Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 25, 2026, 10:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
132461	5.3	警告 Local	サムスン	Samsung Internet Browser	Samsung Internet Browser における入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2021-25354	2021-12-1 18:04	2021-03-25	Show	GitHub Exploit DB Packet Storm

132462	2.9	低 Physics	サムスン	Samsung Internet Browser	Samsung Internet Browser における不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2021-25366	2021-12-1 18:04	2021-03-25	Show	GitHub Exploit DB Packet Storm

132463	7.8	重要 Local	Esri	ArcReader ArcGIS for Engine ArcGIS for Desktop ArcGIS Pro	複数の Esri 製品における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2021-29096	2021-12-1 18:04	2021-03-16	Show	GitHub Exploit DB Packet Storm

132464	5.5	警告 Local	レッドハット Fedora Project JasPer Project	JasPer Red Hat Enterprise Linux Fedora	JasPer における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2021-3443	2021-12-1 18:04	2021-03-15	Show	GitHub Exploit DB Packet Storm

132465	5.5	警告 Local	Fedora Project JasPer Project	JasPer Fedora	JasPer における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2021-3467	2021-12-1 18:04	2021-03-23	Show	GitHub Exploit DB Packet Storm

132466	8.1	重要 Network	TP-LINK Technologies	Archer A7 ファームウェア	TP-Link Archer A7 における保護メカニズムの不具合に関する脆弱性	CWE-693 保護メカニズムの不具合	CVE-2021-27245	2021-12-1 18:03	2021-02-24	Show	GitHub Exploit DB Packet Storm

132467	6.1	警告 Network	Vivo	AppStore	AppStore におけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2020-12483	2021-12-1 17:46	2020-08-5	Show	GitHub Exploit DB Packet Storm

132468	9.8	緊急 Network	マイクロソフト	Visual Studio Code	Visual Studio Code における脆弱性	CWE-noinfo 情報不足	CVE-2021-28967	2021-12-1 17:42	2021-03-24	Show	GitHub Exploit DB Packet Storm

132469	9.8	緊急 Network	Apache Software Foundation	Apache SpamAssassin	Apache SpamAssassin における OS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2020-1946	2021-12-1 17:42	2021-03-24	Show	GitHub Exploit DB Packet Storm

132470	9.8	緊急 Network	Grandstream Networks	GRP2616 ファームウェア GRP2613 ファームウェア GRP2612W ファームウェア GRP2614 ファームウェア GRP2612P ファームウェア GRP2615 ファームウェア GRP2612 ファームウェア	Grandstream GRP261x VoIP phone における認証に関する脆弱性	CWE-287 不適切な認証	CVE-2020-25218	2021-12-1 17:40	2020-10-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 25, 2026, 4:04 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1351	3.9	LOW Physics	microsoft	windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_11_23h2 windows_11_24h2 windows_11_25h2 windows_11_26h1 windows_server_2012 windows_server_2016 w…	Improper input validation in Microsoft Azure Attestation service and Device Health Attestation Service allows an authorized attacker to perform spoofing with a physical attack.	CWE-20 Improper Input Validation	CVE-2026-45642	2026-06-12 02:39	2026-06-10	Show	GitHub Exploit DB Packet Storm

1352	4.3	MEDIUM Network	gitlab	gitlab	GitLab has remediated an issue in GitLab EE affecting all versions from 13.9 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authentic…	CWE-863 Incorrect Authorization	CVE-2026-6277	2026-06-12 02:36	2026-06-11	Show	GitHub Exploit DB Packet Storm

1353	8.7	HIGH Network	gitlab	gitlab	GitLab has remediated an issue in GitLab EE affecting all versions from 15.5 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authentic…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-6552	2026-06-12 02:36	2026-06-11	Show	GitHub Exploit DB Packet Storm

1354	4.6	MEDIUM Adjacent	espressif	esp-idf	ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. In versions 5.2.6, 5.3.5, 5.4.4, 5.5.3, and 6.0, an out-of-bounds read exists in the BlueDroid AVRCP vendor-command parser (av…	CWE-125 Out-of-bounds Read	CVE-2026-46532	2026-06-12 02:36	2026-06-10	Show	GitHub Exploit DB Packet Storm

1355	9.8	CRITICAL Network	microsoft	windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_11_23h2 windows_11_24h2 windows_11_25h2 windows_11_26h1 windows_server_2012 windows_server_2016 w…	Stack-based buffer overflow in Windows DHCP Client allows an unauthorized attacker to execute code over a network.	CWE-121 Stack-based Buffer Overflow	CVE-2026-44815	2026-06-12 02:35	2026-06-10	Show	GitHub Exploit DB Packet Storm

1356	3.7	LOW Network	gitlab	gitlab	GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.9 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authen…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-6976	2026-06-12 02:34	2026-06-11	Show	GitHub Exploit DB Packet Storm

1357	7.5	HIGH Network	gitlab	gitlab	GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.10 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an unaut…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2026-7250	2026-06-12 02:34	2026-06-11	Show	GitHub Exploit DB Packet Storm

1358	4.3	MEDIUM Network	gitlab	gitlab	GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.9 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions, could have allowed an unaut…	CWE-153 Improper Neutralization of Substitution Characters	CVE-2026-9694	2026-06-12 02:32	2026-06-11	Show	GitHub Exploit DB Packet Storm

1359	6.1	MEDIUM Network	adobe	experience_manager	Adobe Experience Manager Forms JEE versions LTS SP1, 6.5.24.0 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scr…	CWE-79 Cross-site Scripting	CVE-2026-34691	2026-06-12 02:29	2026-06-10	Show	GitHub Exploit DB Packet Storm

1360	6.5	MEDIUM Network	gitlab	gitlab	GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.10 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authe…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-9204	2026-06-12 02:28	2026-06-11	Show	GitHub Exploit DB Packet Storm