVE-2026-52914 2026-06-28 17:16 2026-06-24 Show GitHub Exploit DB Packet Storm
563 7.8 HIGH
Local 		- - In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_queue: hold bridge skb->dev while queued br_pass_frame_up() rewrites skb->dev from the ingress port to the bridge m… New - CVE-2026-52912 2026-06-28 17:16 2026-06-24 Show GitHub Exploit DB Packet Storm
564 8.8 HIGH
Network 		- - In the Linux kernel, the following vulnerability has been resolved: ksmbd: scope conn->binding slowpath to bound sessions only When the binding SESSION_SETUP sets conn->binding = true, the flag sta… New - CVE-2026-52911 2026-06-28 17:16 2026-06-21 Show GitHub Exploit DB Packet Storm
565 9.9 CRITICAL
Network 		- - Gitea act_runner with the Docker backend (through act 0.262.0) passes a workflow's container.options string to the Docker job container's HostConfig and, when configured with privileged: false, force… New CWE-269
 Improper Privilege Management 		CVE-2026-58053 2026-06-28 11:16 2026-06-28 Show GitHub Exploit DB Packet Storm
566 6.5 MEDIUM
Adjacent 		dhcpcd_project dhcpcd dhcpcd through 10.3.2, fixed in commit 2f00c7b, contains a one-byte stack out-of-bounds write vulnerability in dhcp6_makemessage() in src/dhcp6.c that allows unauthenticated same-link attackers to wr… New CWE-787
 Out-of-bounds Write 		CVE-2026-56114 2026-06-28 09:34 2026-06-24 Show GitHub Exploit DB Packet Storm
567 6.5 MEDIUM
Adjacent 		dhcpcd_project dhcpcd dhcpcd through 10.3.2, fixed in commit 5733d3c, contains a heap use-after-free vulnerability that allows unauthenticated same-link attackers to crash the daemon by sending a crafted DHCPv6 RENEW repl… New CWE-416
 Use After Free 		CVE-2026-56113 2026-06-28 09:33 2026-06-24 Show GitHub Exploit DB Packet Storm
568 6.5 MEDIUM
Adjacent 		dhcpcd_project dhcpcd dhcpcd through 10.3.2, fixed in commit 708b4a5, contains a memory leak vulnerability in the IPv6 Router Advertisement route information handling that allows an unauthenticated same-link attacker to c… New CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2026-56116 2026-06-28 09:27 2026-06-24 Show GitHub Exploit DB Packet Storm
569 5.5 MEDIUM
Local 		dhcpcd_project dhcpcd dhcpcd through 10.3.2, fixed in commit 78ea09e, contains a heap use-after-free vulnerability in the control socket handling within src/control.c that allows local unprivileged attackers to trigger me… New CWE-416
 Use After Free 		CVE-2026-56117 2026-06-28 09:26 2026-06-24 Show GitHub Exploit DB Packet Storm
570 4.8 MEDIUM
Network 		fortra file_integrity_monitoring Fortra File Integrity Monitoring (FIM), formerly Tripwire Enterprise, versions prior to 9.4.0.1 contain a stored cross-site scripting (XSS) vulnerability in the Asset View UI component. An authentica… New CWE-79
Cross-site Scripting 		CVE-2026-12163 2026-06-28 09:21 2026-06-24 Show GitHub Exploit DB Packet Storm