Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 24, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
361 - - (複数のベンダ) (複数の製品) CISA ICS Advisory / ICS Medical Advisory(2026年06月18日) New - - 2026-06-22 17:17 2026-06-19 Show GitHub Exploit DB Packet Storm
362 8.4 重要
Local 		マイクロソフト Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft Office 365
Microsoft Office 2024 Long-Term Servicing Ch… 		Microsoft Office のリモート コードが実行される脆弱性 New CWE-416
CWE-787
CVE-2026-45474 2026-06-22 11:56 2026-06-9 Show GitHub Exploit DB Packet Storm
363 7.8 重要
Local 		マイクロソフト Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft Office 365
Microsoft Office 2024 Long-Term Servicing Ch… 		Microsoft Office のリモート コードが実行される脆弱性 New CWE-122
ヒープオーバーフロー 		CVE-2026-45475 2026-06-22 11:56 2026-06-9 Show GitHub Exploit DB Packet Storm
364 5.4 警告
Network 		マイクロソフト Microsoft SharePoint Server Microsoft Office Project Server のなりすましの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-45483 2026-06-22 11:56 2026-06-9 Show GitHub Exploit DB Packet Storm
365 7.8 重要
Local 		マイクロソフト .NET .NET SDK の特権昇格の脆弱性 New CWE-285
CWE-863
CVE-2026-45490 2026-06-22 11:56 2026-06-9 Show GitHub Exploit DB Packet Storm
366 5.5 警告
Local 		マイクロソフト .NET .NET の改ざんの脆弱性 New CWE-59
リンク解釈の問題 		CVE-2026-45491 2026-06-22 11:56 2026-06-9 Show GitHub Exploit DB Packet Storm
367 6.1 警告
Network 		マイクロソフト Microsoft Exchange Server Subscription Edition (SE)
Microsoft Exchange Server 		Microsoft Exchange Server のなりすましの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-45500 2026-06-22 11:56 2026-06-9 Show GitHub Exploit DB Packet Storm
368 8.1 重要
Network 		マイクロソフト Microsoft Exchange Server Subscription Edition (SE)
Microsoft Exchange Server 		Microsoft Exchange Server のリモートでコードが実行される脆弱性 New CWE-94
コード・インジェクション 		CVE-2026-45583 2026-06-22 11:56 2026-06-9 Show GitHub Exploit DB Packet Storm
369 7.5 重要
Network 		マイクロソフト Microsoft Visual Studio 2026
.NET
ASP.NET Core 		ASP.NET Core のサービス拒否の脆弱性 New CWE-400
CWE-noinfo
CVE-2026-45591 2026-06-22 11:56 2026-06-9 Show GitHub Exploit DB Packet Storm
370 7.5 重要
Network 		マイクロソフト Microsoft Windows 11 26h1
Microsoft Windows Server 2022
Microsoft Windows 10 22h2
Microsoft Windows 10 1607
Microsoft Wind… 		Windows リモート デスクトップ プロトコル (RDP) の情報漏えいの脆弱性 New CWE-125
境界外読み取り 		CVE-2026-45639 2026-06-22 11:56 2026-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
191451 8.1 HIGH
Network 		google-it_project google-it Google-it is a Node.js package which allows its users to send search queries to Google and receive the results in a JSON format. When using the 'Open in browser' option in versions up to 1.6.2, googl… CWE-78
OS Command  		CVE-2021-34083 2024-11-21 15:09 2022-06-2 Show GitHub Exploit DB Packet Storm
191452 9.8 CRITICAL
Network 		proctree_project proctree OS Command Injection vulnerability in allenhwkim proctree through 0.1.1 and commit 0ac10ae575459457838f14e21d5996f2fa5c7593 for Node.js, allows attackers to execute arbitrary commands via the fix fun… CWE-78
OS Command  		CVE-2021-34082 2024-11-21 15:09 2022-06-2 Show GitHub Exploit DB Packet Storm
191453 8.8 HIGH
Network 		gitsome_project gitsome OS Command Injection vulnerability in bbultman gitsome through 0.2.3 allows attackers to execute arbitrary commands via a crafted tag name of the target git repository. CWE-78
OS Command  		CVE-2021-34081 2024-11-21 15:09 2022-06-2 Show GitHub Exploit DB Packet Storm
191454 9.8 CRITICAL
Network 		ssl-utils_project ssl-utils OS Command Injection vulnerability in es128 ssl-utils 1.0.0 for Node.js allows attackers to execute arbitrary commands via unsanitized shell metacharacters provided to the createCertRequest() and the… CWE-78
OS Command  		CVE-2021-34080 2024-11-21 15:09 2022-06-2 Show GitHub Exploit DB Packet Storm
191455 9.8 CRITICAL
Network 		docker-tester_project docker-tester OS Command injection vulnerability in Mintzo Docker-Tester through 1.2.1 allows attackers to execute arbitrary commands via shell metacharacters in the 'ports' entry of a crafted docker-compose.yml f… CWE-78
OS Command  		CVE-2021-34079 2024-11-21 15:09 2022-06-2 Show GitHub Exploit DB Packet Storm
191456 8.8 HIGH
Network 		adp lifion-verifiy-dependencies lifion-verify-dependencies through 1.1.0 is vulnerable to OS command injection via a crafted dependency name on the scanned project's package.json file. CWE-78
OS Command  		CVE-2021-34078 2024-11-21 15:09 2022-06-2 Show GitHub Exploit DB Packet Storm
191457 7.5 HIGH
Network 		rsa archer RSA Archer 6.8.00500.1003 P5 allows Unrestricted Upload of a File with a Dangerous Type. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2021-33615 2024-11-21 15:09 2022-06-2 Show GitHub Exploit DB Packet Storm
191458 9.8 CRITICAL
Network 		thecus n4800eco_firmware Thecus 4800Eco was discovered to contain a command injection vulnerability via the username parameter in /adm/setmain.php. CWE-78
OS Command  		CVE-2021-34111 2024-11-21 15:09 2022-05-20 Show GitHub Exploit DB Packet Storm
191459 9.8 CRITICAL
Network 		glensawyer mp3gain Read access violation in the III_dequantize_sample function in mpglibDBL/layer3.c in mp3gain through 1.5.2-r2 allows remote attackers to cause a denial of service (application crash) or possibly have… CWE-125
Out-of-bounds Read 		CVE-2021-34085 2024-11-21 15:09 2022-05-12 Show GitHub Exploit DB Packet Storm
191460 5.3 MEDIUM
Network 		splunk splunk The Splunk Enterprise REST API allows enumeration of usernames via the lockout error message. The potential vulnerability impacts Splunk Enterprise instances before 8.1.7 when configured to repress v… CWE-203
 Information Exposure Through Discrepancy 		CVE-2021-33845 2024-11-21 15:09 2022-05-7 Show GitHub Exploit DB Packet Storm