Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
21 8.8 重要
Network 		Stichting NLnet Labs NSD NLnet LabsのNSDにおける複数の脆弱性 New CWE-122
CWE-190
CVE-2026-12244 2026-06-29 11:25 2026-06-25 Show GitHub Exploit DB Packet Storm
22 7.5 重要
Network 		Stichting NLnet Labs NSD NLnet LabsのNSDにおける解放済みメモリの使用に関する脆弱性 New CWE-416
解放済みメモリの使用 		CVE-2026-12245 2026-06-29 11:25 2026-06-25 Show GitHub Exploit DB Packet Storm
23 8.1 重要
Network 		Stichting NLnet Labs NSD NLnet LabsのNSDにおける複数の脆弱性 New CWE-120
CWE-20
CVE-2026-12246 2026-06-29 11:25 2026-06-25 Show GitHub Exploit DB Packet Storm
24 6.1 警告
Network 		PowerSchool Inc. Employee Access Center PowerSchool Inc.のEmployee Access Centerにおけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-12425 2026-06-29 11:25 2026-06-16 Show GitHub Exploit DB Packet Storm
25 7.5 重要
Network 		Stichting NLnet Labs NSD NLnet LabsのNSDにおける複数の脆弱性 New CWE-284
CWE-306
CVE-2026-12490 2026-06-29 11:25 2026-06-25 Show GitHub Exploit DB Packet Storm
26 7.1 重要
Local 		シーメンス SIMATIC WinCC Unified PC Runtime シーメンスのSIMATIC WinCC Unified PC Runtimeにおけるファイル内またはディスク上の平文保存に関する脆弱性 New CWE-313
ファイル内またはディスク上の平文保存 		CVE-2026-24349 2026-06-29 11:25 2026-06-9 Show GitHub Exploit DB Packet Storm
27 8.2 重要
Network 		Docling Docling Doclingにおける複数の脆弱性 New CWE-918
CWE-94
CVE-2026-44016 2026-06-29 11:25 2026-06-24 Show GitHub Exploit DB Packet Storm
28 7.5 重要
Network 		Docling Docling Doclingにおけるパストラバーサルの脆弱性 New CWE-22
パス・トラバーサル 		CVE-2026-44017 2026-06-29 11:25 2026-06-24 Show GitHub Exploit DB Packet Storm
29 7.5 重要
Network 		Docling Docling DoclingにおけるDTD の再帰的なエンティティ参照の不適切な制限に関する脆弱性 New CWE-776
DTD の再帰的なエンティティ参照の不適切な制限 		CVE-2026-44020 2026-06-29 11:25 2026-06-24 Show GitHub Exploit DB Packet Storm
30 5.5 警告
Local 		Docling Docling Doclingにおけるパストラバーサルの脆弱性 New CWE-22
パス・トラバーサル 		CVE-2026-44022 2026-06-29 11:25 2026-06-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
190681 5.4 MEDIUM
Network 		ibm security_verify_access IBM Security Verify 10.0.0, 10.0.1.0, and 10.0.2.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended f… CWE-79
Cross-site Scripting 		CVE-2021-38895 2024-11-21 15:18 2022-01-10 Show GitHub Exploit DB Packet Storm
190682 2.7 LOW
Network 		ibm security_verify_access IBM Security Verify 10.0.0, 10.0.1.0, and 10.0.2.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information c… CWE-209
Information Exposure Through an Error Message 		CVE-2021-38894 2024-11-21 15:18 2022-01-10 Show GitHub Exploit DB Packet Storm
190683 7.5 HIGH
Network 		ibm powervm_hypervisor IBM PowerVM Hypervisor FW860, FW940, FW950, and FW1010, through a specific sequence of VM management operations could lead to a violation of the isolation between peer VMs. IBM X-Force ID: 210019. NVD-CWE-noinfo
CVE-2021-38918 2024-11-21 15:18 2022-01-6 Show GitHub Exploit DB Packet Storm
190684 7.1 HIGH
Local 		linuxfoundation spinnaker Spinnaker is an open source, multi-cloud continuous delivery platform. A path traversal vulnerability was discovered in uses of TAR files by AppEngine for deployments. This uses a utility to extract … CWE-22
Path Traversal 		CVE-2021-39143 2024-11-21 15:18 2022-01-5 Show GitHub Exploit DB Packet Storm
190685 6.1 MEDIUM
Network 		ibm i IBM i 7.2, 7.3, and 7.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially le… CWE-79
Cross-site Scripting 		CVE-2021-38876 2024-11-21 15:18 2021-12-31 Show GitHub Exploit DB Packet Storm
190686 6.1 MEDIUM
Network 		ibm power_system_ac922_\(8335-gtg\)_firmware
power_system_ac922_\(8335-gtc\)_firmware
power_system_ac922_\(8335-gtw\)_firmware 		IBM OPENBMC OP910 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading … CWE-79
Cross-site Scripting 		CVE-2021-38961 2024-11-21 15:18 2021-12-28 Show GitHub Exploit DB Packet Storm
190687 6.5 MEDIUM
Network 		ibm cloud_pak_for_security IBM Cloud Pak for Security (CP4S) 1.7.2.0, 1.7.1.0, and 1.7.0.0 could allow an authenticated user to obtain sensitive information in HTTP responses that could be used in further attacks against the s… CWE-200
Information Exposure 		CVE-2021-39013 2024-11-21 15:18 2021-12-23 Show GitHub Exploit DB Packet Storm
190688 5.4 MEDIUM
Network 		ibm workflow_process_service
cloud_pak_for_automation 		IBM Cloud Pak for Automation 21.0.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality po… CWE-79
Cross-site Scripting 		CVE-2021-38966 2024-11-21 15:18 2021-12-22 Show GitHub Exploit DB Packet Storm
190689 6.5 MEDIUM
Network 		ibm business_process_manager
business_automation_workflow
workflow_process_service 		IBM Business Process Manager 8.5 and 8.6 and IBM Business Automation Workflow 18.0, 19.0, 20.0 and 21.0 could allow a privileged user to obtain highly sensitive information due to improper access con… NVD-CWE-Other
CVE-2021-38900 2024-11-21 15:18 2021-12-22 Show GitHub Exploit DB Packet Storm
190690 5.4 MEDIUM
Network 		ibm business_process_manager
business_automation_workflow
workflow_process_service 		IBM Business Process Manager 8.5 and 8.6 and IBM Business Automation Workflow 18.0, 19.0, 20.0 and 21.0 are vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitra… CWE-79
Cross-site Scripting 		CVE-2021-38893 2024-11-21 15:18 2021-12-22 Show GitHub Exploit DB Packet Storm