Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
134201 3.3
Local 		AutoTrace project AutoTrace autotrace における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2019-19004 2021-11-4 15:05 2019-11-15 Show GitHub Exploit DB Packet Storm
134202 7.5 重要
Network 		get-ip-range project get-ip-range Node.js 用 get-ip-range における脆弱性 CWE-noinfo
情報不足 		CVE-2021-27191 2021-11-4 15:05 2021-02-11 Show GitHub Exploit DB Packet Storm
134203 7.5 重要
Network 		PELCO Digital Sentry Server Pelco Digital Sentry Server における XML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2021-27184 2021-11-4 15:05 2021-02-11 Show GitHub Exploit DB Packet Storm
134204 7.5 重要
Network 		Teradici PCoIP Soft Client Teradici PCoIP Soft Client における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2021-25690 2021-11-4 15:05 2021-02-9 Show GitHub Exploit DB Packet Storm
134205 9.8 緊急
Network 		Teradici PCoIP Soft Client Teradici PCoIP soft client における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2021-25689 2021-11-4 15:05 2021-02-9 Show GitHub Exploit DB Packet Storm
134206 5.5 警告
Local 		Teradici PCoIP Graphics Agent Windows および Linux 用 Teradici PCoIP Agents におけるログファイルからの情報漏えいに関する脆弱性 CWE-532
ログファイルからの情報漏えい 		CVE-2021-25688 2021-11-4 15:05 2021-02-9 Show GitHub Exploit DB Packet Storm
134207 6.1 警告
Network 		Ruby on Rails project
Fedora Project		 Rails
Fedora 		Action Pack におけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2021-22881 2021-11-4 15:05 2021-02-10 Show GitHub Exploit DB Packet Storm
134208 7.5 重要
Network 		Ruby on Rails project
Fedora Project		 Rails
Fedora 		Active Record におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2021-22880 2021-11-4 15:05 2021-02-10 Show GitHub Exploit DB Packet Storm
134209 9.8 緊急
Network 		アドバンテック株式会社 iView Advantech iView における重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2021-22652 2021-11-4 15:05 2021-02-9 Show GitHub Exploit DB Packet Storm
134210 4.8 警告
Adjacent 		IBM IBM Spectrum Protect Operations Center IBM Spectrum Protect Operations Center におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2020-4956 2021-11-4 15:02 2021-02-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
921 7.5 HIGH
Network 		- - The Setracker2 Android Companion App (com.tgelec.setracker) versions 3.1.5 and earlier uses MD5 to generate a request signature for authenticating communications between the mobile client and the bac… New CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2026-9221 2026-06-26 22:16 2026-06-26 Show GitHub Exploit DB Packet Storm
922 - - - An access control deficiency vulnerability exists in ExpressUpdate Agent for Windows. If a malicious user gains access to the product, arbitrary code could be executed with SYSTEM privileges. New CWE-782
 Exposed IOCTL with Insufficient Access Control 		CVE-2026-8797 2026-06-26 22:16 2026-06-26 Show GitHub Exploit DB Packet Storm
923 4.8 MEDIUM
Network 		- - Server-Side Cross-Site Scripting and Server-Side Request Forgery vulnerability in the markdown_to_pdf action of Rapid7 InsightConnect Markdown Plugin version 3.1.4 and earlier on Linux allows remote … New CWE-79
CWE-918
Cross-site Scripting
Server-Side Request Forgery (SSRF)  		CVE-2026-8661 2026-06-26 22:16 2026-06-26 Show GitHub Exploit DB Packet Storm
924 7.1 HIGH
Network 		- - libnfs through 6.0.2 before 935b8db has an xid integer underflow in READ_IOVEC in rpc_read_from_socket in lib/socket.c during a connection to a crafted NFS server, when the expected pdu size exceeds … New CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2026-57918 2026-06-26 22:16 2026-06-26 Show GitHub Exploit DB Packet Storm
925 - - - A Code Injection vulnerability existed in Trellix Network Security CM and NX. A locally authenticated admin user can execute arbitrary code using the web interface and Alert artifact details. New CWE-94
Code Injection 		CVE-2025-7958 2026-06-26 22:16 2026-06-26 Show GitHub Exploit DB Packet Storm
926 9.8 CRITICAL
Network 		jetbrains hub In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.148429 account takeover via predictable restore codes was possible New CWE-338
 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) 		CVE-2026-56141 2026-06-26 22:10 2026-06-19 Show GitHub Exploit DB Packet Storm
927 8.8 HIGH
Network 		jetbrains hub In JetBrains Hub before 2026.1.13757, 2025.3.148033, 2025.2.148048, 2025.1.148120, 2024.3.148430, 2024.2.148429 privilege escalation by attaching authentication details to accounts was possible New CWE-915
 Improperly Controlled Modification of Dynamically-Determined Object Attributes 		CVE-2026-56142 2026-06-26 22:06 2026-06-19 Show GitHub Exploit DB Packet Storm
928 7.8 HIGH
Local 		anydesk anydesk AnyDesk 2.5.0 contains an unquoted service path vulnerability that allows local users to execute arbitrary code with SYSTEM privileges by exploiting the service installation. Attackers can insert mal… New CWE-428
 Unquoted Search Path or Element 		CVE-2016-20094 2026-06-26 22:02 2026-06-20 Show GitHub Exploit DB Packet Storm
929 7.8 HIGH
Local 		malwarebytes malwarebytes Malwarebytes 4.5 contains an unquoted service path vulnerability in the MBAMService executable that allows local attackers to escalate privileges by injecting malicious code into the system root path… New CWE-428
 Unquoted Search Path or Element 		CVE-2022-50971 2026-06-26 21:59 2026-06-20 Show GitHub Exploit DB Packet Storm
930 6.5 MEDIUM
Network 		struktur libheif libheif is a HEIF and AVIF file format decoder and encoder. Prior to version 1.22.1, the uncompressed HEIF decoder validates explicit icef compressed-unit offsets using unit_offset + unit_size. Becau… New CWE-125
Out-of-bounds Read 		CVE-2026-49271 2026-06-26 21:33 2026-06-20 Show GitHub Exploit DB Packet Storm