Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
221 4.5 警告
Adjacent 		ネットギア RBE970 FIRMWARE ネットギアのRBE970 FIRMWAREにおけるコードインジェクションの脆弱性 New CWE-94
コード・インジェクション 		CVE-2026-0414 2026-06-22 11:45 2026-06-9 Show GitHub Exploit DB Packet Storm
222 4.5 警告
Adjacent 		ネットギア RBRE950 FIRMWARE
RBR750 ファームウェア
RBS750 ファームウェア
RBS860 FIRMWARE
RBR860 FIRMWARE
RBE970 FIRMWARE
RBR840 ファームウェア
RBRE960 ファームウェア
RBSE960&n… 		ネットギアのRBE970 FIRMWARE等の複数製品における入力確認に関する脆弱性 New CWE-20
不適切な入力確認 		CVE-2026-0415 2026-06-22 11:45 2026-06-9 Show GitHub Exploit DB Packet Storm
223 4.5 警告
Adjacent 		ネットギア RAXE450 Firmware
RAXE500 Firmware 		ネットギアのRAXE450 Firmware等の複数製品における入力確認に関する脆弱性 New CWE-20
CWE-noinfo
CVE-2026-0416 2026-06-22 11:44 2026-06-9 Show GitHub Exploit DB Packet Storm
224 8 重要
Adjacent 		ネットギア JR6150 ファームウェア ネットギアのJR6150 ファームウェアにおける入力確認に関する脆弱性 New CWE-20
不適切な入力確認 		CVE-2026-0419 2026-06-22 11:44 2026-06-9 Show GitHub Exploit DB Packet Storm
225 5.9 警告
Network 		ネットギア RAX35 ファームウェア
RAX38 ファームウェア 		ネットギアのRAX120 ファームウェア等の複数製品における暗号化処理の不備に関する脆弱性 New CWE-325
暗号化処理の不備 		CVE-2026-0420 2026-06-22 11:44 2026-06-9 Show GitHub Exploit DB Packet Storm
226 7.5 重要
Network 		Stichting NLnet Labs ldns NLnet LabsのLDNSにおける同一生成元ポリシー違反に関する脆弱性 New CWE-346
同一生成元ポリシー違反 		CVE-2026-10846 2026-06-22 11:44 2026-06-10 Show GitHub Exploit DB Packet Storm
227 7.2 重要
Network 		TP-LINK Technologies TL-WR940N ファームウェア TP-LINK TechnologiesのTL-WR940N ファームウェアにおけるOS コマンドインジェクションの脆弱性 New CWE-78
OSコマンド・インジェクション 		CVE-2026-11409 2026-06-22 11:44 2026-06-17 Show GitHub Exploit DB Packet Storm
228 7.2 重要
Network 		TP-LINK Technologies TL-WR940N ファームウェア TP-LINK TechnologiesのTL-WR940N ファームウェアにおけるOS コマンドインジェクションの脆弱性 New CWE-78
OSコマンド・インジェクション 		CVE-2026-11410 2026-06-22 11:44 2026-06-17 Show GitHub Exploit DB Packet Storm
229 6.5 警告
Network 		Devolutions Devolutions Server DevolutionsのDevolutions Serverにおける認証の欠如に関する脆弱性 New CWE-862
認証の欠如 		CVE-2026-12105 2026-06-22 11:44 2026-06-16 Show GitHub Exploit DB Packet Storm
230 4.3 警告
Network 		Devolutions Devolutions Server DevolutionsのDevolutions Serverにおける情報漏えいに関する脆弱性 New CWE-200
情報漏えい 		CVE-2026-12117 2026-06-22 11:44 2026-06-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
191431 8.8 HIGH
Network 		ruby-lang
fedoraproject 		cgi
fedora
ruby 		The cgi gem before 0.1.0.2, 0.2.x before 0.2.2, and 0.3.x before 0.3.5 for Ruby allows HTTP response splitting. This is relevant to applications that use untrusted user input either to generate an HT… CWE-74
Injection 		CVE-2021-33621 2024-11-21 15:09 2022-11-19 Show GitHub Exploit DB Packet Storm
191432 5.5 MEDIUM
Local 		synthesiagame synthesia A buffer overflow in Synthesia before 10.7.5567, when a non-Latin locale is used, allows user-assisted attackers to cause a denial of service (application crash) via a crafted MIDI file with malforme… CWE-120
Classic Buffer Overflow 		CVE-2021-33897 2024-11-21 15:09 2022-11-18 Show GitHub Exploit DB Packet Storm
191433 7.8 HIGH
Local 		jhead_project
debian 		jhead
debian_linux 		jhead 3.06 is vulnerable to Buffer Overflow via exif.c in function Put16u. CWE-120
Classic Buffer Overflow 		CVE-2021-34055 2024-11-21 15:09 2022-11-5 Show GitHub Exploit DB Packet Storm
191434 5.5 MEDIUM
Local 		sox_project sox A floating point exception (divide-by-zero) issue was discovered in SoX in functon startread() of wav.c file. An attacker with a crafted wav file, could cause an application to crash. - CVE-2021-33844 2024-11-21 15:09 2022-08-26 Show GitHub Exploit DB Packet Storm
191435 7.8 HIGH
Local 		intel wi-fi_6_ax411_firmware
wi-fi_6_ax211_firmware
wi-fi_6_ax210_firmware
wi-fi_6_ax201_firmware
wi-fi_6_ax200_firmware
wireless-ac_9560_firmware
wireless-ac_9462_firmware
wireless-ac… 		Improper buffer restrictions in firmware for some Intel(R) Wireless Bluetooth(R) and Killer(TM) Bluetooth(R) products before version 22.120 may allow an authenticated user to potentially enable escal… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2021-33847 2024-11-21 15:09 2022-08-19 Show GitHub Exploit DB Packet Storm
191436 7.5 HIGH
Network 		feep
huawei
fedoraproject 		libtar
openeuler
fedora 		The th_read() function doesn’t free a variable t->th_buf.gnu_longname after allocating memory, which may cause a memory leak. CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2021-33646 2024-11-21 15:09 2022-08-11 Show GitHub Exploit DB Packet Storm
191437 7.5 HIGH
Network 		feep
huawei
fedoraproject 		libtar
openeuler
fedora 		The th_read() function doesn’t free a variable t->th_buf.gnu_longlink after allocating memory, which may cause a memory leak. CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2021-33645 2024-11-21 15:09 2022-08-11 Show GitHub Exploit DB Packet Storm
191438 8.1 HIGH
Network 		feep
huawei
fedoraproject 		libtar
openeuler
fedora 		An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longname, causing an out-of-bounds read. CWE-125
Out-of-bounds Read 		CVE-2021-33644 2024-11-21 15:09 2022-08-11 Show GitHub Exploit DB Packet Storm
191439 9.1 CRITICAL
Network 		feep
huawei
fedoraproject 		libtar
openeuler
fedora 		An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longlink, causing an out-of-bounds read. CWE-125
Out-of-bounds Read 		CVE-2021-33643 2024-11-21 15:09 2022-08-11 Show GitHub Exploit DB Packet Storm
191440 6.8 MEDIUM
Physics 		huawei
linux
debian 		openeuler
linux_kernel
debian_linux 		When setting font with malicous data by ioctl cmd PIO_FONT,kernel will write memory out of bounds. CWE-787
 Out-of-bounds Write 		CVE-2021-33656 2024-11-21 15:09 2022-07-19 Show GitHub Exploit DB Packet Storm