Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
131771 7.8 重要
Local 		シーメンス JT Utilities
JT Open Toolkit 		JT Utilities および JTTK における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2021-44433 2021-12-17 10:23 2021-12-14 Show GitHub Exploit DB Packet Storm
131772 7.8 重要
Local 		シーメンス JT Utilities
JT Open Toolkit 		JT Utilities および JTTK におけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2021-44432 2021-12-17 10:23 2021-12-14 Show GitHub Exploit DB Packet Storm
131773 3.3
Local 		シーメンス JT Utilities
JT Open Toolkit 		JT Utilities および JTTK における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2021-44431 2021-12-17 10:23 2021-12-14 Show GitHub Exploit DB Packet Storm
131774 7.8 重要
Local 		シーメンス JT Utilities
JT Open Toolkit 		JT Utilities および JTTK における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2021-44430 2021-12-17 10:23 2021-12-14 Show GitHub Exploit DB Packet Storm
131775 7.8 重要
Local 		シーメンス JT Utilities
JT Open Toolkit 		JT Utilities および JTTK における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2021-44450 2021-12-16 18:14 2021-12-14 Show GitHub Exploit DB Packet Storm
131776 7 重要
Local 		Linux
Fedora Project		 Linux Kernel
Fedora 		Linux kernel における競合状態に関する脆弱性 CWE-362
競合状態 		CVE-2021-23133 2021-12-16 18:12 2021-04-13 Show GitHub Exploit DB Packet Storm
131777 7.5 重要
Network 		MediaWiki MediaWiki MediaWiki 用 Oauth エクステンションにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2021-31555 2021-12-16 18:12 2021-03-14 Show GitHub Exploit DB Packet Storm
131778 5.4 警告
Network 		MediaWiki MediaWiki MediaWiki 用 AbuseFilter エクステンションにおける誤った領域へのリソースの漏えいに関する脆弱性 CWE-668
誤った領域へのリソースの漏えい 		CVE-2021-31554 2021-12-16 18:12 2021-04-17 Show GitHub Exploit DB Packet Storm
131779 7.8 重要
Local 		シーメンス Teamcenter Visualization
JT2Go 		JT2Go および Teamcenter Visualization における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2021-44001 2021-12-16 18:11 2021-12-14 Show GitHub Exploit DB Packet Storm
131780 7.8 重要
Local 		シーメンス Teamcenter Visualization
JT2Go 		JT2Go および Teamcenter Visualization における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2021-44005 2021-12-16 18:11 2021-12-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
991 5.5 MEDIUM
Local 		vim vim Vim is an open source, command line text editor. Prior to 9.2.0662, the dump_prefixes() function in src/spell.c walks a spell-file prefix trie iteratively with a depth counter while dumping the prefi… CWE-787
 Out-of-bounds Write 		CVE-2026-55892 2026-06-26 12:53 2026-06-26 Show GitHub Exploit DB Packet Storm
992 8.8 HIGH
Network 		angular angular_language_service The Angular Language Service VS Code Extension provides a rich editing experience for Angular templates. Prior to 21.2.4, the client-side Angular Language Service VS Code extension reads the custom T… CWE-79
CWE-94
CWE-427
CWE-494
Cross-site Scripting
Code Injection
 Uncontrolled Search Path Element
 Download of Code Without Integrity Check 		CVE-2026-49241 2026-06-26 12:47 2026-06-23 Show GitHub Exploit DB Packet Storm
993 8.8 HIGH
Network 		angular angular_language_service The Angular Language Service VS Code Extension provides a rich editing experience for Angular templates. the client-side Angular Language Service VS Code extension configures the tooltip Markdown ren… CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2026-50178 2026-06-26 11:57 2026-06-23 Show GitHub Exploit DB Packet Storm
994 5.4 MEDIUM
Network 		coturn_project coturn Coturn is a free open source implementation of TURN and STUN Server. Versions prior to 4.11.0 contain a stored cross-site scripting (XSS) vulnerability in the web-admin HTTPS interface. An attacker w… CWE-79
Cross-site Scripting 		CVE-2026-43915 2026-06-26 11:35 2026-06-19 Show GitHub Exploit DB Packet Storm
995 6.5 MEDIUM
Network 		libssh2 libssh2 libssh2 through 1.11.1, fixed in commit 2dae302, contains an out-of-bounds heap read vulnerability in the sftp_symlink() function in src/sftp.c that allows a malicious SSH server or man-in-the-middle… CWE-125
Out-of-bounds Read 		CVE-2025-15661 2026-06-26 11:35 2026-06-19 Show GitHub Exploit DB Packet Storm
996 9.8 CRITICAL
Network 		coturn_project coturn Coturn is a free open source implementation of TURN and STUN Server. Versions prior to 4.10.0 contain a stack buffer overflow in decode_oauth_token_gcm(). A uint16_t nonce_len field read from an atta… CWE-120
Classic Buffer Overflow 		CVE-2026-43994 2026-06-26 11:30 2026-06-19 Show GitHub Exploit DB Packet Storm
997 5.4 MEDIUM
Network 		n8n n8n n8n is an open source workflow automation platform. Prior to 1.123.55, 2.25.7, and 2.26.2, an authenticated user with workflow edit access could configure a Respond to Webhook node to serve binary co… CWE-79
Cross-site Scripting 		CVE-2026-54301 2026-06-26 11:25 2026-06-24 Show GitHub Exploit DB Packet Storm
998 7.7 HIGH
Network 		n8n n8n n8n is an open source workflow automation platform. Prior to 1.123.55, 2.25.7, and 2.26.1, an authenticated user with permission to create or modify workflows and access to a SecurityScorecard creden… CWE-200
Information Exposure 		CVE-2026-54304 2026-06-26 11:24 2026-06-24 Show GitHub Exploit DB Packet Storm
999 5.4 MEDIUM
Network 		n8n n8n n8n is an open source workflow automation platform. Prior to 1.123.55, 2.25.7, and 2.26.2, an authenticated user with workflow edit access could inject arbitrary JavaScript into the Chat Trigger's ge… CWE-79
Cross-site Scripting 		CVE-2026-54302 2026-06-26 11:24 2026-06-24 Show GitHub Exploit DB Packet Storm
1000 9.9 CRITICAL
Network 		n8n n8n n8n is an open source workflow automation platform. Prior to 1.123.55, 2.25.7, and 2.26.2, three EE endpoints used by the Dynamic Credentials feature accepted any authenticated n8n session without pe… CWE-200
CWE-284
Information Exposure
Improper Access Control 		CVE-2026-54305 2026-06-26 11:24 2026-06-24 Show GitHub Exploit DB Packet Storm