Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 12:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258761	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

258762	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

258763	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

258764	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
194701	6.5	MEDIUM Network	hcltech	bigfix_inventory	There is a security vulnerability in login form related to Cross-site Request Forgery which prevents user to login after attacker spam to login and system blocked victim's account.	CWE-352 Origin Validation Error	CVE-2021-27758	2024-11-21 14:58	2022-05-7	Show	GitHub Exploit DB Packet Storm

194702	3.3	LOW Local	hcltechsw	hcl_commerce	HCL Commerce is affected by an Insufficient Session Expiration vulnerability. After the session expires, in some circumstances, parts of the application are still accessible.	CWE-613 Insufficient Session Expiration	CVE-2021-27751	2024-11-21 14:58	2022-05-7	Show	GitHub Exploit DB Packet Storm

194703	9.8	CRITICAL Network	philips	vue_pacs vue_motion speech myvue	Philips Vue PACS versions 12.2.x.x and prior does not follow certain coding rules for development, which can lead to resultant weaknesses or increase the severity of the associated vulnerabilities.	NVD-CWE-noinfo	CVE-2021-27501	2024-11-21 14:58	2022-04-2	Show	GitHub Exploit DB Packet Storm

194704	9.8	CRITICAL Network	philips	vue_pacs vue_motion speech myvue	Philips Vue PACS versions 12.2.x.x and prior does not use or incorrectly uses a protection mechanism that provides sufficient defense against directed attacks against the product.	NVD-CWE-Other	CVE-2021-27497	2024-11-21 14:58	2022-04-2	Show	GitHub Exploit DB Packet Storm

194705	6.5	MEDIUM Network	philips	vue_pacs vue_motion speech myvue	Philips Vue PACS versions 12.2.x.x and prior does not ensure or incorrectly ensures structured messages or data are well formed and that certain security properties are met before being read from an …	NVD-CWE-Other	CVE-2021-27493	2024-11-21 14:58	2022-04-2	Show	GitHub Exploit DB Packet Storm

194706	9.8	CRITICAL Network	rockwellautomation	factorytalk_assetcentre	A vulnerability exists in the SaveConfigFile function of the RACompare Service, which may allow for OS command injection. This vulnerability may allow a remote, unauthenticated attacker to execute ar…	CWE-78 OS Command	CVE-2021-27476	2024-11-21 14:58	2022-03-24	Show	GitHub Exploit DB Packet Storm

194707	8.6	HIGH Local	rockwellautomation	connected_components_workbench	Rockwell Automation Connected Components Workbench v12.00.00 and prior does not limit the objects that can be deserialized. This vulnerability allows attackers to craft a malicious serialized object …	CWE-502 Deserialization of Untrusted Data	CVE-2021-27475	2024-11-21 14:58	2022-03-24	Show	GitHub Exploit DB Packet Storm

194708	7.5	HIGH Network	rockwellautomation	factorytalk_assetcentre	Rockwell Automation FactoryTalk AssetCentre v10.00 and earlier does not properly restrict all functions relating to IIS remoting services. This vulnerability may allow a remote, unauthenticated attac…	NVD-CWE-Other	CVE-2021-27474	2024-11-21 14:58	2022-03-24	Show	GitHub Exploit DB Packet Storm

194709	9.8	CRITICAL Network	rockwellautomation	factorytalk_assetcentre	A vulnerability exists in the RunSearch function of SearchService service in Rockwell Automation FactoryTalk AssetCentre v10.00 and earlier, which may allow for the execution of remote unauthenticate…	CWE-89 SQL Injection	CVE-2021-27472	2024-11-21 14:58	2022-03-24	Show	GitHub Exploit DB Packet Storm

194710	9.8	CRITICAL Network	rockwellautomation	factorytalk_assetcentre	A deserialization vulnerability exists in how the LogService.rem service in Rockwell Automation FactoryTalk AssetCentre v10.00 and earlier verifies serialized data. This vulnerability may allow a rem…	CWE-502 Deserialization of Untrusted Data	CVE-2021-27470	2024-11-21 14:58	2022-03-24	Show	GitHub Exploit DB Packet Storm