Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
133861 7.8 重要
Local 		ヒューレット・パッカード・エンタープライズ HPE Cloudline CL5800 Gen10 Server ファームウェア
HPE Cloudline CL5800 Gen9 Server ファームウェア
HPE Cloudline CL5200 Gen9 Server ファ… 		複数の HPE Cloudline 製品における古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2021-25133 2021-10-7 12:07 2021-01-21 Show GitHub Exploit DB Packet Storm
133862 5.3 警告
Network 		Apache Software Foundation
日立		 Hitachi Ops Center Analyzer viewpoint
HttpClient 		Apache HttpClient における脆弱性 CWE-noinfo
情報不足 		CVE-2020-13956 2021-10-7 12:02 2020-10-8 Show GitHub Exploit DB Packet Storm
133863 7.8 重要
Local 		ヒューレット・パッカード・エンタープライズ HPE Cloudline CL4100 Gen10 Server ファームウェア
HPE Cloudline CL5800 Gen10 Server ファームウェア
HPE Cloudline CL5800 Gen9 Server フ… 		複数の HPE Cloudline 製品における古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2021-25134 2021-10-7 11:57 2021-01-21 Show GitHub Exploit DB Packet Storm
133864 7.8 重要
Local 		ヒューレット・パッカード・エンタープライズ HPE Cloudline CL4100 Gen10 Server ファームウェア
HPE Cloudline CL5800 Gen10 Server ファームウェア
HPE Cloudline CL5800 Gen9 Server フ… 		複数の HPE Cloudline 製品における古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2021-25135 2021-10-7 11:50 2021-01-21 Show GitHub Exploit DB Packet Storm
133865 7.8 重要
Local 		ヒューレット・パッカード・エンタープライズ HPE Cloudline CL4100 Gen10 Server ファームウェア
HPE Cloudline CL5800 Gen10 Server ファームウェア
HPE Cloudline CL5800 Gen9 Server フ… 		複数の HPE Cloudline 製品における古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2021-25136 2021-10-7 11:32 2021-01-21 Show GitHub Exploit DB Packet Storm
133866 7.8 重要
Local 		ヒューレット・パッカード・エンタープライズ HPE Cloudline CL4100 Gen10 Server ファームウェア
HPE Cloudline CL5800 Gen10 Server ファームウェア
HPE Cloudline CL5800 Gen9 Server フ… 		複数の HPE Cloudline 製品における古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2021-25137 2021-10-7 11:29 2021-01-21 Show GitHub Exploit DB Packet Storm
133867 9.8 緊急
Network 		Apache Software Foundation Apache Unomi Apache Unomi におけるインジェクションに関する脆弱性 CWE-74
インジェクション 		CVE-2020-13942 2021-10-7 11:19 2020-11-24 Show GitHub Exploit DB Packet Storm
133868 9.8 緊急
Network 		クアルコム APQ8009 ファームウェア
APQ8060A ファームウェア
APQ8030 ファームウェア
APQ8052 ファームウェア
APQ8056 ファームウェア
APQ8017 ファームウェア
APQ8009W ファームウェア
APQ8062 ファームウェア
APQ80… 		複数の Qualcomm 製品における古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2020-3686 2021-10-6 18:14 2020-12-7 Show GitHub Exploit DB Packet Storm
133869 5 警告
Network 		Kubernetes Kubernetes Kubernetes API server における不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2020-8554 2021-10-6 18:05 2020-12-5 Show GitHub Exploit DB Packet Storm
133870 6.5 警告
Network 		PySAML2 project
Debian		 Debian GNU/Linux
PySAML2 		PySAML2 におけるデジタル署名の検証に関する脆弱性 CWE-347
デジタル署名の不適切な検証 		CVE-2021-21239 2021-10-6 18:05 2021-01-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
81 8.6 HIGH
Network 		axios axios Axios is a promise based HTTP client for the browser and Node.js. Prior to 0.32.0 and 1.16.0, Axios does not normalise IPv4-mapped IPv6 addresses. When NO_PROXY lists an IPv4 address such as 127.0.0.… Update CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-44492 2026-06-13 12:16 2026-06-12 Show GitHub Exploit DB Packet Storm
82 7.5 HIGH
Network 		axios axios Axios is a promise based HTTP client for the browser and Node.js. Prior to 0.32.0 and 1.16.0, Axios’ Node.js HTTP adapter can leak proxy credentials to a redirect target in affected versions. When a … Update CWE-200
Information Exposure 		CVE-2026-44486 2026-06-13 12:16 2026-06-12 Show GitHub Exploit DB Packet Storm
83 4.9 MEDIUM
Network 		- - The LWS Optimize – All-in-One Speed Booster & Cache Tools plugin for WordPress is vulnerable to Arbitrary File Read in versions up to, and including, 3.3.19. This is due to the combine_current_css() … New CWE-22
Path Traversal 		CVE-2026-12089 2026-06-13 12:16 2026-06-13 Show GitHub Exploit DB Packet Storm
84 8.8 HIGH
Network 		vim vim Vim is an open source, command line text editor. Prior to version 9.2.0495, a Vimscript code injection vulnerability exists in s:NetrwBookHistSave() in the netrw plugin (runtime/pack/dist/opt/netrw/a… New CWE-74
CWE-94
Injection
Code Injection 		CVE-2026-47162 2026-06-13 10:04 2026-06-12 Show GitHub Exploit DB Packet Storm
85 7.5 HIGH
Network 		apache cxf There is no restriction on the amount of attachment headers that a message can contain when being deserialized by Apache CXF, which can lead to uncontrolled resource consumption or a denial of servic… New CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-50645 2026-06-13 10:00 2026-06-12 Show GitHub Exploit DB Packet Storm
86 8.3 HIGH
Adjacent 		google chrome Use after free in Cast in Google Chrome prior to 149.0.7827.115 allowed an attacker on the local network segment to potentially perform a sandbox escape via malicious network traffic. (Chromium secur… New CWE-416
 Use After Free 		CVE-2026-12014 2026-06-13 09:54 2026-06-12 Show GitHub Exploit DB Packet Storm
87 5.3 MEDIUM
Network 		google chrome Use after free in Autofill in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory … New CWE-416
 Use After Free 		CVE-2026-12015 2026-06-13 09:54 2026-06-12 Show GitHub Exploit DB Packet Storm
88 8.3 HIGH
Network 		google chrome Inappropriate implementation in DevTools in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a craf… New CWE-20
NVD-CWE-noinfo
 Improper Input Validation  		CVE-2026-12016 2026-06-13 09:52 2026-06-12 Show GitHub Exploit DB Packet Storm
89 3.1 LOW
Network 		google chrome Inappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page… New CWE-20
NVD-CWE-noinfo
 Improper Input Validation  		CVE-2026-12017 2026-06-13 09:51 2026-06-12 Show GitHub Exploit DB Packet Storm
90 8.3 HIGH
Network 		google chrome Heap buffer overflow in Codecs in Google Chrome on Linux and ChromeOS prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escap… New CWE-787
 Out-of-bounds Write 		CVE-2026-12019 2026-06-13 09:45 2026-06-12 Show GitHub Exploit DB Packet Storm