Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 21, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
222581 4.3 警告 Advanced Packaging Tool - Advanced Package Tool の apt-pkg/acquire-item.cc における任意のパッケージをインストールされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-0214 2014-04-21 12:18 2012-03-4 Show GitHub Exploit DB Packet Storm
222582 6.9 警告 Canonical - Ubuntu 上で稼動する libpam-modules の pam_motd における権限を取得される脆弱性 CWE-Other
その他 		CVE-2011-3628 2014-04-21 11:37 2011-10-24 Show GitHub Exploit DB Packet Storm
222583 6 警告 レッドハット - 複数の Red Hat 製品の監視プローブ表示における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2236 2014-04-21 11:10 2010-06-24 Show GitHub Exploit DB Packet Storm
222584 4.4 警告 OpenFabrics Alliance - RHEL 6 および 5 の ibutils パッケージの ibmssh 実行ファイル用の特定の Red Hat ビルドスクリプトにおける権限を取得される脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-3277 2014-04-21 11:08 2008-08-5 Show GitHub Exploit DB Packet Storm
222585 5.5 警告 DELL EMC (旧 EMC Corporation) - EMC Documentum Content Server におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0642 2014-04-18 18:50 2014-04-11 Show GitHub Exploit DB Packet Storm
222586 4.9 警告 VMware - Windows 上で稼働する VMware Workstation および VMware Player の vmx86.sys におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-2384 2014-04-18 17:10 2014-03-28 Show GitHub Exploit DB Packet Storm
222587 2.1 注意 シトリックス・システムズ - Citrix VDI-in-a-Box における管理者の認証情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-2690 2014-04-18 16:14 2014-04-8 Show GitHub Exploit DB Packet Storm
222588 7.8 危険 ジュニパーネットワークス - Juniper ScreenOS におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-2842 2014-04-18 15:52 2014-04-14 Show GitHub Exploit DB Packet Storm
222589 4.6 警告 IBM - IBM MessageSight におけるアクセス制限を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0924 2014-04-18 15:38 2014-04-14 Show GitHub Exploit DB Packet Storm
222590 4.3 警告 IBM - IBM MessageSight におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0923 2014-04-18 15:38 2014-04-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314781 7.5 HIGH
Network 		dena h2o h2o is an HTTP server with support for HTTP/1.x, HTTP/2 and HTTP/3. When h2o is configured as a reverse proxy and HTTP/3 requests are cancelled by the client, h2o might crash due to an assertion fail… CWE-617
 Reachable Assertion 		CVE-2024-45403 2024-11-13 04:59 2024-10-12 Show GitHub Exploit DB Packet Storm
314782 5.8 MEDIUM
Network 		plane plane Plane is an open-source project management tool. Plane uses the ** wildcard support to retrieve the image from any hostname as in /web/next.config.js. This may permit an attacker to induce the server… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2024-47830 2024-11-13 04:55 2024-10-12 Show GitHub Exploit DB Packet Storm
314783 9.8 CRITICAL
Network 		dataease dataease DataEase is an open source data visualization analysis tool. In Dataease, the PostgreSQL data source in the data source function can customize the JDBC connection parameters and the PG server target … CWE-502
 Deserialization of Untrusted Data 		CVE-2024-47074 2024-11-13 04:52 2024-10-12 Show GitHub Exploit DB Packet Storm
314784 7.8 HIGH
Local 		workbooth_project workbooth Vulnerability in Distro Linux Workbooth v2.5 that allows to escalate privileges to the root user by manipulating the network configuration script. NVD-CWE-noinfo
CVE-2024-9576 2024-11-13 04:34 2024-10-8 Show GitHub Exploit DB Packet Storm
314785 7.5 HIGH
Network 		finrota finrota Cleartext Storage of Sensitive Information vulnerability in Finrota Netahsilat allows Retrieve Embedded Sensitive Data.This issue solved in versions 1.21.10, 1.23.01, 1.23.08, 1.23.11 and 1.24.03. CWE-202
CWE-311
CWE-312
 Exposure of Sensitive Information Through Data Queries
Missing Encryption of Sensitive Data
 Cleartext Storage of Sensitive Information 		CVE-2024-6400 2024-11-13 04:32 2024-10-4 Show GitHub Exploit DB Packet Storm
314786 6.5 MEDIUM
Adjacent 		zephyrproject zephyr In utf8_trunc in zephyr/lib/utils/utf8.c, last_byte_p can point to one byte before the string pointer if the string is empty. CWE-125
CWE-787
Out-of-bounds Read
 Out-of-bounds Write 		CVE-2024-6443 2024-11-13 04:29 2024-10-4 Show GitHub Exploit DB Packet Storm
314787 - - - Cross Site Scripting vulnerability in Online Shop Store v.1.0 allows a remote attacker to execute arbitrary code via the login.php component. - CVE-2024-51213 2024-11-13 03:35 2024-11-12 Show GitHub Exploit DB Packet Storm
314788 - - - The NetAdmin IAM system (version 4.0.30319) has a Cross Site Scripting (XSS) vulnerability in the /BalloonSave.ashx endpoint, where it is possible to inject a malicious payload into the Content= fiel… - CVE-2024-51026 2024-11-13 03:35 2024-11-12 Show GitHub Exploit DB Packet Storm
314789 - - - A SQL injection vulnerability in /omrs/admin/search.php in PHPGurukul Online Marriage Registration System v1.0 allows an attacker to execute arbitrary SQL commands via the "searchdata " parameter. - CVE-2024-50989 2024-11-13 03:35 2024-11-12 Show GitHub Exploit DB Packet Storm
314790 - - - The BGP daemon in Extreme Networks ExtremeXOS (aka EXOS) 30.7.1.1 allows an attacker (who is not on a directly connected network) to cause a denial of service (BGP session reset) because of BGP attri… - CVE-2023-40457 2024-11-13 03:35 2024-11-11 Show GitHub Exploit DB Packet Storm