Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
224721	5.4	警告	シスコシステムズ	-	Cisco NX-OS の BGP の実装の regex エンジンおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-1121	2013-09-25 10:57	2013-09-17	Show	GitHub Exploit DB Packet Storm

224722	4.3	警告	ヒューレット・パッカード	-	HP XP P9000 Command View Advanced Edition ソフトウェアにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-4814	2013-09-25 10:44	2013-09-20	Show	GitHub Exploit DB Packet Storm

224723	4.3	警告	ヒューレット・パッカード	-	HP ArcSight Enterprise Security Manager の Web インターフェースにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-4815	2013-09-25 10:42	2013-09-19	Show	GitHub Exploit DB Packet Storm

224724	6.8	警告	GLPI-PROJECT.ORG	-	GLPI の inc/central.class.php におけるクロスサイトリクエストフォージェリ攻撃を実行される脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-5696	2013-09-25 10:41	2013-09-12	Show	GitHub Exploit DB Packet Storm

224725	10	危険	アドビシステムズ	-	Adobe ColdFusion の認証プロセスにおける管理者権限を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2010-5290	2013-09-24 16:41	2010-08-13	Show	GitHub Exploit DB Packet Storm

224726	6.8	警告	IBM	-	IBM WebSphere Application Server および WAS Feature Pack for Web Services における特権的アクセス権を取得される	CWE-20 不適切な入力確認	CVE-2013-4053	2013-09-24 16:27	2013-09-9	Show	GitHub Exploit DB Packet Storm

224727	4.3	警告	IBM	-	IBM WebSphere Application Server の UDDI 管理コンソールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-4052	2013-09-24 16:25	2013-09-9	Show	GitHub Exploit DB Packet Storm

224728	4.3	警告	IBM	-	IBM WebSphere Application Server の管理コンソールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0596	2013-09-24 16:24	2013-09-9	Show	GitHub Exploit DB Packet Storm

224729	7.1	危険	IBM	-	IBM Domino の iNotes におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-4068	2013-09-24 16:20	2013-09-17	Show	GitHub Exploit DB Packet Storm

224730	4.3	警告	アップル	-	Apple iOS などの製品で使用される WebKit における同一生成元ポリシーを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-5159	2013-09-24 15:28	2013-09-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197961	9.8	CRITICAL Network	redhat	enterprise_linux	Missing fixes for CVE-2021-40438 and CVE-2021-26691 in the versions of httpd, as shipped in Red Hat Enterprise Linux 8.5.0, causes a security regression compared to the versions shipped in Red Hat En…	CWE-787 CWE-918 Out-of-bounds Write Server-Side Request Forgery (SSRF)	CVE-2021-20325	2024-11-21 14:46	2022-02-19	Show	GitHub Exploit DB Packet Storm

197962	7.4	HIGH Network	linux fedoraproject debian netapp oracle	linux_kernel fedora debian_linux solidfire_\&_hci_management_node active_iq_unified_manager e-series_santricity_os_controller solidfire\ _enterprise_sds_\&_hci_storage_no…	A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw al…	CWE-330 Use of Insufficiently Random Values	CVE-2021-20322	2024-11-21 14:46	2022-02-19	Show	GitHub Exploit DB Packet Storm

197963	7.5	HIGH Network	mitsubishielectric	fx3u-enet_firmware fx3u-enet-l_firmware fx3u-enet-p502_firmware	Improper initialization vulnerability in MELSEC-F series FX3U-ENET Firmware version 1.16 and prior, FX3U-ENET-L Firmware version 1.16 and prior and FX3U-ENET-P502 Firmware version 1.16 and prior allo…	CWE-665 Improper Initialization	CVE-2021-20613	2024-11-21 14:46	2022-01-15	Show	GitHub Exploit DB Packet Storm

197964	7.5	HIGH Network	mitsubishielectric	fx3u-enet_firmware fx3u-enet-l_firmware fx3u-enet-p502_firmware	Lack of administrator control over security vulnerability in MELSEC-F series FX3U-ENET Firmware version 1.14 and prior, FX3U-ENET-L Firmware version 1.14 and prior and FX3U-ENET-P502 Firmware version…	NVD-CWE-Other	CVE-2021-20612	2024-11-21 14:46	2022-01-15	Show	GitHub Exploit DB Packet Storm

197965	4.3	MEDIUM Network	zohocorp	manageengine_adselfservice_plus	ManageEngine ADSelfService Plus below build 6116 stores the password policy file for each domain under the html/ web root with a predictable filename based on the domain name. When ADSSP is configure…	CWE-552 Files or Directories Accessible to External Parties	CVE-2021-20148	2024-11-21 14:46	2022-01-4	Show	GitHub Exploit DB Packet Storm

197966	5.3	MEDIUM Network	zohocorp	manageengine_adselfservice_plus	ManageEngine ADSelfService Plus below build 6116 contains an observable response discrepancy in the UMCP operation of the ChangePasswordAPI. This allows an unauthenticated remote attacker to determin…	CWE-203 Information Exposure Through Discrepancy	CVE-2021-20147	2024-11-21 14:46	2022-01-4	Show	GitHub Exploit DB Packet Storm

197967	7.5	HIGH Network	netgear	r6700_firmware	Netgear Nighthawk R6700 version 1.0.4.120 does not utilize secure communication methods to the SOAP interface. By default, all communication to/from the device's SOAP Interface (port 5000) is sent vi…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2021-20175	2024-11-21 14:46	2021-12-31	Show	GitHub Exploit DB Packet Storm

197968	7.5	HIGH Network	netgear	r6700_firmware	Netgear Nighthawk R6700 version 1.0.4.120 does not utilize secure communication methods to the web interface. By default, all communication to/from the device's web interface is sent via HTTP, which …	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2021-20174	2024-11-21 14:46	2021-12-31	Show	GitHub Exploit DB Packet Storm

197969	8.8	HIGH Network	netgear	r6700_firmware	Netgear Nighthawk R6700 version 1.0.4.120 contains a command injection vulnerability in update functionality of the device. By triggering a system update check via the SOAP interface, the device is s…	CWE-78 OS Command	CVE-2021-20173	2024-11-21 14:46	2021-12-31	Show	GitHub Exploit DB Packet Storm

197970	7.8	HIGH Local	netgear	genie_installer	All known versions of the Netgear Genie Installer for macOS contain a local privilege escalation vulnerability. The installer of the macOS version of Netgear Genie handles certain files in an insecur…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2021-20172	2024-11-21 14:46	2021-12-31	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed