Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257281 7.8 危険 サイバートラスト株式会社
Linux
レッドハット		 - Linux kernel の e1000_clean_rx_irq 関数における整数アンダーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-1385 2010-02-15 11:03 2009-06-4 Show GitHub Exploit DB Packet Storm
257282 4.6 警告 サイバートラスト株式会社
Todd C. Miller		 - sudo の Perl スクリプト実行時における権限昇格の脆弱性 - CVE-2005-4158 2010-02-15 11:03 2005-11-8 Show GitHub Exploit DB Packet Storm
257283 1 注意 オラクル - Oracle Database および Oracle Application Server の Unzip コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3412 2010-02-12 12:22 2010-01-12 Show GitHub Exploit DB Packet Storm
257284 3.2 注意 オラクル - Oracle Database の Oracle Spatial コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3413 2010-02-12 12:22 2010-01-12 Show GitHub Exploit DB Packet Storm
257285 3.6 注意 オラクル - Oracle Database の RDBMS コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3410 2010-02-12 12:21 2010-01-12 Show GitHub Exploit DB Packet Storm
257286 4 警告 オラクル - Oracle Database の Logical Standby コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-1996 2010-02-12 12:21 2010-01-12 Show GitHub Exploit DB Packet Storm
257287 4.9 警告 オラクル - Oracle Database の Oracle Spatial コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3414 2010-02-12 12:21 2010-01-12 Show GitHub Exploit DB Packet Storm
257288 4.9 警告 オラクル - Oracle Database の Oracle Data Pump コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3411 2010-02-12 12:21 2010-01-12 Show GitHub Exploit DB Packet Storm
257289 6 警告 オラクル - Oracle Database の Application Express Application Builder コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0076 2010-02-12 12:21 2010-01-12 Show GitHub Exploit DB Packet Storm
257290 9 危険 オラクル - Oracle Database の Oracle OLAP コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3415 2010-02-12 12:20 2010-01-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
194861 7.8 HIGH
Local 		microsoft excel
office_web_apps 		Microsoft Excel Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2021-24068 2024-11-21 14:52 2021-02-26 Show GitHub Exploit DB Packet Storm
194862 7.8 HIGH
Local 		microsoft excel
office_web_apps
office_online_server
office
365_apps 		Microsoft Excel Remote Code Execution Vulnerability CWE-416
 Use After Free 		CVE-2021-24067 2024-11-21 14:52 2021-02-26 Show GitHub Exploit DB Packet Storm
194863 8.8 HIGH
Network 		microsoft sharepoint_foundation
sharepoint_enterprise_server
sharepoint_server 		Microsoft SharePoint Remote Code Execution Vulnerability CWE-502
 Deserialization of Untrusted Data 		CVE-2021-24066 2024-11-21 14:52 2021-02-26 Show GitHub Exploit DB Packet Storm
194864 9.8 CRITICAL
Network 		botan_project botan In Botan before 2.17.3, constant-time computations are not used for certain decoding and encoding operations (base32, base58, base64, and hex). NVD-CWE-noinfo
CVE-2021-24115 2024-11-21 14:52 2021-02-22 Show GitHub Exploit DB Packet Storm
194865 8.8 HIGH
Network 		mcafee web_gateway Privilege escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.8 allows an authenticated user to gain elevated privileges through the User Interface and execute commands on the appliance… NVD-CWE-Other
CVE-2021-23885 2024-11-21 14:52 2021-02-17 Show GitHub Exploit DB Packet Storm
194866 9.1 CRITICAL
Network 		apache
netapp 		nutch
snap_creator_framework 		An XML external entity (XXE) injection vulnerability was discovered in the Nutch DmozParser and is known to affect Nutch versions < 1.18. XML external entity injection (also known as XXE) is a web se… CWE-611
XXE 		CVE-2021-23901 2024-11-21 14:52 2021-01-25 Show GitHub Exploit DB Packet Storm
194867 9.1 CRITICAL
Network 		apache
netapp
debian
oracle 		xmlbeans
snap_creator_framework
snapmanager
oncommand_unified_manager_core_package
debian_linux
peoplesoft_enterprise_peopletools
middleware_common_libraries_and_tools 		The XML parsers used by XMLBeans up to version 2.6.0 did not set the properties needed to protect the user from malicious XML input. Vulnerabilities include possibilities for XML Entity Expansion att… CWE-776
XML Entity Expansion 		CVE-2021-23926 2024-11-21 14:52 2021-01-15 Show GitHub Exploit DB Packet Storm
194868 5.9 MEDIUM
Network 		apache
debian
oracle 		tomcat
debian_linux
agile_plm 		When serving resources from a network location using the NTFS file system, Apache Tomcat versions 10.0.0-M1 to 10.0.0-M9, 9.0.0.M1 to 9.0.39, 8.5.0 to 8.5.59 and 7.0.0 to 7.0.106 were susceptible to … CWE-706
 Use of Incorrectly-Resolved Name or Reference 		CVE-2021-24122 2024-11-21 14:52 2021-01-15 Show GitHub Exploit DB Packet Storm
194869 7.5 HIGH
Network 		owasp json-sanitizer OWASP json-sanitizer before 1.2.2 can output invalid JSON or throw an undeclared exception for crafted input. This may lead to denial of service if the application is not prepared to handle these sit… NVD-CWE-noinfo
CVE-2021-23900 2024-11-21 14:52 2021-01-14 Show GitHub Exploit DB Packet Storm
194870 9.8 CRITICAL
Network 		owasp json-sanitizer OWASP json-sanitizer before 1.2.2 may emit closing SCRIPT tags and CDATA section delimiters for crafted input. This allows an attacker to inject arbitrary HTML or XML into embedding documents. CWE-611
XXE 		CVE-2021-23899 2024-11-21 14:52 2021-01-14 Show GitHub Exploit DB Packet Storm