Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257871	6.9	警告	VMware	-	複数の VMware 製品の vmware-authd における権限を取得される脆弱性	CWE-Other その他	CVE-2008-0967	2010-09-13 16:02	2008-06-4	Show	GitHub Exploit DB Packet Storm

257872	7.2	危険	VMware	-	複数の VMware 製品におけるメモリ破損の脆弱性	CWE-399 リソース管理の問題	CVE-2008-4917	2010-09-13 16:01	2008-12-2	Show	GitHub Exploit DB Packet Storm

257873	6.8	警告	VMware	-	複数の VMware 製品の CPU ハードウェアエミュレーションにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-4279	2010-09-13 16:01	2008-10-3	Show	GitHub Exploit DB Packet Storm

257874	2.1	注意	VMware	-	VMware ESX の VMware Consolidated Backup コマンドラインユーティリティにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-2101	2010-09-13 16:01	2008-08-29	Show	GitHub Exploit DB Packet Storm

257875	9	危険	VMware	-	VMware ESXi および ESX の openwsman management service におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-2097	2010-09-13 16:01	2008-06-4	Show	GitHub Exploit DB Packet Storm

257876	6.9	警告	VMware	-	Windows 上で稼働する複数の VMware 製品の VMCI における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2008-2099	2010-09-13 16:00	2008-05-30	Show	GitHub Exploit DB Packet Storm

257877	6.9	警告	VMware	-	複数の VMware 製品の HGFS におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-2098	2010-09-13 16:00	2008-05-30	Show	GitHub Exploit DB Packet Storm

257878	5	警告	VMware	-	複数の VMware 製品の VMware Authentication Daemon におけるサービス運用妨害 (DoS) の脆弱性	CWE-134 書式文字列の問題	CVE-2009-4811	2010-09-13 16:00	2010-04-27	Show	GitHub Exploit DB Packet Storm

257879	7.2	危険	VMware	-	Windows 上で稼働する複数の VMware 製品の OpenProcess 関数における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-3698	2010-09-13 15:59	2008-08-29	Show	GitHub Exploit DB Packet Storm

257880	10	危険	VMware	-	複数の VMware 製品の ActiveX コントロールにおける脆弱性	CWE-noinfo 情報不足	CVE-2008-3696	2010-09-13 15:59	2008-08-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196241	9.8	CRITICAL Network	set-getter_project	set-getter	Prototype pollution vulnerability in 'set-getter' version 0.1.0 allows an attacker to cause a denial of service and may lead to remote code execution.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2021-25949	2024-11-21 14:55	2021-06-10	Show	GitHub Exploit DB Packet Storm

196242	9.8	CRITICAL Network	expand-hash_project	expand-hash	Prototype pollution vulnerability in 'expand-hash' versions 0.1.0 through 1.0.1 allows an attacker to cause a denial of service and may lead to remote code execution.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2021-25948	2024-11-21 14:55	2021-06-10	Show	GitHub Exploit DB Packet Storm

196243	5.5	MEDIUM Local	openexr fedoraproject debian	openexr fedora debian_linux	An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR in versions before 3.0.1. An attacker could use this flaw to crash an application compiled with OpenEXR…	-	CVE-2021-26260	2024-11-21 14:55	2021-06-8	Show	GitHub Exploit DB Packet Storm

196244	6.1	MEDIUM Network	atlassian	jira_server jira_data_center	EditworkflowScheme.jspa in Jira Server and Jira Data Center before version 8.5.14, and from version 8.6.0 before version 8.13.6, and from 8.14.0 before 8.16.1 allows remote attackers to inject arbitr…	CWE-79 Cross-site Scripting	CVE-2021-26080	2024-11-21 14:55	2021-06-8	Show	GitHub Exploit DB Packet Storm

196245	6.1	MEDIUM Network	atlassian	data_center jira jira_server jira_data_center	The CardLayoutConfigTable component in Jira Server and Jira Data Center before version 8.5.15, and from version 8.6.0 before version 8.13.7, and from version 8.14.0 before 8.17.0 allows remote attack…	CWE-79 Cross-site Scripting	CVE-2021-26079	2024-11-21 14:55	2021-06-8	Show	GitHub Exploit DB Packet Storm

196246	6.1	MEDIUM Network	atlassian	data_center jira jira_server	The number range searcher component in Jira Server and Jira Data Center before version 8.5.14, from version 8.6.0 before version 8.13.6, and from version 8.14.0 before version 8.16.1 allows remote at…	CWE-79 Cross-site Scripting	CVE-2021-26078	2024-11-21 14:55	2021-06-8	Show	GitHub Exploit DB Packet Storm

196247	9.8	CRITICAL Network	nestie_project	nestie	Prototype pollution vulnerability in 'nestie' versions 0.0.0 through 1.0.0 allows an attacker to cause a denial of service and may lead to remote code execution.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2021-25947	2024-11-21 14:55	2021-06-4	Show	GitHub Exploit DB Packet Storm

196248	6.5	MEDIUM Adjacent	fortinet	fortiswitch	A missing release of memory after effective lifetime vulnerability in FortiSwitch 6.4.0 to 6.4.6, 6.2.0 to 6.2.6, 6.0.0 to 6.0.6, 3.6.11 and below may allow an attacker on an adjacent network to exha…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2021-26111	2024-11-21 14:55	2021-06-2	Show	GitHub Exploit DB Packet Storm

196249	6.1	MEDIUM Network	apache	dubbo	In Apache Dubbo prior to 2.6.9 and 2.7.9, the usage of parseURL method will lead to the bypass of white host check which can cause open redirect or SSRF vulnerability.	CWE-601 CWE-918 Open Redirect Server-Side Request Forgery (SSRF)	CVE-2021-25640	2024-11-21 14:55	2021-06-1	Show	GitHub Exploit DB Packet Storm

196250	9.8	CRITICAL Network	apache	dubbo	Each Apache Dubbo server will set a serialization id to tell the clients which serialization protocol it is working on. But for Dubbo versions before 2.7.8 or 2.6.9, an attacker can choose which seri…	CWE-502 Deserialization of Untrusted Data	CVE-2021-25641	2024-11-21 14:55	2021-06-1	Show	GitHub Exploit DB Packet Storm