Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3771	4.3	警告 Network	Onyx	Onyx	Onyxにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-42276	2026-05-14 10:18	2026-05-8	Show	GitHub Exploit DB Packet Storm

3772	6.5	警告 Network	Onyx	Onyx	Onyxにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-42277	2026-05-14 10:18	2026-05-8	Show	GitHub Exploit DB Packet Storm

3773	5.5	警告 Local	Python Software Foundation	Python Pillow	Python Software FoundationのPython Pillowにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-42308	2026-05-14 10:18	2026-05-9	Show	GitHub Exploit DB Packet Storm

3774	5.5	警告 Local	Python Software Foundation	Python Pillow	Python Software FoundationのPython Pillowにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-42309	2026-05-14 10:18	2026-05-9	Show	GitHub Exploit DB Packet Storm

3775	5.5	警告 Local	Python Software Foundation	Python Pillow	Python Software FoundationのPython Pillowにおける無限ループに関する脆弱性	CWE-835 無限ループ	CVE-2026-42310	2026-05-14 10:18	2026-05-9	Show	GitHub Exploit DB Packet Storm

3776	8.1	重要 Network	Grav CMS	grav	Grav CMSのgravにおける複数の脆弱性	CWE-269 CWE-285 CWE-639 CWE-837	CVE-2026-42609	2026-05-14 10:18	2026-05-11	Show	GitHub Exploit DB Packet Storm

3777	6.5	警告 Network	Grav CMS	grav	Grav CMSのgravにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-42610	2026-05-14 10:18	2026-05-11	Show	GitHub Exploit DB Packet Storm

3778	8.9	重要 Network	Grav CMS	grav	Grav CMSのgravにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42611	2026-05-14 10:18	2026-05-11	Show	GitHub Exploit DB Packet Storm

3779	5.4	警告 Network	Grav CMS	grav	Grav CMSのgravにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42612	2026-05-14 10:18	2026-05-11	Show	GitHub Exploit DB Packet Storm

3780	4.8	警告 Network	Grav CMS	grav	Grav CMSのgravにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42841	2026-05-14 10:18	2026-05-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313111	4.6	MEDIUM Network	-	-	A vulnerability in a certain REST API endpoint of Cisco Data Center Network Manager (DCNM) Software could allow an authenticated, remote attacker to perform a path traversal attack on an affecte…	-	CVE-2020-3538	2024-11-19 02:11	2024-11-19	Show	GitHub Exploit DB Packet Storm

313112	-		-	-	A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to elevate privileges on an affected system. To exploit this vulnerability, an attacker w…	CWE-20 Improper Input Validation	CVE-2021-1462	2024-11-19 02:11	2024-11-19	Show	GitHub Exploit DB Packet Storm

313113	6.1	MEDIUM Network	-	-	A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote at…	CWE-79 Cross-site Scripting	CVE-2021-1444	2024-11-19 02:11	2024-11-19	Show	GitHub Exploit DB Packet Storm

313114	4.3	MEDIUM Network	-	-	A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Content Security Management Appliance (SMA) could allow an authenticated, remote attacker to access…	CWE-201 Insertion of Sensitive Information Into Sent Data	CVE-2021-1425	2024-11-19 02:11	2024-11-19	Show	GitHub Exploit DB Packet Storm

313115	4.3	MEDIUM Network	-	-	A vulnerability in the distribution list feature of Cisco Webex Meetings could allow an authenticated, remote attacker to modify a distribution list that belongs to another user of their organiz…	CWE-284 Improper Access Control	CVE-2021-1410	2024-11-19 02:11	2024-11-19	Show	GitHub Exploit DB Packet Storm

313116	6.5	MEDIUM Adjacent	-	-	Multiple vulnerabilities in the Cisco Discovery Protocol and Link Layer Discovery Protocol (LLDP) implementations for Cisco IP Phone Series 68xx/78xx/88xx could allow an unauthenticated, ad…	CWE-120 Classic Buffer Overflow	CVE-2021-1379	2024-11-19 02:11	2024-11-19	Show	GitHub Exploit DB Packet Storm

313117	5.4	MEDIUM Network	-	-	A vulnerability in the API endpoints of Cisco Integrated Management Controller could allow an authenticated, remote attacker to bypass authorization and take actions on a vulnerable system witho…	CWE-269 Improper Privilege Management	CVE-2020-26063	2024-11-19 02:11	2024-11-19	Show	GitHub Exploit DB Packet Storm

313118	5.3	MEDIUM Network	-	-	A vulnerability in Cisco Integrated Management Controller could allow an unauthenticated, remote attacker to enumerate valid usernames within the vulnerable application. The vulnerability is du…	CWE-203 Information Exposure Through Discrepancy	CVE-2020-26062	2024-11-19 02:11	2024-11-19	Show	GitHub Exploit DB Packet Storm

313119	-		-	-	Multiple Cisco products are affected by a vulnerability in the Ethernet Frame Decoder of the Snort detection engine that could allow an unauthenticated, adjacent attacker to cause a denial of se…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2021-1285	2024-11-19 02:11	2024-11-19	Show	GitHub Exploit DB Packet Storm

313120	5.3	MEDIUM Network	-	-	A vulnerability in the cluster management interface of Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to view sensitive information on an affected system. To be af…	CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere	CVE-2021-1234	2024-11-19 02:11	2024-11-19	Show	GitHub Exploit DB Packet Storm