Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 26, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
261 9.8 緊急
Network 		InHand Networks IR915L-FQ39-S Firmware
IR912L-FQ58 Firmware 		InHand NetworksのIR912L-FQ58 Firmware等の複数製品におけるコマンドインジェクションの脆弱性 New CWE-77
コマンドインジェクション 		CVE-2026-38716 2026-06-24 10:00 2026-06-18 Show GitHub Exploit DB Packet Storm
262 9.8 緊急
Network 		InHand Networks IR915L-FQ39-S Firmware
IR912L-FQ58 Firmware 		InHand NetworksのIR912L-FQ58 Firmware等の複数製品におけるコマンドインジェクションの脆弱性 New CWE-77
コマンドインジェクション 		CVE-2026-38717 2026-06-24 10:00 2026-06-18 Show GitHub Exploit DB Packet Storm
263 7.5 重要
Network 		InHand Networks IR915L-FQ39-S Firmware
IR912L-FQ58 Firmware 		InHand NetworksのIR912L-FQ58 Firmware等の複数製品における古典的バッファオーバーフローの脆弱性 New CWE-120
古典的バッファオーバーフロー 		CVE-2026-38718 2026-06-24 10:00 2026-06-18 Show GitHub Exploit DB Packet Storm
264 6.5 警告
Network 		Palo Alto Networks Idira Identity Browser Extension Palo Alto NetworksのIdira Identity Browser Extensionにおける同一生成元ポリシー違反に関する脆弱性 New CWE-346
同一生成元ポリシー違反 		CVE-2026-45173 2026-06-24 10:00 2026-06-11 Show GitHub Exploit DB Packet Storm
265 7.8 重要
Local 		Palo Alto Networks Idira Endpoint Privilege Manager Palo Alto NetworksのIdira Endpoint Privilege Managerにおけるリソースの不適切なシャットダウンおよびリリースに関する脆弱性 New CWE-404
リソースの不適切なシャットダウンおよびリリース 		CVE-2026-45174 2026-06-24 10:00 2026-06-11 Show GitHub Exploit DB Packet Storm
266 7.8 重要
Local 		Palo Alto Networks Idira Endpoint Privilege Manager Palo Alto NetworksのIdira Endpoint Privilege Managerにおける証明書検証に関する脆弱性 New CWE-295
不正な証明書検証 		CVE-2026-45175 2026-06-24 10:00 2026-06-11 Show GitHub Exploit DB Packet Storm
267 7.8 重要
Local 		Palo Alto Networks Idira Endpoint Privilege Manager Palo Alto NetworksのIdira Endpoint Privilege Managerにおける権限管理に関する脆弱性 New CWE-269
CWE-Other
CVE-2026-45176 2026-06-24 10:00 2026-06-11 Show GitHub Exploit DB Packet Storm
268 9.1 緊急
Network 		Palo Alto Networks Idira Secrets Manager Edge Palo Alto NetworksのIdira Secrets Manager Edgeにおけるアクセス制御に関する脆弱性 New CWE-284
不適切なアクセス制御 		CVE-2026-45177 2026-06-24 10:00 2026-06-11 Show GitHub Exploit DB Packet Storm
269 8.1 重要
Network 		Palo Alto Networks Idira Secrets Manager
Idira Secrets Manager Credential Providers 		Palo Alto NetworksのIdira Secrets Manager等の複数製品におけるアクセス制御に関する脆弱性 New CWE-284
不適切なアクセス制御 		CVE-2026-45178 2026-06-24 10:00 2026-06-11 Show GitHub Exploit DB Packet Storm
270 6.5 警告
Network 		デル PowerFlex Manager デルのPowerFlex Managerにおける証明書検証に関する脆弱性 New CWE-295
不正な証明書検証 		CVE-2024-47477 2026-06-24 10:00 2026-06-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
191581 7.5 HIGH
Network 		huawei magic_ui
emui
harmonyos 		There is a Privilege escalation vulnerability with the file system component in Smartphone.Successful exploitation of this vulnerability may affect service confidentiality. NVD-CWE-noinfo
CVE-2021-37113 2024-11-21 15:14 2022-01-4 Show GitHub Exploit DB Packet Storm
191582 5.3 MEDIUM
Network 		huawei harmonyos Hisuite module has a External Control of System or Configuration Setting vulnerability.Successful exploitation of this vulnerability may lead to Firmware leak. CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2021-37112 2024-11-21 15:14 2022-01-4 Show GitHub Exploit DB Packet Storm
191583 7.5 HIGH
Network 		huawei magic_ui
emui
harmonyos 		There is a Memory leakage vulnerability in Smartphone.Successful exploitation of this vulnerability may cause memory exhaustion. CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2021-37111 2024-11-21 15:14 2022-01-4 Show GitHub Exploit DB Packet Storm
191584 7.5 HIGH
Network 		huawei magic_ui
emui
harmonyos 		There is a Timing design defects in Smartphone.Successful exploitation of this vulnerability may affect service confidentiality. NVD-CWE-noinfo
CVE-2021-37110 2024-11-21 15:14 2022-01-4 Show GitHub Exploit DB Packet Storm
191585 7.5 HIGH
Network 		huawei harmonyos Hilinksvc service exists a Data Processing Errors vulnerability .Successful exploitation of this vulnerability may cause application crash. NVD-CWE-noinfo
CVE-2021-37098 2024-11-21 15:14 2022-01-4 Show GitHub Exploit DB Packet Storm
191586 4.2 MEDIUM
Physics 		encsecurity datavault ENC DataVault 7.2.3 and before, and OEM versions, use an encryption algorithm that is vulnerable to data manipulation (without knowledge of the key). This is called ciphertext malleability. There is … CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2021-36751 2024-11-21 15:14 2022-01-3 Show GitHub Exploit DB Packet Storm
191587 8.8 HIGH
Network 		ciphercoin contact_form_7_database_addon Cross-Site Request Forgery (CSRF) vulnerability discovered in Contact Form 7 Database Addon – CFDB7 WordPress plugin (versions <= 1.2.5.9). CWE-352
 Origin Validation Error 		CVE-2021-36886 2024-11-21 15:14 2021-12-23 Show GitHub Exploit DB Packet Storm
191588 6.1 MEDIUM
Network 		ciphercoin contact_form_7_database_addon Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability discovered in Contact Form 7 Database Addon – CFDB7 WordPress plugin (versions <= 1.2.6.1). CWE-79
Cross-site Scripting 		CVE-2021-36885 2024-11-21 15:14 2021-12-23 Show GitHub Exploit DB Packet Storm
191589 8.1 HIGH
Network 		zendesk
sandisk 		enc_vaultapi
enc_datavault
secureaccess 		ENC DataVault before 7.2 and VaultAPI v67 mishandle key derivation, making it easier for attackers to determine the passwords of all DataVault users (across USB drives sold under multiple brand names… CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2021-36750 2024-11-21 15:14 2021-12-22 Show GitHub Exploit DB Packet Storm
191590 4.8 MEDIUM
Network 		tarteaucitron.js_-_cookies_legislation_\&_gdpr_project tarteaucitron.js_-_cookies_legislation_\&_gdpr Multiple Stored Authenticated Cross-Site Scripting (XSS) vulnerabilities were discovered in tarteaucitron.js – Cookies legislation & GDPR WordPress plugin (versions <= 1.6). CWE-79
Cross-site Scripting 		CVE-2021-36889 2024-11-21 15:14 2021-12-21 Show GitHub Exploit DB Packet Storm