Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
259541	5	警告	サン・マイクロシステムズ	-	Sun Solaris の sshd におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-4075	2010-01-15 14:09	2009-11-23	Show	GitHub Exploit DB Packet Storm

259542	2.6	注意	オラクル	-	Oracle Application Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	-	2010-01-14 15:01	2010-01-14	Show	GitHub Exploit DB Packet Storm

259543	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer に脆弱性	CWE-94 コード・インジェクション	CVE-2009-3672	2010-01-14 12:08	2009-11-25	Show	GitHub Exploit DB Packet Storm

259544	9.3	危険	サン・マイクロシステムズ VMware	-	Sun Java SE の java.lang パッケージにおける脆弱性	CWE-362 競合状態	CVE-2009-2724	2010-01-14 12:08	2009-08-10	Show	GitHub Exploit DB Packet Storm

259545	10	危険	サン・マイクロシステムズ VMware	-	Sun Java SE の Provider クラスにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-2721	2010-01-14 12:08	2009-08-10	Show	GitHub Exploit DB Packet Storm

259546	5	警告	有限会社シースリー	-	WebCalenderC3 におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-0348	2010-01-12 15:01	2010-01-12	Show	GitHub Exploit DB Packet Storm

259547	4.3	警告	有限会社シースリー	-	WebCalenderC3 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0349	2010-01-12 15:00	2010-01-12	Show	GitHub Exploit DB Packet Storm

259548	10	危険	サイバートラスト株式会社 XEmacs	-	XEmacs の glyphs-eimage.c における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-2688	2010-01-12 14:48	2009-08-5	Show	GitHub Exploit DB Packet Storm

259549	6.8	警告	IBM	-	IBM WebSphere Application Server (WAS) におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-2746	2010-01-12 14:48	2009-11-13	Show	GitHub Exploit DB Packet Storm

259550	5	警告	アップル	-	Apple Safari におけるローカル HTML ファイルを読まれる脆弱性	CWE-Other その他	CVE-2009-2842	2010-01-7 12:09	2009-11-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199521	5.9	MEDIUM Network	nextcloud debian	desktop debian_linux	Nextcloud Desktop Client before 3.3.1 is vulnerable to improper certificate validation due to lack of SSL certificate verification when using the "Register with a Provider" flow.	CWE-295 Improper Certificate Validation	CVE-2021-22895	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm

199522	4.3	MEDIUM Network	schneider-electric	easergy_t300_firmware	A CWE-552: Files or Directories Accessible to External Parties vulnerability exists in Easergy T300 with firmware V2.7.1 and older that could expose files or directory content when access from an att…	-	CVE-2021-22769	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm

199523	9.8	CRITICAL Network	schneider-electric	powerlogic_egx100_firmware powerlogic_egx300_firmware	A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 (Versions 3.0.0 and newer) and PowerLogic EGX300 (All Versions) that could cause denial of service or remote code executi…	-	CVE-2021-22768	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm

199524	3.1	LOW Network	haxx debian fedoraproject oracle siemens splunk	curl debian_linux fedora mysql_server essbase communications_cloud_native_core_network_slice_selection_function communications_cloud_native_core_network_repository_function commu…	curl 7.7 through 7.76.1 suffers from an information disclosure when the `-t` command line option, known as `CURLOPT_TELNETOPTIONS` in libcurl, is used to send variable=content pairs to TELNET servers…	CWE-909 Missing Initialization of Resource	CVE-2021-22898	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm

199525	5.3	MEDIUM Network	haxx oracle netapp siemens splunk	curl mysql_server essbase communications_cloud_native_core_network_slice_selection_function communications_cloud_native_core_network_repository_function communications_cloud_native_cor…	curl 7.61.0 through 7.76.1 suffers from exposure of data element to wrong session due to a mistake in the code for CURLOPT_SSL_CIPHER_LIST when libcurl is built to use the Schannel TLS library. The s…	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2021-22897	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm

199526	9.8	CRITICAL Network	schneider-electric	powerlogic_egx100_firmware powerlogic_egx300_firmware	A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 (Versions 3.0.0 and newer) and PowerLogic EGX300 (All Versions) that could cause denial of service or remote code executi…	-	CVE-2021-22767	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm

199527	7.5	HIGH Network	schneider-electric	powerlogic_egx100_firmware powerlogic_egx300_firmware	A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 (Versions 3.0.0 and newer) and PowerLogic EGX300 (All Versions) that could cause denial of service via a specially crafte…	-	CVE-2021-22766	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm

199528	9.8	CRITICAL Network	schneider-electric	powerlogic_egx100_firmware powerlogic_egx300_firmware	A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 (Versions 3.0.0 and newer) and PowerLogic EGX300 (All Versions) that could cause denial of service or remote code executi…	CWE-20 Improper Input Validation	CVE-2021-22765	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm

199529	7.8	HIGH Local	schneider-electric	interactive_graphical_scada_system	A CWE-22: Improper Limitation of a Pathname to a Restricted Directory vulnerability exists inIGSS Definition (Def.exe) V15.0.0.21140 and prior that could result in remote code execution, when a malic…	CWE-22 Path Traversal	CVE-2021-22762	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm

199530	7.8	HIGH Local	schneider-electric	interactive_graphical_scada_system	A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists inIGSS Definition (Def.exe) V15.0.0.21140 and prior that could result in disclosure of informat…	-	CVE-2021-22761	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm