Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249351	6.4	警告	Atlassian	-	複数の Atlassian 製品における任意のファイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2926	2012-05-23 16:23	2012-05-22	Show	GitHub Exploit DB Packet Storm

249352	2.6	注意	Xelex	-	Android 用の Xelex MobileTrack アプリケーションにおける重要な情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2012-2567	2012-05-23 15:35	2012-05-22	Show	GitHub Exploit DB Packet Storm

249353	7.6	危険	Xelex	-	Android 用の Xelex MobileTrack アプリケーションにおけるコマンドを実行される脆弱性	CWE-20 CWE-287	CVE-2012-2562	2012-05-23 15:33	2012-05-22	Show	GitHub Exploit DB Packet Storm

249354	10	危険	シマンテック	-	Symantec Web Gateway の管理画面における任意のコードをアップロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-0299	2012-05-23 13:50	2012-05-17	Show	GitHub Exploit DB Packet Storm

249355	6.4	警告	シマンテック	-	Symantec Web Gateway の管理画面のファイル管理スクリプトにおける任意のファイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-0298	2012-05-23 13:47	2012-05-17	Show	GitHub Exploit DB Packet Storm

249356	10	危険	シマンテック	-	Symantec Web Gateway の管理画面における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-0297	2012-05-23 13:46	2012-05-17	Show	GitHub Exploit DB Packet Storm

249357	4.3	警告	シマンテック	-	Symantec Web Gateway の管理画面におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0296	2012-05-23 13:41	2012-05-17	Show	GitHub Exploit DB Packet Storm

249358	10	危険	X.Org Foundation	-	X.Org X11 の os/log.c 内の LogVHdrMessageVerb 関数におけるフォーマットストリングの脆弱性	CWE-20 不適切な入力確認	CVE-2012-2118	2012-05-22 16:19	2012-05-18	Show	GitHub Exploit DB Packet Storm

249359	3.3	注意	Debian	-	texlive-extra-utils の latex2man における任意のファイルを上書される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2120	2012-05-22 16:02	2012-05-18	Show	GitHub Exploit DB Packet Storm

249360	10	危険	The PHP Group	-	PHP の com_print_typeinfo 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-2376	2012-05-22 11:53	2012-05-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196501	8.1	HIGH Network	haxx oracle netapp siemens splunk	curl mysql_server essbase communications_cloud_native_core_network_slice_selection_function communications_cloud_native_core_network_repository_function communications_cloud_native_cor…	curl 7.75.0 through 7.76.1 suffers from a use-after-free vulnerability resulting in already freed memory being used when a TLS 1.3 session ticket arrives over a connection. A malicious server can use…	CWE-416 Use After Free	CVE-2021-22901	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm

196502	4.3	MEDIUM Network	nextcloud	nextcloud	Nextcloud Mail before 1.9.5 suffers from improper access control due to a missing permission check allowing other authenticated users to create mail aliases for other users.	CWE-862 Missing Authorization	CVE-2021-22896	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm

196503	5.9	MEDIUM Network	nextcloud debian	desktop debian_linux	Nextcloud Desktop Client before 3.3.1 is vulnerable to improper certificate validation due to lack of SSL certificate verification when using the "Register with a Provider" flow.	CWE-295 Improper Certificate Validation	CVE-2021-22895	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm

196504	4.3	MEDIUM Network	schneider-electric	easergy_t300_firmware	A CWE-552: Files or Directories Accessible to External Parties vulnerability exists in Easergy T300 with firmware V2.7.1 and older that could expose files or directory content when access from an att…	-	CVE-2021-22769	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm

196505	9.8	CRITICAL Network	schneider-electric	powerlogic_egx100_firmware powerlogic_egx300_firmware	A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 (Versions 3.0.0 and newer) and PowerLogic EGX300 (All Versions) that could cause denial of service or remote code executi…	-	CVE-2021-22768	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm

196506	3.1	LOW Network	haxx debian fedoraproject oracle siemens splunk	curl debian_linux fedora mysql_server essbase communications_cloud_native_core_network_slice_selection_function communications_cloud_native_core_network_repository_function commu…	curl 7.7 through 7.76.1 suffers from an information disclosure when the `-t` command line option, known as `CURLOPT_TELNETOPTIONS` in libcurl, is used to send variable=content pairs to TELNET servers…	CWE-909 Missing Initialization of Resource	CVE-2021-22898	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm

196507	5.3	MEDIUM Network	haxx oracle netapp siemens splunk	curl mysql_server essbase communications_cloud_native_core_network_slice_selection_function communications_cloud_native_core_network_repository_function communications_cloud_native_cor…	curl 7.61.0 through 7.76.1 suffers from exposure of data element to wrong session due to a mistake in the code for CURLOPT_SSL_CIPHER_LIST when libcurl is built to use the Schannel TLS library. The s…	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2021-22897	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm

196508	9.8	CRITICAL Network	schneider-electric	powerlogic_egx100_firmware powerlogic_egx300_firmware	A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 (Versions 3.0.0 and newer) and PowerLogic EGX300 (All Versions) that could cause denial of service or remote code executi…	-	CVE-2021-22767	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm

196509	7.5	HIGH Network	schneider-electric	powerlogic_egx100_firmware powerlogic_egx300_firmware	A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 (Versions 3.0.0 and newer) and PowerLogic EGX300 (All Versions) that could cause denial of service via a specially crafte…	-	CVE-2021-22766	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm

196510	9.8	CRITICAL Network	schneider-electric	powerlogic_egx100_firmware powerlogic_egx300_firmware	A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 (Versions 3.0.0 and newer) and PowerLogic EGX300 (All Versions) that could cause denial of service or remote code executi…	CWE-20 Improper Input Validation	CVE-2021-22765	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm