Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
133801 6.5 警告
Network 		Nextcloud Nextcloud Server Nextcloud Server におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2020-8293 2021-10-8 15:57 2020-11-18 Show GitHub Exploit DB Packet Storm
133802 7.5 重要
Network 		Xerox WorkCentre 5865i ファームウェア
WorkCentre 3655i ファームウェア
WorkCentre 5875 ファームウェア
WorkCentre 5875i ファームウェア
WorkCentre 5865 ファームウェア
WorkCentre&… 		複数の Xerox WorkCentre 製品における暗号アルゴリズムの使用に関する脆弱性 CWE-327
不完全、または危険な暗号アルゴリズムの使用 		CVE-2020-36201 2021-10-8 15:57 2020-06-25 Show GitHub Exploit DB Packet Storm
133803 6.5 警告
Network 		カスペルスキー TinyCheck TinyCheck におけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2020-36200 2021-10-8 15:57 2020-12-18 Show GitHub Exploit DB Packet Storm
133804 9.8 緊急
Network 		カスペルスキー TinyCheck TinyCheck における入力確認に関する脆弱性 CWE-20
CWE-78
CVE-2020-36199 2021-10-8 15:57 2020-12-18 Show GitHub Exploit DB Packet Storm
133805 6.1 警告
Network 		Persis GmbH Persis Human Resource Management Portal Persis Human Resource Management Portal におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2020-35753 2021-10-8 15:57 2020-12-28 Show GitHub Exploit DB Packet Storm
133806 4.3 警告
Network 		Nike, Inc. Nike スマートフォンアプリ「Nike」における Custom URL Scheme の処理にアクセス制限不備の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2021-20834 2021-10-8 12:08 2021-10-8 Show GitHub Exploit DB Packet Storm
133807 7.5 重要
Network 		fil-ocl project fil-ocl Rust 用 fil-ocl crate における二重解放に関する脆弱性 CWE-415
二重解放 		CVE-2021-25908 2021-10-7 18:11 2021-01-4 Show GitHub Exploit DB Packet Storm
133808 9.8 緊急
Network 		containers project containers RUST 用 containers crate における二重解放に関する脆弱性 CWE-415
二重解放 		CVE-2021-25907 2021-10-7 18:11 2021-01-12 Show GitHub Exploit DB Packet Storm
133809 7.5 重要
Network 		basic_dsp_matrix project basic_dsp_matrix RUST 用 basic_dsp_matrix crate における脆弱性 CWE-noinfo
情報不足 		CVE-2021-25906 2021-10-7 18:11 2021-01-10 Show GitHub Exploit DB Packet Storm
133810 9.1 緊急
Network 		bra project bra RUST 用 bra crate における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2021-25905 2021-10-7 18:11 2021-01-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
111 5.5 MEDIUM
Local 		- - A logging issue was addressed with improved data redaction. This issue is fixed in macOS Tahoe 26.1. An app may be able to access sensitive user data. New CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2025-46313 2026-06-13 07:16 2026-06-12 Show GitHub Exploit DB Packet Storm
112 5.5 MEDIUM
Local 		- - This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sequoia 15.4. An app may be able to access protected user data. New CWE-61
 UNIX Symbolic Link (Symlink) Following 		CVE-2025-43278 2026-06-13 07:16 2026-06-12 Show GitHub Exploit DB Packet Storm
113 5.5 MEDIUM
Local 		- - A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. An app may be able to cause unexpected system ter… New CWE-284
Improper Access Control 		CVE-2025-24165 2026-06-13 07:16 2026-06-12 Show GitHub Exploit DB Packet Storm
114 - - - Rejected reason: This candidate was issued in error. New - CVE-2020-2521 2026-06-13 07:16 2026-06-13 Show GitHub Exploit DB Packet Storm
115 - - - A vulnerability in MISP’s non-REST event editing path allowed an authenticated user with event edit permissions to manipulate the submitted form data and set an event’s sharing_group_id to a sharing … New CWE-863
 Incorrect Authorization 		CVE-2026-54397 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
116 - - - An information disclosure vulnerability exists in the MISP AuthKey edit functionality. When a validation error occurs during an AuthKey edit request, the user dropdown was populated using the attacke… New CWE-200
Information Exposure 		CVE-2026-54396 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
117 - - - MISP contains a reflected cross-site scripting vulnerability in the UiBeta event index view. The urlparams value is inserted into an inline JavaScript handler using HTML escaping inside a single-quot… New CWE-79
Cross-site Scripting 		CVE-2026-54395 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
118 - - - MISP contains a path traversal vulnerability in OrganisationsController::getOrgLogo. The vulnerable code builds organisation logo file paths using organisation-controlled fields such as id, name, and… New CWE-22
Path Traversal 		CVE-2026-54394 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
119 - - - A stored cross-site scripting vulnerability exists in MISP when the Overmind theme is used. The setHomePage endpoint previously saved the user-controlled path value through setSettingInternal(), bypa… New CWE-79
Cross-site Scripting 		CVE-2026-54393 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm
120 - - - An incorrect visibility condition in the MISP event template builder allowed authenticated non-site-admin users to view galaxies that should not have been visible to their organisation. The custom ac… New CWE-863
 Incorrect Authorization 		CVE-2026-54362 2026-06-13 06:16 2026-06-13 Show GitHub Exploit DB Packet Storm