Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
132141	7.8	重要 Local	マイクロソフト	Microsoft Windows 8.1 Microsoft Windows 10 Microsoft Windows 7 Microsoft Windows Server 2012 Microsoft Windows Server Microsoft&n…	複数の Microsoft Windows 製品における権限を昇格される脆弱性	CWE-269 不適切な権限管理	CVE-2021-42283	2021-11-15 17:53	2021-11-9	Show	GitHub Exploit DB Packet Storm

132142	8.8	重要 Network	マイクロソフト	Microsoft Windows Server 2012 Microsoft Windows Server Microsoft Windows Server 2008 Microsoft Windows Server 2019 Microsoft Wi…	Windows Server における権限を昇格される脆弱性	CWE-269 不適切な権限管理	CVE-2021-42282	2021-11-15 17:53	2021-11-9	Show	GitHub Exploit DB Packet Storm

132143	8.1	重要 Network	MantisBT Group	MantisBT	MantisBT におけるセッション期限に関する脆弱性	CWE-613 不適切なセッション期限	CVE-2009-20001	2021-11-15 17:52	2009-12-21	Show	GitHub Exploit DB Packet Storm

132144	8.8	重要 Network	マイクロソフト	Microsoft Windows 10 Microsoft Windows Server Microsoft Windows 11 Microsoft Windows Server 2019 Microsoft Windows Server 2022	複数の Microsoft Windows 製品におけるリモートでコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2021-41378	2021-11-15 17:48	2021-11-9	Show	GitHub Exploit DB Packet Storm

132145	7.8	重要 Local	マイクロソフト	Microsoft Windows 8.1 Microsoft Windows 10 Microsoft Windows 7 Microsoft Windows Server 2012 Microsoft Windows Server Microsoft&n…	複数の Microsoft Windows 製品における権限を昇格される脆弱性	CWE-269 不適切な権限管理	CVE-2021-41377	2021-11-15 17:48	2021-11-9	Show	GitHub Exploit DB Packet Storm

132146	9.6	緊急 Network	マイクロソフト	Power BI Report Server	Power BI Report Server におけるなりすまされる脆弱性	CWE-352 CWE-79	CVE-2021-41372	2021-11-15 17:48	2021-11-9	Show	GitHub Exploit DB Packet Storm

132147	7.8	重要 Local	マイクロソフト	Microsoft Windows 8.1 Microsoft Windows 10 Microsoft Windows 7 Microsoft Windows Server 2012 Microsoft Windows Server Microsoft&n…	複数の Microsoft Windows 製品における権限を昇格される脆弱性	CWE-269 不適切な権限管理	CVE-2021-41370	2021-11-15 17:48	2021-11-9	Show	GitHub Exploit DB Packet Storm

132148	7.8	重要 Local	マイクロソフト	Microsoft 365 Apps Microsoft Office	Microsoft 365 Apps および Office におけるリモートでコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2021-41368	2021-11-15 17:48	2021-11-9	Show	GitHub Exploit DB Packet Storm

132149	7.8	重要 Local	マイクロソフト	Microsoft Windows 8.1 Microsoft Windows 10 Microsoft Windows 7 Microsoft Windows Server 2012 Microsoft Windows Server Microsoft&n…	複数の Microsoft Windows 製品における権限を昇格される脆弱性	CWE-269 不適切な権限管理	CVE-2021-41367	2021-11-15 17:48	2021-11-9	Show	GitHub Exploit DB Packet Storm

132150	7.8	重要 Local	マイクロソフト	Microsoft Windows 8.1 Microsoft Windows 10 Microsoft Windows Server 2012 Microsoft Windows Server Microsoft Windows RT 8.1 M…	複数の Microsoft Windows 製品における権限を昇格される脆弱性	CWE-269 不適切な権限管理	CVE-2021-41366	2021-11-15 17:48	2021-11-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1	5.4	MEDIUM Network	vmware	aria_operations cloud_foundation telco_cloud_platform	VMware Cloud Foundation Operations contains multiple stored cross-site scripting vulnerabilities.A malicious actor with privileges to create policies, views or text-widgets may be able to inject scri… Update	CWE-79 Cross-site Scripting	CVE-2026-41724	2026-06-16 03:50	2026-06-8	Show	GitHub Exploit DB Packet Storm

2	6.5	MEDIUM Network	redhat	directory_server 389_directory_server enterprise_linux	A flaw was found in 389 Directory Server. The Content Synchronization persistent search plugin allows unbounded memory growth when an authenticated client stops reading sync responses, enabling denia… Update	CWE-400 Uncontrolled Resource Consumption	CVE-2026-11611	2026-06-16 03:41	2026-06-9	Show	GitHub Exploit DB Packet Storm

3	4.9	MEDIUM Network	redhat	389_directory_server	A stack buffer overflow flaw was found in 389 Directory Server. The checkPrefix() function in pw.c copies an attacker-controlled algorithm ID into a 256-byte stack buffer without bounds checking when… Update	CWE-121 Stack-based Buffer Overflow	CVE-2026-11793	2026-06-16 03:34	2026-06-9	Show	GitHub Exploit DB Packet Storm

4	7.2	HIGH Network	qnap	qts quts_hero	A command injection vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to e… Update	CWE-78 OS Command	CVE-2026-24719	2026-06-16 03:33	2026-06-10	Show	GitHub Exploit DB Packet Storm

5	7.2	HIGH Network	qnap	qts quts_hero	A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerabili… Update	CWE-476 NULL Pointer Dereference	CVE-2026-24716	2026-06-16 03:33	2026-06-10	Show	GitHub Exploit DB Packet Storm

6	7.2	HIGH Network	qnap	qts quts_hero	A command injection vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to e… Update	CWE-78 OS Command	CVE-2026-22893	2026-06-16 03:33	2026-06-10	Show	GitHub Exploit DB Packet Storm

7	7.2	HIGH Network	qnap	qts quts_hero	A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. The remote attackers can then exploit the vulnerability to launch a denial-of-service (DoS… Update	CWE-476 NULL Pointer Dereference	CVE-2025-66281	2026-06-16 03:32	2026-06-10	Show	GitHub Exploit DB Packet Storm

8	7.2	HIGH Network	qnap	qts quts_hero	A command injection vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to e… Update	CWE-78 OS Command	CVE-2025-66279	2026-06-16 03:32	2026-06-10	Show	GitHub Exploit DB Packet Storm

9	7.2	HIGH Network	qnap	qts quts_hero	A command injection vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to e… Update	CWE-78 OS Command	CVE-2025-66273	2026-06-16 03:32	2026-06-10	Show	GitHub Exploit DB Packet Storm

10	7.2	HIGH Network	qnap	qts quts_hero	An integer overflow or wraparound vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vuln… Update	CWE-121 CWE-190 Stack-based Buffer Overflow Integer Overflow or Wraparound	CVE-2025-66280	2026-06-16 03:32	2026-06-10	Show	GitHub Exploit DB Packet Storm