Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258311	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
194401	7.5	HIGH Network	mangboard	mang_board	A vulnerability was found in Mangboard(WordPress plugin). A SQL-Injection vulnerability was found in order_type parameter. The order_type parameter makes a SQL query using unfiltered data. This vulne…	CWE-89 SQL Injection	CVE-2021-26609	2024-11-21 14:56	2021-10-26	Show	GitHub Exploit DB Packet Storm

194402	9.8	CRITICAL Network	tobesoft	nexacro	An Improper input validation in execDefaultBrowser method of NEXACRO17 allows a remote attacker to execute arbitrary command on affected systems.	CWE-20 Improper Input Validation	CVE-2021-26607	2024-11-21 14:56	2021-10-26	Show	GitHub Exploit DB Packet Storm

194403	6.1	MEDIUM Network	hpe	superdome_flex_firmware superdome_flex_280_firmware	A potential security vulnerability has been identified in HPE Superdome Flex Servers. The vulnerability could be remotely exploited to allow Cross Site Scripting (XSS) because the Session Cookie is m…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2021-26589	2024-11-21 14:56	2021-10-20	Show	GitHub Exploit DB Packet Storm

194404	4.7	MEDIUM Local	amd	athlon_firmware athlon_pro_firmware epyc_firmware ryzen_firmware ryzen_pro_firmware	A timing and power-based side channel attack leveraging the x86 PREFETCH instructions on some AMD CPUs could potentially result in leaked kernel address space information.	CWE-203 Information Exposure Through Discrepancy	CVE-2021-26318	2024-11-21 14:56	2021-10-14	Show	GitHub Exploit DB Packet Storm

194405	7.0	HIGH Local	microsoft	windows_server_2008 windows_server_2012 windows_8.1 windows_server_2016 windows_rt_8.1 windows_10 windows_server_2019 windows_server_2022 windows_7 windows_11	Windows HTTP.sys Elevation of Privilege Vulnerability	NVD-CWE-noinfo	CVE-2021-26442	2024-11-21 14:56	2021-10-13	Show	GitHub Exploit DB Packet Storm

194406	7.8	HIGH Local	microsoft	windows_10 windows_server_2012 windows_server_2016 windows_rt_8.1 windows_8.1 windows_server_2019 windows_11 windows_server_2022 windows_server	Storage Spaces Controller Elevation of Privilege Vulnerability	CWE-269 Improper Privilege Management	CVE-2021-26441	2024-11-21 14:56	2021-10-13	Show	GitHub Exploit DB Packet Storm

194407	9.0	CRITICAL Adjacent	microsoft	exchange_server	Microsoft Exchange Server Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2021-26427	2024-11-21 14:56	2021-10-13	Show	GitHub Exploit DB Packet Storm

194408	9.8	CRITICAL Network	hpe	3par_os primera_630_firmware primera_650_firmware primera_670_firmware alletra_9060_firmware alletra_9080_firmware	A potential security vulnerability has been identified in HPE 3PAR StoreServ, HPE Primera Storage and HPE Alletra 9000 Storage array firmware. An unauthenticated user could remotely exploit the low c…	NVD-CWE-noinfo	CVE-2021-26588	2024-11-21 14:56	2021-10-12	Show	GitHub Exploit DB Packet Storm

194409	7.8	HIGH Local	octopus	tentacle	When Octopus Tentacle is installed using a custom folder location, folder ACLs are not set correctly and could lead to an unprivileged user using DLL side-loading to gain privileged access.	CWE-426 Untrusted Search Path	CVE-2021-26557	2024-11-21 14:56	2021-10-7	Show	GitHub Exploit DB Packet Storm

194410	7.8	HIGH Local	octopus	octopus_deploy octopus_server	When Octopus Server is installed using a custom folder location, folder ACLs are not set correctly and could lead to an unprivileged user using DLL side-loading to gain privileged access.	CWE-426 Untrusted Search Path	CVE-2021-26556	2024-11-21 14:56	2021-10-7	Show	GitHub Exploit DB Packet Storm