Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
132831	4.3	警告 Network	オラクル NetApp	MySQL Cluster SnapCenter OnCommand Insight	Oracle MySQL の MySQL Cluster における Cluster: ndbcluster/plugin DDL に関する脆弱性	CWE-noinfo 情報不足	CVE-2021-35584	2021-10-28 16:28	2021-10-19	Show	GitHub Exploit DB Packet Storm

132832	7.5	重要 Network	オラクル NetApp	SnapCenter MySQL OnCommand Insight	Oracle MySQL の MySQL Server における Server: Windows に関する脆弱性	CWE-noinfo 情報不足	CVE-2021-35583	2021-10-28 16:28	2021-10-19	Show	GitHub Exploit DB Packet Storm

132833	6.5	警告 Network	オラクル	Oracle Applications Manager Oracle E-Business Suite	Oracle E-Business Suite の Oracle Applications Manager における View Reports に関する脆弱性	CWE-noinfo 情報不足	CVE-2021-35582	2021-10-28 16:28	2021-10-19	Show	GitHub Exploit DB Packet Storm

132834	4.7	警告 Network	オラクル	Oracle Applications Manager Oracle E-Business Suite	Oracle E-Business Suite の Oracle Applications Manager における View Reports に関する脆弱性	CWE-noinfo 情報不足	CVE-2021-35581	2021-10-28 16:28	2021-10-19	Show	GitHub Exploit DB Packet Storm

132835	6.1	警告 Network	オラクル	Oracle Applications Manager Oracle E-Business Suite	Oracle E-Business Suite の Oracle Applications Manager における View Reports に関する脆弱性	CWE-noinfo 情報不足	CVE-2021-35580	2021-10-28 16:28	2021-10-19	Show	GitHub Exploit DB Packet Storm

132836	6.8	警告 Network	オラクル	Oracle Communications Session Border Controller	Oracle Communications の Oracle Communications Session Border Controller における Routing に関する脆弱性	CWE-noinfo 情報不足	CVE-2021-2414	2021-10-28 16:26	2021-10-19	Show	GitHub Exploit DB Packet Storm

132837	8.8	重要 Network	Google	Android	Android における境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2021-0325	2021-10-28 16:24	2021-02-1	Show	GitHub Exploit DB Packet Storm

132838	4.9	警告 Network	オラクル	Oracle Communications Session Border Controller	Oracle Communications の Oracle Communications Session Border Controller における Routing に関する脆弱性	CWE-noinfo 情報不足	CVE-2021-2416	2021-10-28 16:23	2021-10-19	Show	GitHub Exploit DB Packet Storm

132839	8.3	重要 Network	オラクル	Oracle Communications Interactive Session Recorder	Oracle Communications の Oracle Communications Interactive Session Recorder における Provision API に関する脆弱性	CWE-noinfo 情報不足	CVE-2021-2461	2021-10-28 16:17	2021-10-19	Show	GitHub Exploit DB Packet Storm

132840	4.3	警告 Network	オラクル	Oracle Database	Oracle Database Server の Core RDBMS における脆弱性	CWE-noinfo 情報不足	CVE-2021-35557	2021-10-28 16:13	2021-10-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
501	6.5	MEDIUM Network	nsa	ghidra	Ghidra before 12.2 contains an unauthenticated path traversal vulnerability in the IsfServer that accepts TCP connections and passes client-supplied namespace strings directly to filesystem operation… Update	CWE-22 Path Traversal	CVE-2026-52756	2026-06-12 10:18	2026-06-10	Show	GitHub Exploit DB Packet Storm

502	4.4	MEDIUM Local	nsa	ghidra	Ghidra before 12.1 contains a heap-use-after-free vulnerability in the decompiler's HighVariable::merge() function during the variable merging pass. Attackers can trigger this vulnerability by crafti… Update	CWE-416 Use After Free	CVE-2026-52757	2026-06-12 10:10	2026-06-10	Show	GitHub Exploit DB Packet Storm

503	4.3	MEDIUM Network	jenkins	jenkins	Jenkins 2.567 and earlier, LTS 2.555.2 and earlier does not ensure that the "from" parameter in the "Delegate to servlet container" security realm is safe to redirect to after login, allowing attacke… Update	CWE-601 Open Redirect	CVE-2026-53440	2026-06-12 10:03	2026-06-10	Show	GitHub Exploit DB Packet Storm

504	5.3	MEDIUM Network	jenkins	jenkins	Jenkins 2.567 and earlier, LTS 2.555.2 and earlier does not encrypt secrets from POST config.xml submissions before storing them in job configurations unencrypted in job config.xml files on the Jenki… Update	CWE-311 Missing Encryption of Sensitive Data	CVE-2026-53442	2026-06-12 09:59	2026-06-10	Show	GitHub Exploit DB Packet Storm

505	7.2	HIGH Network	apache	answer	Improper Restriction of Security Token Assignment vulnerability in Apache Answer. This issue affects Apache Answer: through 2.0.0. Previously issued administrative tokens were not invalidated after… Update	CWE-1259 Improper Restriction of Security Token Assignment	CVE-2026-25700	2026-06-12 09:50	2026-06-11	Show	GitHub Exploit DB Packet Storm

506	8.3	HIGH Network	plane	plane	Plane is an open-source project management tool. Prior to version 1.3.1, there is a cross-workspace asset authorization bypass lets any authenticated user read, copy, delete, and overwrite assets in … Update	CWE-639 CWE-862 Authorization Bypass Through User-Controlled Key Missing Authorization	CVE-2026-46558	2026-06-12 09:49	2026-06-11	Show	GitHub Exploit DB Packet Storm

507	5.3	MEDIUM Network	openfga	helm_charts openfga	OpenFGA is an authorization/permission engine built for developers. Prior to version 1.16.0, when iterator caching is enabled, two distinct check requests can produce the same cache key, leading to O… Update	CWE-345 CWE-668 Insufficient Verification of Data Authenticity Exposure of Resource to Wrong Sphere	CVE-2026-48096	2026-06-12 09:46	2026-06-11	Show	GitHub Exploit DB Packet Storm

508	-		-	-	Rejected reason: This CVE Record has been rejected by the Zephyr Project CNA. Subsequent analysis determined that the addressed defect is not reachable in any released version of Zephyr: on every sup… New	-	CVE-2026-10676	2026-06-12 09:16	2026-06-12	Show	GitHub Exploit DB Packet Storm

509	9.8	CRITICAL Network	fortinet	fortisandbox fortisandbox_cloud fortisandbox_paas	A improper neutralization of special elements used in an os command ('os command injection') vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.5, FortiSandbox 4.4.0 through 4.4.8, FortiSandbox… Update	CWE-78 OS Command	CVE-2026-25089	2026-06-12 06:39	2026-06-10	Show	GitHub Exploit DB Packet Storm

510	6.5	MEDIUM Network	fortinet	fortiportal	A improper access control vulnerability in Fortinet FortiPortal 7.4.0 through 7.4.7, FortiPortal 7.2.0 through 7.2.8, FortiPortal 7.0 all versions may allow attacker to improper access control via <i… Update	CWE-284 Improper Access Control	CVE-2026-49938	2026-06-12 06:32	2026-06-10	Show	GitHub Exploit DB Packet Storm