Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227331	4.3	警告	ジュニパーネットワークス	-	Juniper SmartPass WLAN Security Management におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-3498	2013-05-10 14:51	2013-05-8	Show	GitHub Exploit DB Packet Storm

227332	4.7	警告	ジュニパーネットワークス	-	Junos Space JA1500 アプライアンスなどで使用される Juniper Junos Space におけるパスワードを取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2013-3497	2013-05-10 14:51	2013-05-8	Show	GitHub Exploit DB Packet Storm

227333	3.5	注意	シマンテック	-	Symantec Brightmail Gateway におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-1611	2013-05-10 14:07	2013-05-8	Show	GitHub Exploit DB Packet Storm

227334	4.3	警告	Invensys	-	Invensys Wonderware Information Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0688	2013-05-10 14:07	2013-05-7	Show	GitHub Exploit DB Packet Storm

227335	9.3	危険	Invensys	-	Invensys Wonderware Information Server における任意のファイルを読まれる脆弱性	CWE-20 不適切な入力確認	CVE-2013-0686	2013-05-10 14:06	2013-05-7	Show	GitHub Exploit DB Packet Storm

227336	9.3	危険	Invensys	-	Invensys Wonderware Information Server における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0685	2013-05-10 14:06	2013-05-7	Show	GitHub Exploit DB Packet Storm

227337	7.5	危険	Invensys	-	Invensys Wonderware Information Server における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-0684	2013-05-10 14:05	2013-05-7	Show	GitHub Exploit DB Packet Storm

227338	9.3	危険	IBM	-	IBM WebSphere DataPower XC10 アプライアンスデバイスにおける認証を回避される脆弱性	CWE-noinfo 情報不足	CVE-2013-0600	2013-05-10 14:04	2013-05-3	Show	GitHub Exploit DB Packet Storm

227339	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-1876	2013-05-9 19:47	2012-06-12	Show	GitHub Exploit DB Packet Storm

227340	6.8	警告	GroundWork	-	GroundWork Monitor Enterprise におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-3513	2013-05-9 16:33	2013-03-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195511	7.1	HIGH Local	amd	epyc_7763_firmware epyc_7713p_firmware epyc_7713_firmware epyc_7663_firmware epyc_7643_firmware epyc_75f3_firmware epyc_7543p_firmware epyc_7543_firmware epyc_7513_firmware	Improper validation of destination address in SVC_LOAD_FW_IMAGE_BY_INSTANCE and SVC_LOAD_BINARY_BY_ATTRIB in a malicious UApp or ABL may allow an attacker to overwrite arbitrary bootloader memory wit…	CWE-20 Improper Input Validation	CVE-2021-26370	2024-11-21 14:56	2022-05-11	Show	GitHub Exploit DB Packet Storm

195512	7.8	HIGH Local	amd	epyc_7763_firmware epyc_7713p_firmware epyc_7713_firmware epyc_7663_firmware epyc_7643_firmware epyc_75f3_firmware epyc_7543p_firmware epyc_7543_firmware epyc_7513_firmware	Failure to validate inputs in SMM may allow an attacker to create a mishandled error leaving the DRTM UApp in a partially initialized state potentially resulting in loss of memory integrity.	CWE-665 Improper Initialization	CVE-2021-26353	2024-11-21 14:56	2022-05-11	Show	GitHub Exploit DB Packet Storm

195513	5.5	MEDIUM Local	amd	ryzen_5_2600_firmware ryzen_5_2600x_firmware ryzen_5_2700x_firmware ryzen_5_2700_firmware ryzen_5_3600_firmware ryzen_5_3600x_firmware ryzen_7_3700x_firmware ryzen_7_3800x_firmwa…	Insufficient bound checks in System Management Unit (SMU) PCIe Hot Plug table may result in access/updates from/to invalid address space that could result in denial of service.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2021-26352	2024-11-21 14:56	2022-05-11	Show	GitHub Exploit DB Packet Storm

195514	7.1	HIGH Local	amd	epyc_7763_firmware epyc_7713p_firmware epyc_7713_firmware epyc_7663_firmware epyc_7643_firmware epyc_75f3_firmware epyc_7543p_firmware epyc_7543_firmware epyc_7513_firmware	Failure to verify SEV-ES TMR is not in MMIO space, SEV-ES FW could result in a potential loss of integrity or availability.	NVD-CWE-noinfo	CVE-2021-26332	2024-11-21 14:56	2022-05-11	Show	GitHub Exploit DB Packet Storm

195515	7.8	HIGH Local	amd	epyc_7763_firmware epyc_7713p_firmware epyc_7713_firmware epyc_7663_firmware epyc_7643_firmware epyc_75f3_firmware epyc_7543p_firmware epyc_7543_firmware epyc_7513_firmware	A bug with the SEV-ES TMR may lead to a potential loss of memory integrity for SNP-active VMs.	NVD-CWE-noinfo	CVE-2021-26324	2024-11-21 14:56	2022-05-11	Show	GitHub Exploit DB Packet Storm

195516	8.8	HIGH Network	tobesoft	xplatform	A path traversal vulnerability in XPLATFORM's runtime archive function could lead to arbitrary file creation. When the .xzip archive file is decompressed, an arbitrary file can be d in the parent pat…	CWE-22 Path Traversal	CVE-2021-26629	2024-11-21 14:56	2022-04-27	Show	GitHub Exploit DB Packet Storm

195517	6.1	MEDIUM Network	maxb	maxboard	Insufficient script validation of the admin page enables XSS, which causes unauthorized users to steal admin privileges. When uploading file in a specific menu, the verification of the files is insuf…	CWE-79 Cross-site Scripting	CVE-2021-26628	2024-11-21 14:56	2022-04-27	Show	GitHub Exploit DB Packet Storm

195518	7.5	HIGH Network	qcp	qcp200w_firmware	Real-time image information exposure is caused by insufficient authentication for activated RTSP port. This vulnerability could allow to remote attackers to send the RTSP requests using ffplay comman…	CWE-287 Improper Authentication	CVE-2021-26627	2024-11-21 14:56	2022-04-20	Show	GitHub Exploit DB Packet Storm

195519	8.8	HIGH Network	tobesoft	xplatform	Improper input validation vulnerability in XPLATFORM's execBrowser method can cause execute arbitrary commands. IF the second parameter value of the execBrowser function is ‘default’, the first param…	CWE-20 Improper Input Validation	CVE-2021-26626	2024-11-21 14:56	2022-04-20	Show	GitHub Exploit DB Packet Storm

195520	8.8	HIGH Network	tobesoft	nexacro	Insufficient Verification of input Data leading to arbitrary file download and execute was discovered in Nexacro platform. This vulnerability is caused by an automatic update function that does not v…	CWE-345 Insufficient Verification of Data Authenticity	CVE-2021-26625	2024-11-21 14:56	2022-04-20	Show	GitHub Exploit DB Packet Storm