Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
131541 7.8 重要
Local 		ジュニパーネットワークス Junos OS Juniper Networks Junos OS におけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2021-0252 2021-12-21 17:00 2021-04-14 Show GitHub Exploit DB Packet Storm
131542 8.6 重要
Network 		ジュニパーネットワークス Junos OS MX シリーズ上で稼働する Juniper Networks Junos OS における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2021-0251 2021-12-21 17:00 2021-04-14 Show GitHub Exploit DB Packet Storm
131543 7.5 重要
Network 		ジュニパーネットワークス Junos OS Evolved
Junos OS 		Juniper Networks Junos OS および Junos OS Evolved における脆弱性 CWE-noinfo
情報不足 		CVE-2021-0250 2021-12-21 17:00 2021-04-14 Show GitHub Exploit DB Packet Storm
131544 9.8 緊急
Network 		ジュニパーネットワークス Junos OS Juniper Networks Junos OS における古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2021-0249 2021-12-21 17:00 2021-04-14 Show GitHub Exploit DB Packet Storm
131545 10 緊急
Network 		ジュニパーネットワークス Junos OS Juniper Networks Junos OS におけるハードコードされた認証情報の使用に関する脆弱性 CWE-798
ハードコードされた認証情報の使用 		CVE-2021-0248 2021-12-21 17:00 2021-04-14 Show GitHub Exploit DB Packet Storm
131546 7.5 重要
Network 		Fibaro Home Center 2 ファームウェア
Home Center Lite ファームウェア 		Fibaro Home Center 2 および Lite デバイスにおける重要な情報の平文での送信に関する脆弱性 CWE-319
重要な情報の平文での送信 		CVE-2021-20992 2021-12-21 16:51 2021-04-8 Show GitHub Exploit DB Packet Storm
131547 5.4 警告
Network 		Online Discussion Forum project Online Discussion Forum Online Discussion Forum におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2020-28141 2021-12-21 16:26 2020-10-19 Show GitHub Exploit DB Packet Storm
131548 7.5 重要
Network 		IBM IBM Spectrum Protect Plus IBM Spectrum Protect Plus における暗号強度に関する脆弱性 CWE-326
不適切な暗号強度 		CVE-2021-29694 2021-12-21 16:06 2021-04-23 Show GitHub Exploit DB Packet Storm
131549 6.5 警告
Network 		Fedora Project
Google
Debian		 Fedora
Google Chrome
Debian GNU/Linux 		Google Chrome における入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2021-21221 2021-12-21 16:06 2021-04-14 Show GitHub Exploit DB Packet Storm
131550 8.8 重要
Network 		Fedora Project
Google		 Fedora
Google Chrome 		Google Chrome におけるバッファエラーの脆弱性 CWE-119
CWE-20
CVE-2021-21220 2021-12-21 16:06 2021-04-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
651 7.5 HIGH
Network 		- - A buffer overflow in the gf_media_import function (/media_tools/av_parsers.c) of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted input. New CWE-121
Stack-based Buffer Overflow 		CVE-2025-60474 2026-06-26 04:14 2026-06-25 Show GitHub Exploit DB Packet Storm
652 5.0 MEDIUM
Local 		- - A use-after-free in the gf_filter_pid_get_packet function (/filter_core/filter_pid.c) of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted… New CWE-416
 Use After Free 		CVE-2025-60466 2026-06-26 04:14 2026-06-25 Show GitHub Exploit DB Packet Storm
653 5.5 MEDIUM
Local 		- - A NULL pointer dereference in the gf_filter_in_parent_chain function (/filter_core/filter_pid.c) of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service (DoS) via supplyin… New CWE-476
 NULL Pointer Dereference 		CVE-2025-60473 2026-06-26 04:14 2026-06-25 Show GitHub Exploit DB Packet Storm
654 7.8 HIGH
Local 		- - Dell Display and Peripheral Manager (DDPM Mac), versions prior to 2.3, contain an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A low privi… New CWE-78
OS Command  		CVE-2026-46735 2026-06-26 04:14 2026-06-26 Show GitHub Exploit DB Packet Storm
655 7.5 HIGH
Network 		- - Tenable Identity Exposure contains multiple unauthenticated API endpoints under /w/api/* that expose sensitive application configuration data including cleartext LDAP credentials, SAML configuration,… New CWE-306
CWE-524
Missing Authentication for Critical Function
 Use of Cache Containing Sensitive Information 		CVE-2026-13007 2026-06-26 04:10 2026-06-24 Show GitHub Exploit DB Packet Storm
656 9.6 CRITICAL
Network 		- - A missing authorization vulnerability was found in the Event-Driven Ansible (EDA) websocket API. The /api/eda/ws/ansible-rulebook endpoint does not verify user permissions when processing Worker mess… New CWE-862
 Missing Authorization 		CVE-2026-11807 2026-06-26 04:10 2026-06-24 Show GitHub Exploit DB Packet Storm
657 7.8 HIGH
Local 		- - A flaw was found in the foreman-mcp-server. A session management vulnerability in the MCP Server allows unauthenticated attackers to hijack active administrative sessions due to an improper cache of … New CWE-287
Improper Authentication 		CVE-2026-12112 2026-06-26 04:10 2026-06-24 Show GitHub Exploit DB Packet Storm
658 4.3 MEDIUM
Network 		- - A flaw was found in the GStreamer gst-plugins-bad package. When processing a malformed H.266/VVC video stream with a crafted aspect ratio indicator value, the H.266 parser performs an out-of-bounds r… New CWE-125
Out-of-bounds Read 		CVE-2026-12891 2026-06-26 04:10 2026-06-24 Show GitHub Exploit DB Packet Storm
659 4.4 MEDIUM
Local 		- - A flaw was found in GStreamer's gst-plugins-bad package. When processing a specially crafted H.264 video file containing malformed MVC or SVC extension slice NAL units, a 1-byte heap out-of-bounds re… New CWE-125
Out-of-bounds Read 		CVE-2026-12892 2026-06-26 04:10 2026-06-24 Show GitHub Exploit DB Packet Storm
660 8.8 HIGH
Network 		- - Spring Statemachine's Kryo-based persistence backends (JPA, MongoDB, Redis and ZooKeeper) deserialise persisted state-machine contexts without enforcing a class allowlist (CWE-502, deserialisation of… New CWE-502
 Deserialization of Untrusted Data 		CVE-2026-41862 2026-06-26 04:10 2026-06-24 Show GitHub Exploit DB Packet Storm