Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 12:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
132801	5.4	警告 Network	SquaredUp	SquaredUp	SquaredUp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2020-9390	2021-10-15 15:54	2020-02-25	Show	GitHub Exploit DB Packet Storm

132802	5.9	警告 Network	SquaredUp	SquaredUp	SquaredUp におけるセキュリティ関連の処理に対するレスポンスの違いに起因する情報漏えいに関する脆弱性	CWE-203 セキュリティ関連の処理に対するレスポンスの違いに起因する情報漏えい	CVE-2020-9389	2021-10-15 15:54	2020-02-25	Show	GitHub Exploit DB Packet Storm

132803	6.5	警告 Network	HCL Software	OneTest Performance	HCL OneTest Performance におけるセッション期限に関する脆弱性	CWE-613 不適切なセッション期限	CVE-2020-14247	2021-10-15 15:53	2020-06-17	Show	GitHub Exploit DB Packet Storm

132804	7.5	重要 Network	HCL Software	OneTest Performance	HCL OneTest Performance における暗号アルゴリズムの使用に関する脆弱性	CWE-327 不完全、または危険な暗号アルゴリズムの使用	CVE-2020-14246	2021-10-15 15:53	2020-06-17	Show	GitHub Exploit DB Packet Storm

132805	9.8	緊急 Network	Google	Android	LG モバイルデバイスの Android OS における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2021-26689	2021-10-15 15:53	2021-02-4	Show	GitHub Exploit DB Packet Storm

132806	5.3	警告 Network	Easy Digital Downloads	Favorites	Nagios XI 用 Favorites コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2021-26024	2021-10-15 15:53	2021-02-3	Show	GitHub Exploit DB Packet Storm

132807	6.1	警告 Network	Easy Digital Downloads	Favorites	Nagios XI 用 Favorites コンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2021-26023	2021-10-15 15:53	2021-02-3	Show	GitHub Exploit DB Packet Storm

132808	5.4	警告 Network	Nextcloud	Nextcloud Server	Nextcloud Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2020-8294	2021-10-15 15:53	2020-11-18	Show	GitHub Exploit DB Packet Storm

132809	9.8	緊急 Network	Apache Software Foundation	Apache Shiro	Apache Shiro における認証に関する脆弱性	CWE-287 不適切な認証	CVE-2020-17523	2021-10-15 15:53	2020-08-12	Show	GitHub Exploit DB Packet Storm

132810	7.5	重要 Network	Apache Software Foundation	Cassandra	Apache Cassandra におけるスプーフィングによる認証回避に関する脆弱性	CWE-290 スプーフィングによる認証回避	CVE-2020-17516	2021-10-15 15:53	2020-08-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
321	7.8	HIGH Local	-	-	Improper access control in Windows Administrator Protection allows an authorized attacker to bypass a security feature locally. New	CWE-284 Improper Access Control	CVE-2026-42829	2026-06-10 02:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

322	7.8	HIGH Local	-	-	Buffer over-read in Windows Projected File System Filter Driver allows an authorized attacker to elevate privileges locally. New	CWE-126 Buffer Over-read	CVE-2026-42828	2026-06-10 02:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

323	-		-	-	Issue summary: When the X509_VERIFY_PARAM_set1_email is called by an application to validate a crafted e-mail address, such as during S/MIME message validation, an out of bounds read can happen. Imp… New	CWE-125 Out-of-bounds Read	CVE-2026-42771	2026-06-10 02:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

324	-		-	-	Issue summary: When EVP_PKEY_derive_set_peer() is called with a DHX (X9.42) peer key, the peer key is not properly checked for the subgroup membership. Impact summary: A malicious peer which present… New	CWE-325 Missing Required Cryptographic Step	CVE-2026-42770	2026-06-10 02:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

325	-		-	-	Issue Summary: An error in the callback used to verify the certificate provided in a Root CA key update Certificate Management Protocol (CMP) message response rendered the certificate validation inef… New	CWE-295 Improper Certificate Validation	CVE-2026-42769	2026-06-10 02:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

326	-		-	-	Issue summary: The CMS_decrypt and PKCS7_decrypt functions are vulnerable to Bleichenbacher-style attack when an attacker is able to provide the CMS or S/MIME messages and observe the error code and/… New	CWE-514	CVE-2026-42768	2026-06-10 02:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

327	-		-	-	Issue summary: An attacker-controlled CMP (Certificate Management Protocol) server could trigger a NULL pointer dereference in a CMP client application. Impact summary: A NULL pointer dereference ca… New	CWE-476 NULL Pointer Dereference	CVE-2026-42767	2026-06-10 02:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

328	-		-	-	Issue summary: A specially crafted password-encrypted CMS message can trigger a NULL pointer dereference during CMS decryption. Impact summary: This NULL pointer dereference leads to an application … New	CWE-476 NULL Pointer Dereference	CVE-2026-42766	2026-06-10 02:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

329	-		-	-	Issue summary: When a partial-chain certificate verification is enabled together with OCSP response checking for the whole chain, a NULL dereference will happen if the verified chain does not have a … New	CWE-476 NULL Pointer Dereference	CVE-2026-42765	2026-06-10 02:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

330	-		-	-	Issue summary: Receiving a QUIC initial packet with an invalid token may trigger a NULL pointer dereference in the OpenSSL QUIC server with address validation disabled. Impact summary: NULL pointer … New	CWE-476 NULL Pointer Dereference	CVE-2026-42764	2026-06-10 02:17	2026-06-10	Show	GitHub Exploit DB Packet Storm