Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258691 7.2 危険 VMware - 複数の VMware 製品における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-1362 2010-09-13 15:55 2008-03-17 Show GitHub Exploit DB Packet Storm
258692 6.8 警告 VMware - 複数の VMware 製品における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-1361 2010-09-13 15:55 2008-03-17 Show GitHub Exploit DB Packet Storm
258693 7.1 危険 VMware - 複数の VMware 製品の Virtual Machine Communication Interface (VMCI) におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-1340 2010-09-13 15:55 2008-03-17 Show GitHub Exploit DB Packet Storm
258694 6.9 警告 VMware - 複数の VMware 製品におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0923 2010-09-13 15:54 2008-02-26 Show GitHub Exploit DB Packet Storm
258695 9.3 危険 アドビシステムズ - Adobe Shockwave Player の DIRAPI.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-2882 2010-09-13 15:46 2010-08-24 Show GitHub Exploit DB Packet Storm
258696 9.3 危険 アドビシステムズ - Adobe Shockwave Player の IML32.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-2881 2010-09-13 15:46 2010-08-24 Show GitHub Exploit DB Packet Storm
258697 9.3 危険 アドビシステムズ - Adobe Shockwave Player の DIRAPI.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-2880 2010-09-13 15:45 2010-08-24 Show GitHub Exploit DB Packet Storm
258698 9.3 危険 アドビシステムズ - Adobe Shockwave Player の TextXtra.x32 モジュールにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-2879 2010-09-13 15:45 2010-08-24 Show GitHub Exploit DB Packet Storm
258699 9.3 危険 アドビシステムズ - Adobe Shockwave Player の DIRAPIX.dll における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2878 2010-09-13 15:45 2010-08-24 Show GitHub Exploit DB Packet Storm
258700 9.3 危険 アドビシステムズ - Adobe Shockwave Player における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2877 2010-09-13 15:45 2010-08-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195511 7.8 HIGH
Local 		adobe media_encoder Adobe Media Encoder version 15.2 (and earlier) is affected by an Out-of-bounds Read vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability … - CVE-2021-28590 2024-11-21 14:59 2021-08-21 Show GitHub Exploit DB Packet Storm
195512 7.8 HIGH
Local 		adobe media_encoder Adobe Media Encoder version 15.2 (and earlier) is affected by an Out-of-bounds Read vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability … - CVE-2021-28589 2024-11-21 14:59 2021-08-21 Show GitHub Exploit DB Packet Storm
195513 8.8 HIGH
Network 		owasp csrfguard In OWASP CSRFGuard through 3.1.0, CSRF can occur because the CSRF cookie may be retrieved by using only a session token. CWE-352
 Origin Validation Error 		CVE-2021-28490 2024-11-21 14:59 2021-08-20 Show GitHub Exploit DB Packet Storm
195514 8.3 HIGH
Network 		throughtek kalay_p2p_software_development_kit ThroughTek's Kalay Platform 2.0 network allows an attacker to impersonate an arbitrary ThroughTek (TUTK) device given a valid 20-byte uniquely assigned identifier (UID). This could result in an attac… CWE-290
 Authentication Bypass by Spoofing 		CVE-2021-28372 2024-11-21 14:59 2021-08-18 Show GitHub Exploit DB Packet Storm
195515 9.8 CRITICAL
Network 		virtual_robots.txt_project virtual_robots.txt Virtual Robots.txt before 1.10 does not block HTML tags in the robots.txt field. NVD-CWE-noinfo
CVE-2021-28121 2024-11-21 14:59 2021-08-13 Show GitHub Exploit DB Packet Storm
195516 7.8 HIGH
Local 		tianocore edk_ii BootPerformanceTable pointer is read from an NVRAM variable in PEI. Recommend setting PcdFirmwarePerformanceDataTableS3Support to FALSE. CWE-763
 Release of Invalid Pointer or Reference 		CVE-2021-28216 2024-11-21 14:59 2021-08-6 Show GitHub Exploit DB Packet Storm
195517 4.8 MEDIUM
Network 		open-xchange open-xchange_documents OX Documents before 7.10.5-rev5 has Incorrect Access Control for documents that contain XML structures because hash collisions can occur, due to use of CRC32. CWE-326
Inadequate Encryption Strength 		CVE-2021-28095 2024-11-21 14:59 2021-07-30 Show GitHub Exploit DB Packet Storm
195518 6.5 MEDIUM
Network 		open-xchange open-xchange_documents OX Documents before 7.10.5-rev7 has Incorrect Access Control for converted documents because hash collisions can occur, due to use of CRC32. CWE-326
Inadequate Encryption Strength 		CVE-2021-28094 2024-11-21 14:59 2021-07-30 Show GitHub Exploit DB Packet Storm
195519 6.5 MEDIUM
Network 		open-xchange open-xchange_documents OX Documents before 7.10.5-rev5 has Incorrect Access Control of converted images because hash collisions can occur, due to use of Adler32. CWE-326
Inadequate Encryption Strength 		CVE-2021-28093 2024-11-21 14:59 2021-07-30 Show GitHub Exploit DB Packet Storm
195520 7.5 HIGH
Network 		apache impala Impala sessions use a 16 byte secret to verify that the session is not being hijacked by another user. However, these secrets appear in the Impala logs, therefore Impala users with access to the logs… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2021-28131 2024-11-21 14:59 2021-07-22 Show GitHub Exploit DB Packet Storm