Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
471 6.5 警告
Network 		マイクロソフト Microsoft Graph Microsoft Graph の情報漏えいの脆弱性 New CWE-200
CWE-noinfo
CVE-2026-47655 2026-06-22 11:49 2026-06-4 Show GitHub Exploit DB Packet Storm
472 7.5 重要
Network 		VMware Spring AI VMwareのSpring AIにおけるデータクエリロジックの特殊要素の不適切な中立化に関する脆弱性 New CWE-943
データクエリロジックの特殊要素の不適切な中立化 		CVE-2026-47835 2026-06-22 11:49 2026-06-15 Show GitHub Exploit DB Packet Storm
473 8.1 重要
Network 		VMware Spring Security VMwareのSpring Securityにおける認証に関する脆弱性 New CWE-287
不適切な認証 		CVE-2026-47838 2026-06-22 11:49 2026-06-10 Show GitHub Exploit DB Packet Storm
474 7.8 重要
Local 		アドビシステムズ Adobe Acrobat Reader DC
Adobe Acrobat
Adobe Acrobat DC 		アドビのAdobe Acrobat等の複数製品における境界外書き込みに関する脆弱性 New CWE-787
境界外書き込み 		CVE-2026-47965 2026-06-22 11:49 2026-06-12 Show GitHub Exploit DB Packet Storm
475 8.2 重要
Network 		アドビシステムズ Adobe Acrobat アドビのAdobe Acrobatにおけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-48294 2026-06-22 11:49 2026-06-17 Show GitHub Exploit DB Packet Storm
476 9.3 緊急
Network 		Rocket.Chat Rocket.Chat Rocket.Chatにおけるアクセス制御に関する脆弱性 New CWE-284
不適切なアクセス制御 		CVE-2026-48616 2026-06-22 11:49 2026-06-17 Show GitHub Exploit DB Packet Storm
477 7.5 重要
Network 		ws project ws ws projectのwsにおける複数の脆弱性 New CWE-400
CWE-770
CVE-2026-48779 2026-06-22 11:49 2026-06-17 Show GitHub Exploit DB Packet Storm
478 7.5 重要
Network 		Rocket.Chat Rocket.Chat Rocket.Chatにおける認証に関する脆弱性 New CWE-287
不適切な認証 		CVE-2026-48929 2026-06-22 11:49 2026-06-17 Show GitHub Exploit DB Packet Storm
479 9.8 緊急
Network 		MariaDB Corporation Ab. MariaDB MariaDB Corporation Ab.のMariaDBにおけるOS コマンドインジェクションの脆弱性 New CWE-78
OSコマンド・インジェクション 		CVE-2026-49261 2026-06-22 11:49 2026-06-11 Show GitHub Exploit DB Packet Storm
480 9.1 緊急
Network 		Apache Software Foundation Apache Shiro Apache Software FoundationのApache ShiroにおけるLDAP インジェクションの脆弱性 New CWE-90
LDAP インジェクション 		CVE-2026-49268 2026-06-22 11:48 2026-06-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
190981 9.8 CRITICAL
Network 		connectwise automate An XXE vulnerability exists in ConnectWise Automate before 2021.0.6.132. CWE-611
XXE 		CVE-2021-35066 2024-11-21 15:11 2021-06-22 Show GitHub Exploit DB Packet Storm
190982 4.8 MEDIUM
Network 		checksec canopy CheckSec Canopy before 3.5.2 allows XSS attacks against the login page via the LOGIN_PAGE_DISCLAIMER parameter. CWE-79
Cross-site Scripting 		CVE-2021-34815 2024-11-21 15:11 2021-06-18 Show GitHub Exploit DB Packet Storm
190983 7.5 HIGH
Network 		synology calendar Use of hard-coded credentials vulnerability in php component in Synology Calendar before 2.4.0-0761 allows remote attackers to obtain sensitive information via unspecified vectors. - CVE-2021-34812 2024-11-21 15:11 2021-06-18 Show GitHub Exploit DB Packet Storm
190984 4.3 MEDIUM
Network 		synology download_station Server-Side Request Forgery (SSRF) vulnerability in task management component in Synology Download Station before 3.8.16-3566 allows remote authenticated users to access intranet resources via unspec… - CVE-2021-34811 2024-11-21 15:11 2021-06-18 Show GitHub Exploit DB Packet Storm
190985 8.8 HIGH
Network 		synology download_station Improper privilege management vulnerability in cgi component in Synology Download Station before 3.8.16-3566 allows remote authenticated users to execute arbitrary code via unspecified vectors. - CVE-2021-34810 2024-11-21 15:11 2021-06-18 Show GitHub Exploit DB Packet Storm
190986 8.8 HIGH
Network 		synology download_station Improper neutralization of special elements used in a command ('Command Injection') vulnerability in task management component in Synology Download Station before 3.8.16-3566 allows remote authentica… - CVE-2021-34809 2024-11-21 15:11 2021-06-18 Show GitHub Exploit DB Packet Storm
190987 5.3 MEDIUM
Network 		synology media_server Server-Side Request Forgery (SSRF) vulnerability in cgi component in Synology Media Server before 1.8.3-2881 allows remote attackers to access intranet resources via unspecified vectors. - CVE-2021-34808 2024-11-21 15:11 2021-06-18 Show GitHub Exploit DB Packet Storm
190988 7.5 HIGH
Network 		quassel-irc
fedoraproject 		quassel
fedora 		Quassel through 0.13.1, when --require-ssl is enabled, launches without SSL or TLS support if a usable X.509 certificate is not found on the local system. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2021-34825 2024-11-21 15:11 2021-06-17 Show GitHub Exploit DB Packet Storm
190989 9.8 CRITICAL
Network 		matrix olm Matrix libolm before 3.2.3 allows a malicious Matrix homeserver to crash a client (while it is attempting to retrieve an Olm encrypted room key backup from the homeserver) because olm_pk_decrypt has … CWE-787
 Out-of-bounds Write 		CVE-2021-34813 2024-11-21 15:11 2021-06-17 Show GitHub Exploit DB Packet Storm
190990 7.8 HIGH
Local 		teamviewer teamviewer TeamViewer before 14.7.48644 on Windows loads untrusted DLLs in certain situations. CWE-427
 Uncontrolled Search Path Element 		CVE-2021-34803 2024-11-21 15:11 2021-06-17 Show GitHub Exploit DB Packet Storm