Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258661	7.1	危険	アップル	-	複数の Apple 製品上で稼働するネットワークブリッジ機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-1804	2011-01-19 16:36	2010-12-22	Show	GitHub Exploit DB Packet Storm

258662	2.6	注意	アップル	-	複数の Apple 製品上で稼働する Application-Level Gateway におけるデバイスの IP アドレスを使用される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0039	2011-01-19 16:34	2010-12-22	Show	GitHub Exploit DB Packet Storm

258663	-	-	Invensys	-	Wonderware InBatch と I/A Series Batch の database lock manager service (lm_tcp) にバッファオーバーフローの脆弱性	-	-	2011-01-19 15:54	2010-12-16	Show	GitHub Exploit DB Packet Storm

258664	6.9	警告	Exim Development レッドハット	-	Exim における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-4345	2011-01-19 15:41	2010-12-14	Show	GitHub Exploit DB Packet Storm

258665	4	警告	マイクロソフト	-	x64 プラットフォーム上で稼働している Microsoft Exchange Server 2007 におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-3937	2011-01-19 15:31	2010-12-14	Show	GitHub Exploit DB Packet Storm

258666	9.3	危険	マイクロソフト	-	Microsoft Office XP および Office Converter Pack における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-3952	2011-01-19 15:28	2010-12-14	Show	GitHub Exploit DB Packet Storm

258667	9.3	危険	マイクロソフト	-	Microsoft Office XP および Office Converter Pack におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3951	2011-01-18 14:26	2010-12-14	Show	GitHub Exploit DB Packet Storm

258668	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-3950	2011-01-18 14:24	2010-12-14	Show	GitHub Exploit DB Packet Storm

258669	9.3	危険	マイクロソフト	-	Microsoft Windows XP および Office Converter Pack におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3949	2011-01-18 14:22	2010-12-14	Show	GitHub Exploit DB Packet Storm

258670	9.3	危険	マイクロソフト	-	複数の Microsoft 製品におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3947	2011-01-18 14:20	2010-12-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195891	6.5	MEDIUM Network	libxls_project fedoraproject	libxls fedora	An issue was discoverered in in function xls_getWorkSheet in xls.c in libxls 1.6.2, allows attackers to cause a denial of service, via a crafted XLS file.	CWE-476 NULL Pointer Dereference	CVE-2021-27836	2024-11-21 14:58	2021-11-4	Show	GitHub Exploit DB Packet Storm

195892	7.5	HIGH Network	nsasoft	spotauditor	An issue was discovered in Nsasoft US LLC SpotAuditor 5.3.5. The program can be crashed by entering 300 bytes char data into the "Key" or "Name" field while registering.	CWE-120 Classic Buffer Overflow	CVE-2021-27722	2024-11-21 14:58	2021-11-2	Show	GitHub Exploit DB Packet Storm

195893	8.8	HIGH Network	apache	dolphinscheduler	In Apache DolphinScheduler before 1.3.6 versions, authorized users can use SQL injection in the data source center. (Only applicable to MySQL data source with internal login account password)	CWE-89 SQL Injection	CVE-2021-27644	2024-11-21 14:58	2021-11-1	Show	GitHub Exploit DB Packet Storm

195894	5.4	MEDIUM Network	hcltechsw	connections	"HCL Connections Security Update for Reflected Cross-Site Scripting (XSS) Vulnerability"	CWE-79 Cross-site Scripting	CVE-2021-27746	2024-11-21 14:58	2021-10-22	Show	GitHub Exploit DB Packet Storm

195895	7.8	HIGH Local	stb_project fedoraproject debian	stb fedora debian_linux	Buffer overflow vulnerability in function stbi__extend_receive in stb_image.h in stb 2.26 via a crafted JPEG file.	CWE-787 Out-of-bounds Write	CVE-2021-28021	2024-11-21 14:58	2021-10-16	Show	GitHub Exploit DB Packet Storm

195896	7.5	HIGH Network	johnsoncontrols	exacqvision_server	An unauthenticated remote user could exploit a potential integer overflow condition in the exacqVision Server with a specially crafted script and cause denial-of-service condition.	CWE-190 Integer Overflow or Wraparound	CVE-2021-27665	2024-11-21 14:58	2021-10-12	Show	GitHub Exploit DB Packet Storm

195897	9.8	CRITICAL Network	johnsoncontrols	exacqvision_web_service	Under certain configurations an unauthenticated remote user could be given access to credentials stored in the exacqVision Server.	CWE-269 Improper Privilege Management	CVE-2021-27664	2024-11-21 14:58	2021-10-12	Show	GitHub Exploit DB Packet Storm

195898	8.1	HIGH Network	johnsoncontrols	kantech_kt-1_door_controller_firmware	The KT-1 door controller is susceptible to replay or man-in-the-middle attacks where an attacker can record and replay TCP packets. This issue affects Johnson Controls KT-1 all versions up to and inc…	CWE-294 Authentication Bypass by Capture-replay	CVE-2021-27662	2024-11-21 14:58	2021-09-15	Show	GitHub Exploit DB Packet Storm

195899	6.1	MEDIUM Network	apache	zeppelin	Cross Site Scripting vulnerability in markdown interpreter of Apache Zeppelin allows an attacker to inject malicious scripts. This issue affects Apache Zeppelin Apache Zeppelin versions prior to 0.9.…	CWE-79 Cross-site Scripting	CVE-2021-27578	2024-11-21 14:58	2021-09-3	Show	GitHub Exploit DB Packet Storm

195900	5.3	MEDIUM Network	hashicorp	vault	HashiCorp Vault Enterprise 0.9.2 through 1.6.2 allowed the read of license metadata from DR secondaries without authentication. Fixed in 1.6.3.	CWE-306 Missing Authentication for Critical Function	CVE-2021-27668	2024-11-21 14:58	2021-09-1	Show	GitHub Exploit DB Packet Storm