Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
311	4.3	警告 Network	Splunk	Splunk AI Toolkit	SplunkのSplunk AI Toolkitにおけるリソースの安全ではないデフォルト値への初期化に関する脆弱性 New	CWE-1188 リソースの安全ではないデフォルト値への初期化	CVE-2026-20265	2026-06-23 10:00	2026-06-17	Show	GitHub Exploit DB Packet Storm

312	9.1	緊急 Network	Splunk	Splunk AI Toolkit	SplunkのSplunk AI ToolkitにおけるOS コマンドインジェクションの脆弱性 New	CWE-78 OSコマンド・インジェクション	CVE-2026-20266	2026-06-23 10:00	2026-06-17	Show	GitHub Exploit DB Packet Storm

313	5.9	警告 Network	VMware	Spring Data MongoDB	VMwareのSpring Data MongoDBにおけるデータクエリロジックの特殊要素の不適切な中立化に関する脆弱性 New	CWE-943 データクエリロジックの特殊要素の不適切な中立化	CVE-2026-41696	2026-06-23 10:00	2026-06-10	Show	GitHub Exploit DB Packet Storm

314	8.1	重要 Network	VMware	Spring Data MongoDB	VMwareのSpring Data MongoDBにおける言語構文の表現に使用される特殊な要素の不適切な無効化に関する脆弱性 New	CWE-917 言語構文の表現に使用される特殊な要素の不適切な無効化	CVE-2026-41717	2026-06-23 10:00	2026-06-10	Show	GitHub Exploit DB Packet Storm

315	6.5	警告 Network	VMware	spring for apache kafka	VMwareのspring for apache kafkaにおける入力確認に関する脆弱性 New	CWE-20 不適切な入力確認	CVE-2026-41727	2026-06-23 10:00	2026-06-10	Show	GitHub Exploit DB Packet Storm

316	7.5	重要 Network	VMware	Spring Data REST	VMwareのSpring Data RESTにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-41728	2026-06-23 10:00	2026-06-10	Show	GitHub Exploit DB Packet Storm

317	8.1	重要 Network	VMware	Spring Data REST	VMwareのSpring Data RESTにおける言語構文の表現に使用される特殊な要素の不適切な無効化に関する脆弱性 New	CWE-917 言語構文の表現に使用される特殊な要素の不適切な無効化	CVE-2026-41729	2026-06-23 10:00	2026-06-10	Show	GitHub Exploit DB Packet Storm

318	5.3	警告 Network	VMware	Spring Data REST	VMwareのSpring Data RESTにおけるエラーメッセージによる情報漏えいに関する脆弱性 New	CWE-209 エラーメッセージによる情報漏えい	CVE-2026-41730	2026-06-23 10:00	2026-06-10	Show	GitHub Exploit DB Packet Storm

319	8.1	重要 Network	VMware	spring for apache kafka	VMwareのspring for apache kafkaにおける信頼できないデータのデシリアライゼーションに関する脆弱性 New	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-41731	2026-06-23 10:00	2026-06-10	Show	GitHub Exploit DB Packet Storm

320	5.3	警告 Network	VMware	Spring Data REST	VMwareのSpring Data RESTにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-41837	2026-06-23 10:00	2026-06-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
191391	7.1	HIGH Local	insyde	iscflashx64.sys h2offt	An issue was discovered in iscflashx64.sys 3.9.3.0 in Insyde H2OFFT 6.20.00. When handling IOCTL 0x22229a, the input used to allocate a buffer and copy memory is mishandled. This could cause memory c…	CWE-787 Out-of-bounds Write	CVE-2021-33834	2024-11-21 15:09	2023-09-8	Show	GitHub Exploit DB Packet Storm

191392	9.8	CRITICAL Network	atasm_project	atasm	An issue was discovered on atasm, version 1.09. A stack-buffer-overflow vulnerability in function aprintf() in asm.c allows attackers to execute arbitrary code on the system via a crafted file.	CWE-787 Out-of-bounds Write	CVE-2021-34123	2024-11-21 15:09	2023-07-18	Show	GitHub Exploit DB Packet Storm

191393	7.5	HIGH Network	openkm	openkm	An issue discovered in OpenKM v6.3.10 allows attackers to obtain sensitive information via the XMLTextExtractor function.	CWE-611 XXE	CVE-2021-33950	2024-11-21 15:09	2023-02-18	Show	GitHub Exploit DB Packet Storm

191394	-		-	-	Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in openEuler iSulad on Linux allows Leveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions. This vulnerability is associated…	-	CVE-2021-33632	2024-11-21 15:09	2024-03-25	Show	GitHub Exploit DB Packet Storm

191395	-		-	-	Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in openEuler aops-ceres on Linux allows Command Injection. This vulnerability is associated wi…	-	CVE-2021-33633	2024-11-21 15:09	2024-03-23	Show	GitHub Exploit DB Packet Storm

191396	7.8	HIGH Local	huawei	openeuler	Integer Overflow or Wraparound vulnerability in openEuler kernel on Linux (filesystem modules) allows Forced Integer Overflow.This issue affects openEuler kernel: from 4.19.90 before 4.19.90-2401.3, …	CWE-190 Integer Overflow or Wraparound	CVE-2021-33631	2024-11-21 15:09	2024-01-19	Show	GitHub Exploit DB Packet Storm

191397	5.5	MEDIUM Local	huawei	openeuler	NULL Pointer Dereference vulnerability in openEuler kernel on Linux (network modules) allows Pointer Manipulation. This vulnerability is associated with program files net/sched/sch_cbs.C. This issue…	CWE-476 NULL Pointer Dereference	CVE-2021-33630	2024-11-21 15:09	2024-01-19	Show	GitHub Exploit DB Packet Storm

191398	6.5	MEDIUM Local	openeuler	isula	When the isula cp command is used to copy files from a container to a host machine and the container is controlled by an attacker, the attacker can escape the container.	NVD-CWE-noinfo	CVE-2021-33638	2024-11-21 15:09	2023-10-29	Show	GitHub Exploit DB Packet Storm

191399	6.5	MEDIUM Local	openeuler	isula	When the isula export command is used to export a container to an image and the container is controlled by an attacker, the attacker can escape the container.	NVD-CWE-noinfo	CVE-2021-33637	2024-11-21 15:09	2023-10-29	Show	GitHub Exploit DB Packet Storm

191400	7.8	HIGH Local	openeuler	isula	When the isula load command is used to load malicious images, attackers can execute arbitrary code.	NVD-CWE-noinfo	CVE-2021-33636	2024-11-21 15:09	2023-10-29	Show	GitHub Exploit DB Packet Storm