Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
132151 4.4 警告
Local 		マイクロソフト Microsoft Windows 8.1
Microsoft Windows 10
Microsoft Windows 7
Microsoft Windows Server 2012
Microsoft Windows Server
Microsoft&n… 		複数の Microsoft Windows 製品における情報を公開される脆弱性 CWE-noinfo
情報不足 		CVE-2021-38631 2021-11-15 17:48 2021-11-9 Show GitHub Exploit DB Packet Storm
132152 8.8 重要
Network 		マイクロソフト Microsoft Exchange Server Microsoft Exchange Server におけるリモートでコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2021-42321 2021-11-15 17:48 2021-11-9 Show GitHub Exploit DB Packet Storm
132153 7.8 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Microsoft Excel 		複数の Microsoft 製品におけるセキュリティ機能を回避される脆弱性 CWE-863
不正な認証 		CVE-2021-42292 2021-11-15 17:48 2021-11-9 Show GitHub Exploit DB Packet Storm
132154 4.4 警告
Local 		マイクロソフト Azure Sphere Azure Sphere における情報を公開される脆弱性 CWE-noinfo
情報不足 		CVE-2021-41376 2021-11-15 17:48 2021-11-9 Show GitHub Exploit DB Packet Storm
132155 4.4 警告
Local 		マイクロソフト Azure Sphere Azure Sphere における情報を公開される脆弱性 CWE-noinfo
情報不足 		CVE-2021-41375 2021-11-15 17:48 2021-11-9 Show GitHub Exploit DB Packet Storm
132156 5.5 警告
Local 		マイクロソフト Azure Sphere Azure Sphere における情報を公開される脆弱性 CWE-noinfo
情報不足 		CVE-2021-41374 2021-11-15 17:48 2021-11-9 Show GitHub Exploit DB Packet Storm
132157 5.5 警告
Local 		マイクロソフト FSLogix FSLogix における情報を公開される脆弱性 CWE-noinfo
情報不足 		CVE-2021-41373 2021-11-15 17:48 2021-11-9 Show GitHub Exploit DB Packet Storm
132158 5.4 警告
Network 		OBSS Time in Status Jira 用 Time in Status におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2021-27222 2021-11-15 17:30 2021-02-21 Show GitHub Exploit DB Packet Storm
132159 9.8 緊急
Network 		SFC Yazilim Sonlogger SonLogger における危険なタイプのファイルの無制限アップロードに関する脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード 		CVE-2021-27964 2021-11-15 17:23 2021-03-1 Show GitHub Exploit DB Packet Storm
132160 8.8 重要
Network 		アルバネットワークス株式会社 AirWave Aruba AirWave Management Platform におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2021-26960 2021-11-15 17:07 2021-02-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
61 6.5 MEDIUM
Network 		mongodb mongodb The $_internalConvertBucketIndexStats stage used PauseExecution as a way to signal "skip this document" when an index stats conversion failed. But PauseExecution is not a general purpose skip mechani… Update CWE-617
 Reachable Assertion 		CVE-2026-9748 2026-06-16 02:10 2026-06-10 Show GitHub Exploit DB Packet Storm
62 6.5 MEDIUM
Network 		mongodb mongodb An authenticated user can cause a MongoDB server to crash or return incorrect results by creating documents that interfere with internal metadata processing during query execution. This stems from in… Update CWE-617
 Reachable Assertion 		CVE-2026-9750 2026-06-16 02:10 2026-06-10 Show GitHub Exploit DB Packet Storm
63 7.5 HIGH
Network 		image-size image-size image-size through 2.0.2 contains a denial of service vulnerability that allows remote attackers to permanently block the Node.js event loop by supplying a specially crafted image buffer with a zero-… Update CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2025-71329 2026-06-16 02:09 2026-06-10 Show GitHub Exploit DB Packet Storm
64 8.8 HIGH
Network 		splunk splunk
splunk_cloud_platform
splunk_secure_gateway 		In Splunk Enterprise versions below 10.2.4, 10.0.7, 9.4.12, and 9.3.13, Splunk Cloud Platform versions below 10.3.2512.12, 10.2.2510.14, 10.1.2507.22, and 9.3.2411.132, and Splunk Secure Gateway vers… Update CWE-502
 Deserialization of Untrusted Data 		CVE-2026-20251 2026-06-16 02:08 2026-06-11 Show GitHub Exploit DB Packet Storm
65 7.5 HIGH
Network 		image-size image-size image-size through 2.0.2 contains a denial of service vulnerability that allows remote attackers to permanently block the Node.js event loop by supplying a specially crafted ICNS image buffer. Attack… Update CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2025-71330 2026-06-16 02:00 2026-06-10 Show GitHub Exploit DB Packet Storm
66 6.5 MEDIUM
Network 		mongodb mongodb Adding fromRouter:true and runtimeConstants.userRoles could cause aggregations to crash mongodb server. Update CWE-617
 Reachable Assertion 		CVE-2026-9747 2026-06-16 01:58 2026-06-10 Show GitHub Exploit DB Packet Storm
67 6.5 MEDIUM
Network 		mongodb mongodb In MongoDB Server 8.0, an aggregation stage can leave its _subPipeline field null during processing of certain pipelines. If a getMore is subsequently issued on the same cursor, the server may derefe… Update CWE-476
 NULL Pointer Dereference 		CVE-2026-9743 2026-06-16 01:56 2026-06-10 Show GitHub Exploit DB Packet Storm
68 7.5 HIGH
Network 		mongodb mongodb A vulnerability in MongoDB Server's BSON validation logic allows an unauthenticated user to crash the mongod process by sending a specially crafted message. The BSON validator's handling of certain n… Update CWE-674
 Uncontrolled Recursion 		CVE-2026-9740 2026-06-16 01:55 2026-06-10 Show GitHub Exploit DB Packet Storm
69 7.6 HIGH
Network 		splunk splunk
splunk_cloud_platform 		In Splunk Enterprise versions below 10.2.4, 10.0.7, 9.4.12, and 9.3.13, and Splunk Cloud Platform versions below 10.4.2604.3, 10.3.2512.12, 10.2.2510.14, 10.1.2507.22, and 9.3.2411.132, a low-privile… Update CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-20252 2026-06-16 01:51 2026-06-11 Show GitHub Exploit DB Packet Storm
70 5.5 MEDIUM
Local 		mongodb mongodb MongoDB server may log authentication parameters, including credentials, to the server log during SASL authentication. When connection health metric logging is enabled, the full authentication parame… Update CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2026-9735 2026-06-16 01:46 2026-06-10 Show GitHub Exploit DB Packet Storm