Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 21, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1471	9.8	緊急 Network	日本エイサー	Acer Wave 7 Router Firmware T7c Gbl	エイサーのAcer Wave 7 Router Firmware T7c Gblにおけるハードコードされた認証情報の使用に関する脆弱性	CWE-798 ハードコードされた認証情報の使用	CVE-2026-49201	2026-06-9 14:10	2026-05-29	Show	GitHub Exploit DB Packet Storm

1472	6.5	警告 Network	RRWO (Robert Rothenberg)	Net::CIDR::Set	RRWO (Robert Rothenberg)のNet::CIDR::Setにおける安全でない等式による入力の不適切な検証に関する脆弱性	CWE-1289 安全でない等式による入力の不適切な検証	CVE-2026-49940	2026-06-9 14:10	2026-06-4	Show	GitHub Exploit DB Packet Storm

1473	7.5	重要 Network	RRWO (Robert Rothenberg)	Net::CIDR::Set	RRWO (Robert Rothenberg)のNet::CIDR::Setにおける複数の脆弱性	CWE-1287 CWE-674	CVE-2026-49941	2026-06-9 14:10	2026-06-4	Show	GitHub Exploit DB Packet Storm

1474	7.3	重要 Network	RRWO (Robert Rothenberg)	Net::CIDR::Set	RRWO (Robert Rothenberg)のNet::CIDR::Setにおける安全でない等式による入力の不適切な検証に関する脆弱性	CWE-1289 安全でない等式による入力の不適切な検証	CVE-2026-49942	2026-06-9 14:10	2026-06-4	Show	GitHub Exploit DB Packet Storm

1475	6.5	警告 Network	Tom Molesworth (TEAM)	Net::Async::Statsd::Client	Tom Molesworth (TEAM)のNet::Async::Statsd::ClientにおけるCRLF インジェクションの脆弱性	CWE-93 CRLF インジェクション	CVE-2026-46719 CVE-2026-46720 CVE-2026-8722	2026-06-9 14:10	2026-06-4	Show	GitHub Exploit DB Packet Storm

1476	7.5	重要 Network	OALDERS (Olaf Alders)	HTML::Entities	OALDERS (Olaf Alders)のHTML::Entitiesにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-8829	2026-06-9 14:10	2026-06-4	Show	GitHub Exploit DB Packet Storm

1477	5	警告 Network	レッドハット	Red Hat OpenShift Container Platform	レッドハットのRed Hat OpenShift Container Platformにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-10533	2026-06-9 14:10	2026-06-1	Show	GitHub Exploit DB Packet Storm

1478	4.3	警告 Network	MISP	MISP	MISPにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-10855	2026-06-9 14:10	2026-06-4	Show	GitHub Exploit DB Packet Storm

1479	6.1	警告 Network	MISP	MISP	MISPにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2026-10856	2026-06-9 14:10	2026-06-4	Show	GitHub Exploit DB Packet Storm

1480	6.5	警告 Network	MISP	MISP	MISPにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-10860	2026-06-9 14:10	2026-06-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
320401	8.8	HIGH Network	asterisk	asterisk certified_asterisk	Asterisk is an open source private branch exchange (PBX) and telephony toolkit. Prior to asterisk versions 18.24.2, 20.9.2, and 21.4.2 and certified-asterisk versions 18.9-cert11 and 20.7-cert2, an A…	NVD-CWE-Other	CVE-2024-42365	2024-09-17 05:23	2024-08-9	Show	GitHub Exploit DB Packet Storm

320402	9.8	CRITICAL Network	sonicwall	sonicos	An improper access control vulnerability has been identified in the SonicWall SonicOS management access, potentially leading to unauthorized resource access and in specific conditions, causing the fi…	NVD-CWE-noinfo	CVE-2024-40766	2024-09-17 04:48	2024-08-23	Show	GitHub Exploit DB Packet Storm

320403	8.8	HIGH Network	xwiki	pro_macros	Pro Macros provides XWiki rendering macros. Missing escaping in the Viewpdf macro allows any user with view right on the `CKEditor.HTMLConverter` page or edit or comment right on any page to perform …	CWE-74 Injection	CVE-2024-42489	2024-09-17 04:46	2024-08-13	Show	GitHub Exploit DB Packet Storm

320404	5.5	MEDIUM Local	nvidia	cuda_toolkit	NVIDIA CUDA Toolkit for all platforms contains a vulnerability in nvdisasm, where an attacker can cause an out-of-bounds read issue by deceiving a user into reading a malformed ELF file. A successful…	CWE-125 Out-of-bounds Read	CVE-2024-0102	2024-09-17 04:37	2024-08-9	Show	GitHub Exploit DB Packet Storm

320405	8.8	HIGH Local	nvidia	jetson_linux	NVIDIA Jetson Linux contains a vulnerability in NvGPU where error handling paths in GPU MMU mapping code fail to clean up a failed mapping attempt. A successful exploit of this vulnerability may lead…	CWE-755 Improper Handling of Exceptional Conditions	CVE-2024-0108	2024-09-17 04:27	2024-08-9	Show	GitHub Exploit DB Packet Storm

320406	7.5	HIGH Network	nvidia	mlnx-os mlnx-gw onyx nvda-os_xc	NVIDIA Mellanox OS, ONYX, Skyway, MetroX-2 and MetroX-3 XC contain a vulnerability in ipfilter, where improper ipfilter definitions could enable an attacker to cause a failure by attacking the switch…	NVD-CWE-Other	CVE-2024-0101	2024-09-17 04:24	2024-08-9	Show	GitHub Exploit DB Packet Storm

320407	8.8	HIGH Network	solarwinds	access_rights_manager	SolarWinds Access Rights Manager (ARM) was found to be susceptible to a remote code execution vulnerability. If exploited, this vulnerability would allow an authenticated user to abuse the service, r…	NVD-CWE-noinfo	CVE-2024-28991	2024-09-17 03:06	2024-09-12	Show	GitHub Exploit DB Packet Storm

320408	9.8	CRITICAL Network	solarwinds	access_rights_manager	SolarWinds Access Rights Manager (ARM) was found to contain a hard-coded credential authentication bypass vulnerability. If exploited, this vulnerability would allow access to the RabbitMQ management…	CWE-798 Use of Hard-coded Credentials	CVE-2024-28990	2024-09-17 03:05	2024-09-12	Show	GitHub Exploit DB Packet Storm

320409	5.4	MEDIUM Network	mindsdb	mindsdb	A cross-site scripting (XSS) vulnerability exists in all versions of the MindsDB platform, enabling the execution of a JavaScript payload whenever a user enumerates an ML Engine, database, project, o…	CWE-79 Cross-site Scripting	CVE-2024-45856	2024-09-17 03:04	2024-09-12	Show	GitHub Exploit DB Packet Storm

320410	7.5	HIGH Network	mindsdb	mindsdb	Deserialization of untrusted data can occur in versions 23.10.2.0 and newer of the MindsDB platform, enabling a maliciously uploaded ‘inhouse’ model to run arbitrary code on the server when using ‘fi…	CWE-502 Deserialization of Untrusted Data	CVE-2024-45855	2024-09-17 03:03	2024-09-12	Show	GitHub Exploit DB Packet Storm