Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
361	8.5	重要 Network	オラクル	MySQL Shell	オラクルのMySQL Shellにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-46870	2026-06-23 10:00	2026-06-17	Show	GitHub Exploit DB Packet Storm

362	6.5	警告 Network	オラクル	MySQL Shell	オラクルのMySQL Shellにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-46871	2026-06-23 10:00	2026-06-17	Show	GitHub Exploit DB Packet Storm

363	4.8	警告 Network	F5 Networks	WAF NGINX Gateway Fabric DoS NGINX Instance Manager NGINX Ingress Controller NGINX plus nginx open source	F5 NetworksのDoS等の複数製品における境界外読み取りに関する脆弱性 New	CWE-125 境界外読み取り	CVE-2026-48142	2026-06-23 10:00	2026-06-17	Show	GitHub Exploit DB Packet Storm

364	8.1	重要 Network	F5 Networks	NGINX Gateway Fabric	F5 NetworksのNGINX Gateway Fabricにおけるインジェクションに関する脆弱性 New	CWE-74 インジェクション	CVE-2026-50107	2026-06-23 10:00	2026-06-17	Show	GitHub Exploit DB Packet Storm

365	-	-	三菱電機	MELSEC iQ-Fシリーズ FX5-ENET/IP形Ethernetユニット MELSEC iQ-F FX5-EIP形EtherNet/IPユニット	三菱電機製MELSEC iQ-FシリーズのFX5-EIPおよびFX5-ENET/IPにおける脆弱性	CWE-190 CWE-440	CVE-2026-8805 CVE-2026-8806	2026-06-22 18:05	2026-06-19	Show	GitHub Exploit DB Packet Storm

366	-	-	（複数のベンダ）	（複数の製品）	Vendor-signed UEFIアプリケーションにおけるセキュアブートバイパスの脆弱性	-	-	2026-06-22 17:17	2026-06-19	Show	GitHub Exploit DB Packet Storm

367	-	-	（複数のベンダ）	（複数の製品）	CISA ICS Advisory / ICS Medical Advisory（2026年06月18日）	-	-	2026-06-22 17:17	2026-06-19	Show	GitHub Exploit DB Packet Storm

368	8.4	重要 Local	マイクロソフト	Microsoft Office 2021 Long Term Servicing Channel Edition Microsoft Office 365 Microsoft Office 2024 Long-Term Servicing Ch…	Microsoft Office のリモートコードが実行される脆弱性	CWE-416 CWE-787	CVE-2026-45474	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

369	7.8	重要 Local	マイクロソフト	Microsoft Office 2021 Long Term Servicing Channel Edition Microsoft Office 365 Microsoft Office 2024 Long-Term Servicing Ch…	Microsoft Office のリモートコードが実行される脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-45475	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

370	5.4	警告 Network	マイクロソフト	Microsoft SharePoint Server	Microsoft Office Project Server のなりすましの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-45483	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 26, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
191561	7.5	HIGH Network	myfwc	fish_\\|_hunt_fl	An insufficient session expiration vulnerability exists in the "Fish \| Hunt FL" iOS app version 3.8.0 and earlier, which allows a remote attacker to reuse, spoof, or steal other user and admin sessio…	CWE-613 Insufficient Session Expiration	CVE-2021-33982	2024-11-21 15:09	2021-09-9	Show	GitHub Exploit DB Packet Storm

191562	4.3	MEDIUM Network	myfwc	fish_\\|_hunt_fl	An insecure, direct object vulnerability in hunting/fishing license retrieval function of the "Fish \| Hunt FL" iOS app versions 3.8.0 and earlier allows a remote authenticated attacker to retrieve ot…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2021-33981	2024-11-21 15:09	2021-09-9	Show	GitHub Exploit DB Packet Storm

191563	5.5	MEDIUM Local	f-secure	linux_security cloud_protection_for_salesforce atlant elements_endpoint_protection	A vulnerability affecting F-Secure Antivirus engine was discovered whereby scanning WIM archive file can lead to denial-of-service (infinite loop and freezes AV engine scanner). The vulnerability can…	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2021-33599	2024-11-21 15:09	2021-09-7	Show	GitHub Exploit DB Packet Storm

191564	6.5	MEDIUM Adjacent	ti	cc256xcqfn-em_firmware	The Bluetooth Classic implementation on the Texas Instruments CC256XCQFN-EM does not properly handle the reception of continuous LMP_AU_Rand packets, allowing attackers in radio range to trigger a de…	NVD-CWE-noinfo	CVE-2021-34149	2024-11-21 15:09	2021-09-7	Show	GitHub Exploit DB Packet Storm

191565	6.5	MEDIUM Adjacent	cypress	wireless_internet_connectivity_for_embedded_devices	The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 devices does not properly handle the reception of LMP_max_slot with a greater ACL Length after completi…	NVD-CWE-noinfo	CVE-2021-34148	2024-11-21 15:09	2021-09-7	Show	GitHub Exploit DB Packet Storm

191566	6.5	MEDIUM Adjacent	cypress	wireless_internet_connectivity_for_embedded_devices	The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 does not properly handle the reception of a malformed LMP timing accuracy response followed by multiple…	NVD-CWE-noinfo	CVE-2021-34147	2024-11-21 15:09	2021-09-7	Show	GitHub Exploit DB Packet Storm

191567	6.5	MEDIUM Adjacent	cypress	cyw920735q60evb-01_firmware cyw20735b1_firmware	The Bluetooth Classic implementation in the Cypress CYW920735Q60EVB does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a deni…	NVD-CWE-noinfo	CVE-2021-34146	2024-11-21 15:09	2021-09-7	Show	GitHub Exploit DB Packet Storm

191568	5.3	MEDIUM Adjacent	cypress	wireless_internet_connectivity_for_embedded_devices	The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 devices does not properly handle the reception of LMP_max_slot with an invalid Baseband packet type (an…	NVD-CWE-noinfo	CVE-2021-34145	2024-11-21 15:09	2021-09-7	Show	GitHub Exploit DB Packet Storm

191569	6.5	MEDIUM Adjacent	zh-jieli	fw-ac63_bt_sdk	The Bluetooth Classic implementation in the Zhuhai Jieli AC6366C_DEMO_V1.0 does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger…	NVD-CWE-noinfo	CVE-2021-34143	2024-11-21 15:09	2021-09-7	Show	GitHub Exploit DB Packet Storm

191570	6.5	MEDIUM Adjacent	bluetrum	ab5301a_firmware	The Bluetooth Classic implementation on Bluetrum AB5301A devices with unknown firmware versions does not properly handle the reception of oversized DM1 LMP packets while no other BT connections are a…	NVD-CWE-noinfo	CVE-2021-34150	2024-11-21 15:09	2021-09-7	Show	GitHub Exploit DB Packet Storm