Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 25, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
351 9.1 緊急
Network 		Splunk Splunk AI Toolkit SplunkのSplunk AI ToolkitにおけるOS コマンドインジェクションの脆弱性 New CWE-78
OSコマンド・インジェクション 		CVE-2026-20266 2026-06-23 10:00 2026-06-17 Show GitHub Exploit DB Packet Storm
352 5.9 警告
Network 		VMware Spring Data MongoDB VMwareのSpring Data MongoDBにおけるデータクエリロジックの特殊要素の不適切な中立化に関する脆弱性 New CWE-943
データクエリロジックの特殊要素の不適切な中立化 		CVE-2026-41696 2026-06-23 10:00 2026-06-10 Show GitHub Exploit DB Packet Storm
353 8.1 重要
Network 		VMware Spring Data MongoDB VMwareのSpring Data MongoDBにおける言語構文の表現に使用される特殊な要素の不適切な無効化に関する脆弱性 New CWE-917
言語構文の表現に使用される特殊な要素の不適切な無効化 		CVE-2026-41717 2026-06-23 10:00 2026-06-10 Show GitHub Exploit DB Packet Storm
354 6.5 警告
Network 		VMware spring for apache kafka VMwareのspring for apache kafkaにおける入力確認に関する脆弱性 New CWE-20
不適切な入力確認 		CVE-2026-41727 2026-06-23 10:00 2026-06-10 Show GitHub Exploit DB Packet Storm
355 7.5 重要
Network 		VMware Spring Data REST VMwareのSpring Data RESTにおけるアクセス制御に関する脆弱性 New CWE-284
不適切なアクセス制御 		CVE-2026-41728 2026-06-23 10:00 2026-06-10 Show GitHub Exploit DB Packet Storm
356 8.1 重要
Network 		VMware Spring Data REST VMwareのSpring Data RESTにおける言語構文の表現に使用される特殊な要素の不適切な無効化に関する脆弱性 New CWE-917
言語構文の表現に使用される特殊な要素の不適切な無効化 		CVE-2026-41729 2026-06-23 10:00 2026-06-10 Show GitHub Exploit DB Packet Storm
357 5.3 警告
Network 		VMware Spring Data REST VMwareのSpring Data RESTにおけるエラーメッセージによる情報漏えいに関する脆弱性 New CWE-209
エラーメッセージによる情報漏えい 		CVE-2026-41730 2026-06-23 10:00 2026-06-10 Show GitHub Exploit DB Packet Storm
358 8.1 重要
Network 		VMware spring for apache kafka VMwareのspring for apache kafkaにおける信頼できないデータのデシリアライゼーションに関する脆弱性 New CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-41731 2026-06-23 10:00 2026-06-10 Show GitHub Exploit DB Packet Storm
359 5.3 警告
Network 		VMware Spring Data REST VMwareのSpring Data RESTにおけるアクセス制御に関する脆弱性 New CWE-284
不適切なアクセス制御 		CVE-2026-41837 2026-06-23 10:00 2026-06-10 Show GitHub Exploit DB Packet Storm
360 9.9 緊急
Network 		オラクル MySQL Shell オラクルのMySQL Shellにおけるコードインジェクションの脆弱性 New CWE-94
コード・インジェクション 		CVE-2026-46850 2026-06-23 10:00 2026-06-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 25, 2026, 4:04 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
191581 8.8 HIGH
Adjacent 		bbraun spacecom2 An improper sanitization of input vulnerability in B. Braun SpaceCom2 prior to 012U000062 allows a remote unauthenticated attacker to gain user-level command-line access by passing a raw external str… CWE-134
Use of Externally-Controlled Format String 		CVE-2021-33886 2024-11-21 15:09 2021-08-25 Show GitHub Exploit DB Packet Storm
191582 9.8 CRITICAL
Network 		bbraun spacecom2 An Insufficient Verification of Data Authenticity vulnerability in B. Braun SpaceCom2 prior to 012U000062 allows a remote unauthenticated attacker to send the device malicious data that will be used … CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2021-33885 2024-11-21 15:09 2021-08-25 Show GitHub Exploit DB Packet Storm
191583 9.1 CRITICAL
Network 		bbraun spacecom2 An Unrestricted Upload of File with Dangerous Type vulnerability in B. Braun SpaceCom2 prior to 012U000062 allows remote attackers to upload any files to the /tmp directory of the device through the … CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2021-33884 2024-11-21 15:09 2021-08-25 Show GitHub Exploit DB Packet Storm
191584 7.5 HIGH
Network 		bbraun spacecom2 A Cleartext Transmission of Sensitive Information vulnerability in B. Braun SpaceCom2 prior to 012U000062 allows a remote attacker to obtain sensitive information by snooping on the network traffic. … CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2021-33883 2024-11-21 15:09 2021-08-25 Show GitHub Exploit DB Packet Storm
191585 8.6 HIGH
Network 		bbraun spacecom2 A Missing Authentication for Critical Function vulnerability in B. Braun SpaceCom2 prior to 012U000062 allows a remote attacker to reconfigure the device from an unknown source because of lack of aut… CWE-306
Missing Authentication for Critical Function 		CVE-2021-33882 2024-11-21 15:09 2021-08-25 Show GitHub Exploit DB Packet Storm
191586 6.5 MEDIUM
Network 		f-secure linux_security
atlant
elements_endpoint_protection 		A Denial-of-Service (DoS) vulnerability was discovered in all versions of F-Secure Atlant whereby the SAVAPI component used in certain F-Secure products can crash while scanning fuzzed files. The exp… NVD-CWE-noinfo
CVE-2021-33598 2024-11-21 15:09 2021-08-23 Show GitHub Exploit DB Packet Storm
191587 7.5 HIGH
Network 		apache roller User controlled `request.getHeader("Referer")`, `request.getRequestURL()` and `request.getQueryString()` are used to build and run a regex expression. The attacker doesn't have to use a browser and m… CWE-400
 Uncontrolled Resource Consumption 		CVE-2021-33580 2024-11-21 15:09 2021-08-18 Show GitHub Exploit DB Packet Storm
191588 7.0 HIGH
Local 		microsoft azure_cyclecloud Azure CycleCloud Elevation of Privilege Vulnerability NVD-CWE-noinfo
CVE-2021-33762 2024-11-21 15:09 2021-08-13 Show GitHub Exploit DB Packet Storm
191589 9.1 CRITICAL
Network 		foxitsoftware foxit_reader
phantompdf 		Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 allow information disclosure or an application crash after mishandling the Tab key during XFA form interaction. NVD-CWE-noinfo
CVE-2021-33794 2024-11-21 15:09 2021-08-12 Show GitHub Exploit DB Packet Storm
191590 9.8 CRITICAL
Network 		foxitsoftware foxit_reader
phantompdf 		Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 have an out-of-bounds write because the Cross-Reference table is mishandled during Office document conversion. CWE-787
 Out-of-bounds Write 		CVE-2021-33793 2024-11-21 15:09 2021-08-12 Show GitHub Exploit DB Packet Storm