Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 12:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228221 4.9 警告 マイクロソフト - 複数の Microsoft Windows 製品のカーネルにおける権限昇格の脆弱性 CWE-362
競合状態 		CVE-2013-1284 2013-04-16 16:53 2013-04-9 Show GitHub Exploit DB Packet Storm
228222 3.5 注意 マイクロソフト - Microsoft SharePoint Server 2013 におけるリスト項目の読み取り制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1290 2013-04-16 16:52 2013-04-9 Show GitHub Exploit DB Packet Storm
228223 9.3 危険 マイクロソフト - Microsoft リモートデスクトップ接続クライアントにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-1296 2013-04-16 16:49 2013-04-9 Show GitHub Exploit DB Packet Storm
228224 5 警告 レッドハット - JBoss Enterprise Portal Platform における任意のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0315 2013-04-16 16:28 2013-03-7 Show GitHub Exploit DB Packet Storm
228225 7.5 危険 レッドハット - JBoss Enterprise Portal Platform におけるサイトコンテンツを変更される脆弱性 CWE-287
不適切な認証 		CVE-2013-0314 2013-04-16 16:27 2013-03-7 Show GitHub Exploit DB Packet Storm
228226 6.8 警告 レッドハット - JBoss Enterprise Portal Platform の GateIn Portal コンポーネントにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-3532 2013-04-16 16:20 2012-08-23 Show GitHub Exploit DB Packet Storm
228227 9.3 危険 IBM - IBM Cognos Disclosure Management およびその他の製品における任意のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0501 2013-04-16 16:15 2013-04-5 Show GitHub Exploit DB Packet Storm
228228 9.3 危険 IBM - 複数の IBM 製品における任意のコマンドを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2012-5937 2013-04-16 15:56 2013-04-10 Show GitHub Exploit DB Packet Storm
228229 5 警告 OpenStack - 複数の OpenStack コンポーネントにおけるアクセスの制限を回避される脆弱性 CWE-287
不適切な認証 		CVE-2013-0282 2013-04-16 15:52 2013-02-20 Show GitHub Exploit DB Packet Storm
228230 5 警告 OpenStack - OpenStack Keystone の Grizzly および Folsom におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-0270 2013-04-16 15:47 2013-04-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
194091 4.3 MEDIUM
Network 		ibm transformation_extender_advanced IBM Standards Processing Engine (IBM Transformation Extender Advanced 9.0 and 10.0) does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cook… CWE-311
Missing Encryption of Sensitive Data 		CVE-2021-29883 2024-11-21 15:01 2021-10-22 Show GitHub Exploit DB Packet Storm
194092 8.1 HIGH
Network 		ibm storwize_v5000_software
storwize_v7000_software
storwize_v3700_software
storwize_v3500_software
san_volume_controller_firmware
spectrum_virtualize
spectrum_virtualize_for_public_clo… 		IBM Flash System 900 could allow an authenticated attacker to obtain sensitive information and cause a denial of service due to a restricted shell escape vulnerability. IBM X-Force ID: 206229. NVD-CWE-noinfo
CVE-2021-29873 2024-11-21 15:01 2021-10-22 Show GitHub Exploit DB Packet Storm
194093 5.4 MEDIUM
Network 		ibm security_risk_manager_on_cp4s IBM Security Risk Manager on CP4S 1.7.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functional… CWE-79
Cross-site Scripting 		CVE-2021-29912 2024-11-21 15:01 2021-10-20 Show GitHub Exploit DB Packet Storm
194094 5.4 MEDIUM
Network 		ibm business_automation_workflow IBM Business Automation Workflow 18.0, 19.0, 20.0, and 21.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the i… CWE-79
Cross-site Scripting 		CVE-2021-29878 2024-11-21 15:01 2021-10-19 Show GitHub Exploit DB Packet Storm
194095 8.8 HIGH
Network 		ibm
netapp 		cognos_analytics
oncommand_insight 		IBM Cognos Analytics 11.1.7 and 11.2.0 is vulnerable to priviledge escalation where a lower evel user could have access to the 'New Job' page to which they should not have access to. IBM X-Force ID: … NVD-CWE-noinfo
CVE-2021-29745 2024-11-21 15:01 2021-10-16 Show GitHub Exploit DB Packet Storm
194096 8.8 HIGH
Network 		ibm
netapp 		cognos_analytics
oncommand_insight 		IBM Cognos Analytics 11.1.7 and 11.2.0 could allow an authenticated user to execute code remotely due to incorrectly neutralizaing user-contrlled input that could be interpreted a a server-side inclu… CWE-94
Code Injection 		CVE-2021-29679 2024-11-21 15:01 2021-10-16 Show GitHub Exploit DB Packet Storm
194097 7.8 HIGH
Local 		hitachi it_operations_director
job_management_partner_1\/it_desktop_management-manager
job_management_partner_1\/it_desktop_management_2-manager
job_management_partner_1\/remote_control_agent
job… 		Hitachi JP1/IT Desktop Management 2 Agent 9 through 12 calls the SendMessageTimeoutW API with arbitrary arguments via a local pipe, leading to a local privilege escalation vulnerability. An attacker … NVD-CWE-noinfo
CVE-2021-29645 2024-11-21 15:01 2021-10-13 Show GitHub Exploit DB Packet Storm
194098 9.8 CRITICAL
Network 		hitachi it_operations_director
job_management_partner_1\/it_desktop_management-manager
job_management_partner_1\/it_desktop_management_2-manager
job_management_partner_1\/remote_control_agent
job… 		Hitachi JP1/IT Desktop Management 2 Agent 9 through 12 contains a remote code execution vulnerability because of an Integer Overflow. An attacker with network access to port 31016 may exploit this is… CWE-190
 Integer Overflow or Wraparound 		CVE-2021-29644 2024-11-21 15:01 2021-10-13 Show GitHub Exploit DB Packet Storm
194099 5.5 MEDIUM
Local 		ibm app_connect_enterprise_certified_container IBM App Connect Enterprise Certified Container 1.0, 1.1, 1.2, 1.3, 1.4 and 1.5 could disclose sensitive information to a local user when it is configured to use an IBM Cloud API key to connect to clo… NVD-CWE-noinfo
CVE-2021-29906 2024-11-21 15:01 2021-10-9 Show GitHub Exploit DB Packet Storm
194100 4.3 MEDIUM
Network 		ibm sterling_b2b_integrator IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 6.1.1.0 could allow an authneticated attacker to obtain sensitive information from configuration files that could aid in further attacks a… NVD-CWE-noinfo
CVE-2021-29700 2024-11-21 15:01 2021-10-8 Show GitHub Exploit DB Packet Storm