Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
132431	9.6	緊急 Adjacent	ネットギア	RBK854 ファームウェア RBR850 ファームウェア RBK853 ファームウェア RBS850 ファームウェア RBK852 ファームウェア	複数の NETGEAR 製品におけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2021-29076	2021-12-2 15:23	2021-03-18	Show	GitHub Exploit DB Packet Storm

132432	7.8	重要 Local	Delta Electronics	CNCSoft	Delta Electronics 製 CNCSoft におけるバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2021-43982	2021-12-2 14:42	2021-12-1	Show	GitHub Exploit DB Packet Storm

132433	8.2	重要 Network	Xylem Inc.	AADI GeoView Webservice	Xylem 製 Aanderaa GeoView における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2021-41063	2021-12-2 14:29	2021-12-1	Show	GitHub Exploit DB Packet Storm

132434	9.8	緊急 Network	gulpjs	copy-props	copy-props における脆弱性	CWE-Other その他	CVE-2020-28503	2021-12-2 11:49	2020-11-12	Show	GitHub Exploit DB Packet Storm

132435	7.8	重要 Local	マカフィー	McAfee Data Loss Prevention	Windows 用 McAfee Data Loss Prevention における権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2020-7346	2021-12-2 11:30	2020-01-21	Show	GitHub Exploit DB Packet Storm

132436	8.8	重要 Network	Jenkins プロジェクト	OWASP Dependency-Track	Jenkins OWASP Dependency-Track プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2021-21633	2021-12-2 11:27	2021-03-30	Show	GitHub Exploit DB Packet Storm

132437	6.5	警告 Network	Jenkins プロジェクト	OWASP Dependency-Track	Jenkins OWASP Dependency-Track プラグインにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2021-21632	2021-12-2 11:27	2021-03-30	Show	GitHub Exploit DB Packet Storm

132438	4.3	警告 Network	Jenkins プロジェクト	Cloud Statistics	Jenkins Cloud Statistics プラグインにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2021-21631	2021-12-2 11:27	2021-03-30	Show	GitHub Exploit DB Packet Storm

132439	5.4	警告 Network	Jenkins プロジェクト	Extra Columns Plugin	Jenkins Extra Columns Plugin におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2021-21630	2021-12-2 11:27	2021-03-30	Show	GitHub Exploit DB Packet Storm

132440	8.8	重要 Network	Jenkins プロジェクト	Build With Parameters	Jenkins Build With Parameters プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2021-21629	2021-12-2 11:27	2021-03-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 25, 2026, 4:04 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1351	3.9	LOW Physics	microsoft	windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_11_23h2 windows_11_24h2 windows_11_25h2 windows_11_26h1 windows_server_2012 windows_server_2016 w…	Improper input validation in Microsoft Azure Attestation service and Device Health Attestation Service allows an authorized attacker to perform spoofing with a physical attack.	CWE-20 Improper Input Validation	CVE-2026-45642	2026-06-12 02:39	2026-06-10	Show	GitHub Exploit DB Packet Storm

1352	4.3	MEDIUM Network	gitlab	gitlab	GitLab has remediated an issue in GitLab EE affecting all versions from 13.9 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authentic…	CWE-863 Incorrect Authorization	CVE-2026-6277	2026-06-12 02:36	2026-06-11	Show	GitHub Exploit DB Packet Storm

1353	8.7	HIGH Network	gitlab	gitlab	GitLab has remediated an issue in GitLab EE affecting all versions from 15.5 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authentic…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-6552	2026-06-12 02:36	2026-06-11	Show	GitHub Exploit DB Packet Storm

1354	4.6	MEDIUM Adjacent	espressif	esp-idf	ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. In versions 5.2.6, 5.3.5, 5.4.4, 5.5.3, and 6.0, an out-of-bounds read exists in the BlueDroid AVRCP vendor-command parser (av…	CWE-125 Out-of-bounds Read	CVE-2026-46532	2026-06-12 02:36	2026-06-10	Show	GitHub Exploit DB Packet Storm

1355	9.8	CRITICAL Network	microsoft	windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_11_23h2 windows_11_24h2 windows_11_25h2 windows_11_26h1 windows_server_2012 windows_server_2016 w…	Stack-based buffer overflow in Windows DHCP Client allows an unauthorized attacker to execute code over a network.	CWE-121 Stack-based Buffer Overflow	CVE-2026-44815	2026-06-12 02:35	2026-06-10	Show	GitHub Exploit DB Packet Storm

1356	3.7	LOW Network	gitlab	gitlab	GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.9 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authen…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-6976	2026-06-12 02:34	2026-06-11	Show	GitHub Exploit DB Packet Storm

1357	7.5	HIGH Network	gitlab	gitlab	GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.10 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an unaut…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2026-7250	2026-06-12 02:34	2026-06-11	Show	GitHub Exploit DB Packet Storm

1358	4.3	MEDIUM Network	gitlab	gitlab	GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.9 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions, could have allowed an unaut…	CWE-153 Improper Neutralization of Substitution Characters	CVE-2026-9694	2026-06-12 02:32	2026-06-11	Show	GitHub Exploit DB Packet Storm

1359	6.1	MEDIUM Network	adobe	experience_manager	Adobe Experience Manager Forms JEE versions LTS SP1, 6.5.24.0 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scr…	CWE-79 Cross-site Scripting	CVE-2026-34691	2026-06-12 02:29	2026-06-10	Show	GitHub Exploit DB Packet Storm

1360	6.5	MEDIUM Network	gitlab	gitlab	GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.10 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authe…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-9204	2026-06-12 02:28	2026-06-11	Show	GitHub Exploit DB Packet Storm