Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 27, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 281 | 8 |
重要
Adjacent |
デル | PowerFlex Manager | デルのPowerFlex Managerにおけるアクセス制御に関する脆弱性 |
CWE-284
不適切なアクセス制御 |
CVE-2026-35067 | 2026-06-24 09:59 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 282 | 5.7 |
警告
Adjacent |
デル | PowerFlex Manager | デルのPowerFlex ManagerにおけるSQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2026-35068 | 2026-06-24 09:59 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 283 | 8 |
重要
Adjacent |
デル | PowerFlex Manager | デルのPowerFlex ManagerにおけるSQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2026-35069 | 2026-06-24 09:59 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 284 | 6.5 |
警告
Network |
デル | PowerFlex Manager | デルのPowerFlex Managerにおけるアクセス制御に関する脆弱性 |
CWE-284
不適切なアクセス制御 |
CVE-2026-35162 | 2026-06-24 09:59 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 285 | 4.8 |
警告
Network |
デル | PowerFlex Manager | デルのPowerFlex Managerにおける暗号アルゴリズムの使用に関する脆弱性 |
CWE-327
不完全、または危険な暗号アルゴリズムの使用 |
CVE-2026-40641 | 2026-06-24 09:59 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 286 | 8.8 |
重要
Network |
Eclipse Foundation | Theia | Eclipse FoundationのTheiaにおける信頼できない制御領域からの機能の組み込みに関する脆弱性 |
CWE-829
信頼性のない制御領域からの機能の組み込み |
CVE-2026-44688 | 2026-06-24 09:59 | 2026-06-18 | Show | GitHub Exploit DB Packet Storm |
| 287 | 8.8 |
重要
Network |
Eclipse Foundation | Theia | Eclipse FoundationのTheiaにおける信頼できない制御領域からの機能の組み込みに関する脆弱性 |
CWE-829
信頼性のない制御領域からの機能の組み込み |
CVE-2026-44691 | 2026-06-24 09:59 | 2026-06-18 | Show | GitHub Exploit DB Packet Storm |
| 288 | 8.8 |
重要
Network |
Eclipse Foundation | Theia | Eclipse FoundationのTheiaにおける信頼できない制御領域からの機能の組み込みに関する脆弱性 |
CWE-829
信頼性のない制御領域からの機能の組み込み |
CVE-2026-46580 | 2026-06-24 09:59 | 2026-06-18 | Show | GitHub Exploit DB Packet Storm |
| 289 | 8.1 |
重要
Adjacent |
デル | PowerFlex Manager | デルのPowerFlex Managerにおける認証に関する脆弱性 |
CWE-287
不適切な認証 |
CVE-2026-49502 | 2026-06-24 09:59 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 290 | 6.1 |
警告
Network |
Astro | Astro | Astroにおけるクロスサイトスクリプティングの脆弱性 |
CWE-80
クロスサイトスクリプティング (Basic XSS) |
CVE-2026-50146 | 2026-06-24 09:59 | 2026-06-22 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 27, 2026, 4:35 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 190681 | 9.8 |
CRITICAL
Network |
digi | portserver_ts_16_firmware | Properly formatted POST requests to multiple resources on the HTTP and HTTPS web servers of the Digi PortServer TS 16 Rack device do not require authentication or authentication tokens. This vulnerab… |
CWE-306
Missing Authentication for Critical Function |
CVE-2021-38412 | 2024-11-21 15:17 | 2021-09-18 | Show | GitHub Exploit DB Packet Storm |
| 190682 | 7.8 |
HIGH
Local |
deltaww | dopsoft | Delta Electronic DOPSoft 2 (Version 2.00.07 and prior) lacks proper validation of user-supplied data when parsing specific project files. This could result in multiple out-of-bounds write instances. … | - | CVE-2021-38406 | 2024-11-21 15:17 | 2021-09-18 | Show | GitHub Exploit DB Packet Storm |
| 190683 | 7.8 |
HIGH
Local |
deltaww | dopsoft | Delta Electronic DOPSoft 2 (Version 2.00.07 and prior) lacks proper validation of user-supplied data when parsing specific project files. This could result in a heap-based buffer overflow. An attacke… | - | CVE-2021-38404 | 2024-11-21 15:17 | 2021-09-18 | Show | GitHub Exploit DB Packet Storm |
| 190684 | 7.8 |
HIGH
Local |
deltaww | dopsoft | Delta Electronic DOPSoft 2 (Version 2.00.07 and prior) lacks proper validation of user-supplied data when parsing specific project files. This could lead to a stack-based buffer overflow while trying… | - | CVE-2021-38402 | 2024-11-21 15:17 | 2021-09-18 | Show | GitHub Exploit DB Packet Storm |
| 190685 | 7.8 |
HIGH
Local |
microsoft |
windows_server_2008 windows_10 windows_server_2016 windows_rt_8.1 windows_server_2012 windows_server_2019 windows_server_2022 windows_7 windows_8.1 |
Windows Print Spooler Elevation of Privilege Vulnerability |
CWE-269
Improper Privilege Management |
CVE-2021-38671 | 2024-11-21 15:17 | 2021-09-15 | Show | GitHub Exploit DB Packet Storm |
| 190686 | 6.4 |
MEDIUM
Network |
microsoft |
edge_chromium edge |
Microsoft Edge (Chromium-based) Tampering Vulnerability |
NVD-CWE-noinfo
|
CVE-2021-38669 | 2024-11-21 15:17 | 2021-09-15 | Show | GitHub Exploit DB Packet Storm |
| 190687 | 7.8 |
HIGH
Local |
microsoft |
windows_server_2008 windows_10 windows_server_2016 windows_rt_8.1 windows_server_2012 windows_server_2019 windows_server_2022 windows_7 windows_8.1 |
Windows Print Spooler Elevation of Privilege Vulnerability |
CWE-269
Improper Privilege Management |
CVE-2021-38667 | 2024-11-21 15:17 | 2021-09-15 | Show | GitHub Exploit DB Packet Storm |
| 190688 | 7.8 |
HIGH
Local |
microsoft | hevc_video_extensions | HEVC Video Extensions Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2021-38661 | 2024-11-21 15:17 | 2021-09-15 | Show | GitHub Exploit DB Packet Storm |
| 190689 | 7.8 |
HIGH
Local |
microsoft | excel | Microsoft Office Graphics Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2021-38660 | 2024-11-21 15:17 | 2021-09-15 | Show | GitHub Exploit DB Packet Storm |
| 190690 | 7.8 |
HIGH
Local |
microsoft | 365_apps | Microsoft Office Graphics Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2021-38659 | 2024-11-21 15:17 | 2021-09-15 | Show | GitHub Exploit DB Packet Storm |