Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 10:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
132511 7.8 重要
Local 		F5 Networks BIG-IP Access Policy Manager (APM)
Access Policy Manager Clients 		Edge Client および Windows 用 BIG-IP APM Client Troubleshooting Utility における信頼できない検索パスに関する脆弱性 CWE-426
信頼性のない検索パス 		CVE-2021-22980 2021-11-9 18:02 2021-02-11 Show GitHub Exploit DB Packet Storm
132512 6.1 警告
Network 		F5 Networks BIG-IP Analytics
BIG-IP Advanced Firewall Manager (AFM)
BIG-IP Advanced Web Application Firewall (WAF)
BIG-IP Application Accelera… 		BIG-IP におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-22021-22979 2021-11-9 18:02 2021-02-11 Show GitHub Exploit DB Packet Storm
132513 7.5 重要
Network 		F5 Networks BIG-IP Application Security Manager (ASM)
BIG-IP Advanced Web Application Firewall (WAF) 		BIG-IP Advanced WAF および ASM におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2021-22976 2021-11-9 18:02 2021-02-11 Show GitHub Exploit DB Packet Storm
132514 7.5 重要
Network 		F5 Networks BIG-IP Analytics
BIG-IP Advanced Firewall Manager (AFM)
BIG-IP Advanced Web Application Firewall (WAF)
BIG-IP Application Accelera… 		BIG-IP における脆弱性 CWE-noinfo
情報不足 		CVE-2021-22975 2021-11-9 18:02 2021-02-11 Show GitHub Exploit DB Packet Storm
132515 7.5 重要
Network 		F5 Networks BIG-IP Analytics
BIG-IP Advanced Firewall Manager (AFM)
BIG-IP Advanced Web Application Firewall (WAF)
BIG-IP Application Accelera… 		BIG-IP および BIG-IQ における競合状態に関する脆弱性 CWE-362
競合状態 		CVE-2021-22974 2021-11-9 18:02 2021-02-11 Show GitHub Exploit DB Packet Storm
132516 8.1 重要
Network 		PELCO Digital Sentry Server Pelco Digital Sentry Server における同一生成元ポリシー違反に関する脆弱性 CWE-346
同一生成元ポリシー違反 		CVE-2021-27197 2021-11-9 18:02 2021-02-12 Show GitHub Exploit DB Packet Storm
132517 9.8 緊急
Network 		fs-path project fs-path fs-path node モジュールにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2020-8298 2021-11-9 17:56 2020-10-7 Show GitHub Exploit DB Packet Storm
132518 4.3 警告
Network 		IBM IBM Planning Analytics IBM Planning Analytics における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2020-4953 2021-11-9 17:54 2021-02-22 Show GitHub Exploit DB Packet Storm
132519 7.8 重要
Local 		Collabora Ltd Collabora Online loolforkit における権限管理に関する脆弱性 CWE-269
不適切な権限管理 		CVE-2021-25630 2021-11-9 17:53 2021-01-26 Show GitHub Exploit DB Packet Storm
132520 8 重要
Adjacent 		ipTIME ipTIME NAS4 ファームウェア
ipTIME NAS1dual ファームウェア
ipTIME NAS2dual ファームウェア
ipTIME NAS101 ファームウェア
ipTIME NAS3 ファームウェア
ipTIME NAS-II … 		複数の ipTIME NAS 製品における危険なタイプのファイルの無制限アップロードに関する脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード 		CVE-2020-7847 2021-11-9 17:53 2020-01-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
571 5.5 MEDIUM
Local 		microsoft windows_11_26h1 Out-of-bounds read in Windows DWM Core Library allows an authorized attacker to disclose information locally. CWE-122
CWE-125
Heap-based Buffer Overflow
Out-of-bounds Read 		CVE-2026-44814 2026-06-13 01:58 2026-06-10 Show GitHub Exploit DB Packet Storm
572 7.8 HIGH
Local 		microsoft windows_narrator_braille Untrusted search path in Windows Narrator Braille allows an authorized attacker to elevate privileges locally. CWE-426
 Untrusted Search Path 		CVE-2026-48565 2026-06-13 01:58 2026-06-10 Show GitHub Exploit DB Packet Storm
573 5.5 MEDIUM
Local 		microsoft visual_studio_code Improper input validation in Visual Studio Code allows an unauthorized attacker to bypass a security feature locally. CWE-20
CWE-23
NVD-CWE-noinfo
 Improper Input Validation 
 Relative Path Traversal 		CVE-2026-48569 2026-06-13 01:57 2026-06-10 Show GitHub Exploit DB Packet Storm
574 6.5 MEDIUM
Network 		gpac gpac GPAC MP4Box v2.4 was discovered to contain a floating point exception in the gf_opus_parse_packet_header function (media_tools/av_parsers.c). bThis vulnerability allows attackers to cause a Denial of… CWE-1077
 Floating Point Comparison with Incorrect Operator 		CVE-2025-55658 2026-06-13 01:46 2026-06-10 Show GitHub Exploit DB Packet Storm
575 4.4 MEDIUM
Network 		- - IPAM is the IP address Manager for Cluster API Provider Metal3. Prior to versions 1.11.7, 1.12.4, and 1.13.0, the IPAM controller's ClusterRole granted full CRUD permissions (create, delete, get, lis… CWE-250
 Execution with Unnecessary Privileges 		CVE-2026-47190 2026-06-13 01:24 2026-06-13 Show GitHub Exploit DB Packet Storm
576 - - - A lack of authorization validation in version 0.4.17 or later of the ChromaDB Python project allows any authenticated users to arbitrarily read, write, update, or delete data in any tenant's collecti… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-45830 2026-06-13 01:23 2026-06-13 Show GitHub Exploit DB Packet Storm
577 - - - The SimpleRBACAuthorizationProvider authorization provider in versions 0.5.0 or later of the ChromaDB Python project evaluates whether a user holds a given permission but never checks which tenant, d… CWE-863
 Incorrect Authorization 		CVE-2026-45831 2026-06-13 01:23 2026-06-13 Show GitHub Exploit DB Packet Storm
578 - - - All V1 collection-level endpoints in ChromaDB's Python project pass None for the tenant and database to the authorization layer, allowing attackers to bypass authorization controls by using the V1 en… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-45832 2026-06-13 01:23 2026-06-13 Show GitHub Exploit DB Packet Storm
579 - - - The use of insecure HTTP transport within AMD optional tools could allow an attacker to conduct a man-in-the-middle attack, potentially leading to arbitrary code execution. - CVE-2026-40677 2026-06-13 01:22 2026-06-13 Show GitHub Exploit DB Packet Storm
580 - - - A lack of authorization validation in version 1.0.0 or later of the ChromaDB Rust project allows any authenticated users to arbitrarily read, write, update, or delete data in any tenant's collection … CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-8828 2026-06-13 01:22 2026-06-13 Show GitHub Exploit DB Packet Storm