Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 23, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
131991	7.5	重要 Network	IBM	Rational Quality Manager IBM Engineering Requirements Management DOORS Next Rational Team Concert Engineering Lifecycle Management E…	IBM Jazz Team Server 製品における暗号強度に関する脆弱性	CWE-326 不適切な暗号強度	CVE-2020-4965	2021-12-9 18:02	2021-04-9	Show	GitHub Exploit DB Packet Storm

131992	4.9	警告 Network	ASUSTeK Computer Inc.	Z10PR-D16 ファームウェア Z10PE-D16 WS ファームウェア ASMB8-iKVM ファームウェア	ASUS BMC ファームウェアにおける古典的バッファオーバーフローの脆弱性	CWE-120 古典的バッファオーバーフロー	CVE-2021-28177	2021-12-9 18:02	2021-04-6	Show	GitHub Exploit DB Packet Storm

131993	4.9	警告 Network	ASUSTeK Computer Inc.	Z10PR-D16 ファームウェア Z10PE-D16 WS ファームウェア ASMB8-iKVM ファームウェア	ASUS BMC ファームウェアにおける古典的バッファオーバーフローの脆弱性	CWE-120 古典的バッファオーバーフロー	CVE-2021-28179	2021-12-9 18:02	2021-04-6	Show	GitHub Exploit DB Packet Storm

131994	4.9	警告 Network	ASUSTeK Computer Inc.	Z10PR-D16 ファームウェア Z10PE-D16 WS ファームウェア ASMB8-iKVM ファームウェア	ASUS BMC ファームウェアにおける古典的バッファオーバーフローの脆弱性	CWE-120 古典的バッファオーバーフロー	CVE-2021-28180	2021-12-9 18:02	2021-04-6	Show	GitHub Exploit DB Packet Storm

131995	7.5	重要 Network	SerenityOS	serenity	SerenityOS における古典的バッファオーバーフローの脆弱性	CWE-120 古典的バッファオーバーフロー	CVE-2021-27343	2021-12-9 17:59	2021-02-14	Show	GitHub Exploit DB Packet Storm

131996	9.8	緊急 Network	RIOT project	RIOT OS	RIOT-OS における古典的バッファオーバーフローの脆弱性	CWE-120 古典的バッファオーバーフロー	CVE-2021-27357	2021-12-9 17:34	2021-02-16	Show	GitHub Exploit DB Packet Storm

131997	6.5	警告 Network	Themeum	Tutor LMS	WordPress 用 Tutor LMS プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2021-24185	2021-12-9 17:34	2021-02-16	Show	GitHub Exploit DB Packet Storm

131998	8.8	重要 Network	Themeum	Tutor LMS	WordPress 用 Tutor LMS プラグインにおける権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2021-24184	2021-12-9 17:34	2021-02-16	Show	GitHub Exploit DB Packet Storm

131999	6.5	警告 Network	Themeum	Tutor LMS	WordPress 用 Tutor LMS プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2021-24183	2021-12-9 17:34	2021-02-16	Show	GitHub Exploit DB Packet Storm

132000	6.5	警告 Network	Themeum	Tutor LMS	WordPress 用 Tutor LMS プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2021-24182	2021-12-9 17:34	2021-02-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
871	8.2	HIGH Network	nuxt	nuxt	Nuxt is an open-source web development framework for Vue.js. From versions 3.11.0 to before 3.21.7 and 4.0.0 to before 4.4.7, there is a route-rule middleware bypass via case-sensitivity mismatch bet…	CWE-178 CWE-863 Improper Handling of Case Sensitivity Incorrect Authorization	CVE-2026-53721	2026-06-15 11:11	2026-06-13	Show	GitHub Exploit DB Packet Storm

872	5.4	MEDIUM Network	nuxt	nuxt	Nuxt is an open-source web development framework for Vue.js. Prior to versions 3.21.7 and 4.4.7, <NuxtLink> did not validate the URL scheme of values bound to its to or href props before rendering th…	CWE-79 CWE-83 Cross-site Scripting Improper Neutralization of Script in Attributes in a Web Page	CVE-2026-53722	2026-06-15 11:10	2026-06-13	Show	GitHub Exploit DB Packet Storm

873	5.3	MEDIUM Network	ironmansoftware	powershell_universal	Improper access control in Devolutions PowerShell Universal 2026.1.7 and earlier allows an unauthenticated remote attacker to obtain the OpenAPI specification of user-defined REST endpoints.	CWE-306 Missing Authentication for Critical Function	CVE-2026-8694	2026-06-15 11:09	2026-06-13	Show	GitHub Exploit DB Packet Storm

874	10.0	CRITICAL Network	netty	netty	Netty is a network application framework for development of protocol servers and clients. Prior to versions 4.1.135.Final and 4.2.15.Final, Netty's `DnsResolveContext` insufficiently validates the ba…	CWE-345 Insufficient Verification of Data Authenticity	CVE-2026-47691	2026-06-15 10:57	2026-06-13	Show	GitHub Exploit DB Packet Storm

875	7.5	HIGH Network	netty	netty	Netty is a network application framework for development of protocol servers and clients. Prior to versions 4.1.135.Final and 4.2.15.Final, the RedisArrayAggregator handler permanently leaks pooled d…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2026-48006	2026-06-15 10:56	2026-06-13	Show	GitHub Exploit DB Packet Storm

876	7.5	HIGH Network	netty	netty	Netty is a network application framework for development of protocol servers and clients. In netty-codec-http2 prior to versions 4.1.135.Final and 4.2.15.Final, the `DelegatingDecompressorFrameListen…	CWE-400 CWE-401 Uncontrolled Resource Consumption Missing Release of Memory after Effective Lifetime	CVE-2026-48043	2026-06-15 10:56	2026-06-13	Show	GitHub Exploit DB Packet Storm

877	7.5	HIGH Network	netty	netty	Netty is a network application framework for development of protocol servers and clients. Prior to versions 4.1.135.Final and 4.2.15.Final, the HAProxy PROXY protocol v2 codec in netty leaks native o…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2026-48059	2026-06-15 10:56	2026-06-13	Show	GitHub Exploit DB Packet Storm

878	5.4	MEDIUM Network	gitlab	gitlab	GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.10 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authe…	CWE-863 Incorrect Authorization	CVE-2026-6269	2026-06-15 10:47	2026-06-11	Show	GitHub Exploit DB Packet Storm

879	3.1	LOW Network	gitlab	gitlab	GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.0 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authen…	CWE-863 Incorrect Authorization	CVE-2026-3553	2026-06-15 10:47	2026-06-11	Show	GitHub Exploit DB Packet Storm

880	6.5	MEDIUM Network	gitlab	gitlab	GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.10 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authe…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2026-1500	2026-06-15 10:46	2026-06-11	Show	GitHub Exploit DB Packet Storm