Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1421	7.5	重要 Network	OpenSSL Project	OpenSSL	OpenSSL ProjectのOpenSSLにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-42764	2026-06-16 13:38	2026-06-9	Show	GitHub Exploit DB Packet Storm

1422	7.5	重要 Network	OpenSSL Project	OpenSSL	OpenSSL ProjectのOpenSSLにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-42765	2026-06-16 13:38	2026-06-9	Show	GitHub Exploit DB Packet Storm

1423	5.9	警告 Network	OpenSSL Project	OpenSSL	OpenSSL ProjectのOpenSSLにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-42766	2026-06-16 13:37	2026-06-9	Show	GitHub Exploit DB Packet Storm

1424	5.3	警告 Network	OpenSSL Project	OpenSSL	OpenSSL ProjectのOpenSSLにおける証明書検証に関する脆弱性	CWE-295 不正な証明書検証	CVE-2026-42769	2026-06-16 13:37	2026-06-9	Show	GitHub Exploit DB Packet Storm

1425	7.5	重要 Network	マイクロソフト	Microsoft Windows 10 1607 Microsoft Windows 10 21h2 Microsoft Windows Server 2025 Microsoft Windows Server 2019 Microsoft …	リモートデスクトップクライアントのリモートでコードが実行される脆弱性	CWE-362 CWE-416 CWE-787	CVE-2026-42909	2026-06-16 13:37	2026-06-9	Show	GitHub Exploit DB Packet Storm

1426	8.8	重要 Network	マイクロソフト	Microsoft Windows 10 1607 Microsoft Windows 10 21h2 Microsoft Windows Server 2025 Microsoft Windows Server 2019 Microsoft …	リモートデスクトップクライアントのリモートでコードが実行される脆弱性	CWE-416 CWE-787	CVE-2026-42985	2026-06-16 13:37	2026-06-9	Show	GitHub Exploit DB Packet Storm

1427	7.5	重要 Network	マイクロソフト	Microsoft Windows 10 1607 Microsoft Windows 10 21h2 Microsoft Windows Server 2025 Microsoft Windows Server 2019 Microsoft …	リモートデスクトップクライアントのリモートでコードが実行される脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-42992	2026-06-16 13:37	2026-06-9	Show	GitHub Exploit DB Packet Storm

1428	7.5	重要 Network	マイクロソフト	Microsoft Windows 10 21h2 Microsoft Windows Server 2025 Microsoft Windows 11 24h2 Microsoft Windows 11 26h1 Microsoft Wind…	リモートデスクトップクライアントのリモートでコードが実行される脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-42993	2026-06-16 13:37	2026-06-9	Show	GitHub Exploit DB Packet Storm

1429	5.3	警告 Network	axios project	axios	axios projectのaxiosにおける複数の脆弱性	CWE-113 CWE-1321	CVE-2026-44489	2026-06-16 13:37	2026-06-11	Show	GitHub Exploit DB Packet Storm

1430	8.2	重要 Network	axios project	axios	axios projectのaxiosにおけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性	CWE-1321 オブジェクトプロトタイプ属性の不適切に制御された変更 (プロトタイプの汚染)	CVE-2026-44490	2026-06-16 13:37	2026-06-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
254671	4.8	MEDIUM Network	fxc	fxc5210_firmware fxc5218_firmware fxc5224_firmware fxc5426f_firmware fxc5428_firmware fxc5210pe_firmware fxc5218pe_firmware fxc5224pe_firmware ae1021_firmware ae1021pe_firm…	Cross-site scripting vulnerability in multiple FXC Inc. network devices (Managed Ethernet switch FXC5210/5218/5224 firmware prior to version Ver1.00.22, Managed Ethernet switch FXC5426F firmware prio…	CWE-79 Cross-site Scripting	CVE-2018-0679	2024-11-21 12:38	2018-11-16	Show	GitHub Exploit DB Packet Storm

254672	8.1	HIGH Network	cybozu	garoon	Directory traversal vulnerability in Cybozu Garoon 3.5.0 to 4.6.3 allows authenticated attackers to read arbitrary files via unspecified vectors.	CWE-22 Path Traversal	CVE-2018-0673	2024-11-21 12:38	2018-11-16	Show	GitHub Exploit DB Packet Storm

254673	5.9	MEDIUM Network	openssl canonical debian nodejs netapp oracle	openssl ubuntu_linux debian_linux node.js cn1610_firmware cloud_backup oncommand_unified_manager steelstore santricity_smi-s_provider snapcenter storage_automation_store…	The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in Ope…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2018-0734	2024-11-21 12:38	2018-10-30	Show	GitHub Exploit DB Packet Storm

254674	5.9	MEDIUM Network	openssl canonical debian nodejs netapp oracle	openssl ubuntu_linux debian_linux node.js cn1610_firmware cloud_backup oncommand_unified_manager steelstore santricity_smi-s_provider element_software snapdrive smi-s…	The OpenSSL ECDSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in O…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2018-0735	2024-11-21 12:38	2018-10-29	Show	GitHub Exploit DB Packet Storm

254675	7.5	HIGH Network	cisco	wireless_lan_controller_software	A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol component of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacker t…	CWE-20 Improper Input Validation	CVE-2018-0443	2024-11-21 12:38	2018-10-18	Show	GitHub Exploit DB Packet Storm

254676	7.5	HIGH Network	cisco	wireless_lan_controller_software	A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol component of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacker t…	NVD-CWE-noinfo	CVE-2018-0442	2024-11-21 12:38	2018-10-18	Show	GitHub Exploit DB Packet Storm

254677	7.4	HIGH Adjacent	cisco	access_points	A vulnerability in the 802.11r Fast Transition feature set of Cisco IOS Access Points (APs) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on …	CWE-400 Uncontrolled Resource Consumption	CVE-2018-0441	2024-11-21 12:38	2018-10-18	Show	GitHub Exploit DB Packet Storm

254678	6.5	MEDIUM Network	cisco	wireless_lan_controller_software	A vulnerability in the web-based interface of Cisco Wireless LAN Controller Software could allow an authenticated, remote attacker to view sensitive information. The issue is due to improper sanitiza…	CWE-22 Path Traversal	CVE-2018-0420	2024-11-21 12:38	2018-10-18	Show	GitHub Exploit DB Packet Storm

254679	7.8	HIGH Local	cisco	wireless_lan_controller_software wireless_lan_controller	A vulnerability in TACACS authentication with Cisco Wireless LAN Controller (WLC) Software could allow an authenticated, local attacker to perform certain operations within the GUI that are not norma…	NVD-CWE-noinfo	CVE-2018-0417	2024-11-21 12:38	2018-10-18	Show	GitHub Exploit DB Packet Storm

254680	6.8	MEDIUM Adjacent	cisco	aironet_access_points	A vulnerability in the Cisco Aironet Series Access Points (APs) software could allow an authenticated, adjacent attacker to cause an affected device to reload unexpectedly, resulting in a denial of s…	CWE-667 Improper Locking	CVE-2018-0381	2024-11-21 12:38	2018-10-18	Show	GitHub Exploit DB Packet Storm