Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 24, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
471 6.5 警告
Network 		マイクロソフト Microsoft Graph Microsoft Graph の情報漏えいの脆弱性 New CWE-200
CWE-noinfo
CVE-2026-47655 2026-06-22 11:49 2026-06-4 Show GitHub Exploit DB Packet Storm
472 7.5 重要
Network 		VMware Spring AI VMwareのSpring AIにおけるデータクエリロジックの特殊要素の不適切な中立化に関する脆弱性 New CWE-943
データクエリロジックの特殊要素の不適切な中立化 		CVE-2026-47835 2026-06-22 11:49 2026-06-15 Show GitHub Exploit DB Packet Storm
473 8.1 重要
Network 		VMware Spring Security VMwareのSpring Securityにおける認証に関する脆弱性 New CWE-287
不適切な認証 		CVE-2026-47838 2026-06-22 11:49 2026-06-10 Show GitHub Exploit DB Packet Storm
474 7.8 重要
Local 		アドビシステムズ Adobe Acrobat Reader DC
Adobe Acrobat
Adobe Acrobat DC 		アドビのAdobe Acrobat等の複数製品における境界外書き込みに関する脆弱性 New CWE-787
境界外書き込み 		CVE-2026-47965 2026-06-22 11:49 2026-06-12 Show GitHub Exploit DB Packet Storm
475 8.2 重要
Network 		アドビシステムズ Adobe Acrobat アドビのAdobe Acrobatにおけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-48294 2026-06-22 11:49 2026-06-17 Show GitHub Exploit DB Packet Storm
476 9.3 緊急
Network 		Rocket.Chat Rocket.Chat Rocket.Chatにおけるアクセス制御に関する脆弱性 New CWE-284
不適切なアクセス制御 		CVE-2026-48616 2026-06-22 11:49 2026-06-17 Show GitHub Exploit DB Packet Storm
477 7.5 重要
Network 		ws project ws ws projectのwsにおける複数の脆弱性 New CWE-400
CWE-770
CVE-2026-48779 2026-06-22 11:49 2026-06-17 Show GitHub Exploit DB Packet Storm
478 7.5 重要
Network 		Rocket.Chat Rocket.Chat Rocket.Chatにおける認証に関する脆弱性 New CWE-287
不適切な認証 		CVE-2026-48929 2026-06-22 11:49 2026-06-17 Show GitHub Exploit DB Packet Storm
479 9.8 緊急
Network 		MariaDB Corporation Ab. MariaDB MariaDB Corporation Ab.のMariaDBにおけるOS コマンドインジェクションの脆弱性 New CWE-78
OSコマンド・インジェクション 		CVE-2026-49261 2026-06-22 11:49 2026-06-11 Show GitHub Exploit DB Packet Storm
480 9.1 緊急
Network 		Apache Software Foundation Apache Shiro Apache Software FoundationのApache ShiroにおけるLDAP インジェクションの脆弱性 New CWE-90
LDAP インジェクション 		CVE-2026-49268 2026-06-22 11:48 2026-06-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
191351 7.5 HIGH
Network 		torproject tor An issue was discovered in Tor before 0.4.6.5, aka TROVE-2021-003. An attacker can forge RELAY_END or RELAY_RESOLVED to bypass the intended access control for ending a stream. CWE-290
 Authentication Bypass by Spoofing 		CVE-2021-34548 2024-11-21 15:10 2021-06-29 Show GitHub Exploit DB Packet Storm
191352 6.1 MEDIUM
Network 		umbraco umbraco_cms Umbraco CMS before 7.15.7 is vulnerable to Open Redirection due to insufficient url sanitization on booting.aspx. CWE-601
Open Redirect 		CVE-2021-34254 2024-11-21 15:10 2021-06-29 Show GitHub Exploit DB Packet Storm
191353 9.8 CRITICAL
Network 		eclipse business_intelligence_and_reporting_tools In Eclipse BIRT versions 4.8.0 and earlier, an attacker can use query parameters to create a JSP file which is accessible from remote (current BIRT viewer dir) to inject JSP code into the running ins… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2021-34427 2024-11-21 15:10 2021-06-26 Show GitHub Exploit DB Packet Storm
191354 2.3 LOW
Local 		nvidia jetson_linux Bootloader contains a vulnerability in NVIDIA MB2, which may cause free-the-wrong-heap, which may lead to limited denial of service. CWE-787
 Out-of-bounds Write 		CVE-2021-34397 2024-11-21 15:10 2021-06-23 Show GitHub Exploit DB Packet Storm
191355 2.3 LOW
Local 		nvidia jetson_linux Bootloader contains a vulnerability in access permission settings where unauthorized software may be able to overwrite NVIDIA MB2 code, which would result in limited denial of service. NVD-CWE-noinfo
CVE-2021-34396 2024-11-21 15:10 2021-06-23 Show GitHub Exploit DB Packet Storm
191356 4.2 MEDIUM
Local 		nvidia jetson_linux Trusty TLK contains a vulnerability in its access permission settings where it does not properly restrict access to a resource from a user with local privileges, which might lead to limited informati… CWE-276
Incorrect Default Permissions  		CVE-2021-34395 2024-11-21 15:10 2021-06-23 Show GitHub Exploit DB Packet Storm
191357 6.7 MEDIUM
Local 		nvidia jetson_linux Trusty contains a vulnerability in the NVIDIA OTE protocol that is present in all TAs. An incorrect message stream deserialization allows an attacker to use the malicious CA that is run by the user t… CWE-502
 Deserialization of Untrusted Data 		CVE-2021-34394 2024-11-21 15:10 2021-06-23 Show GitHub Exploit DB Packet Storm
191358 4.4 MEDIUM
Local 		nvidia jetson_linux Trusty contains a vulnerability in TSEC TA which deserializes the incoming messages even though the TSEC TA does not expose any command. This vulnerability might allow an attacker to exploit the dese… CWE-502
 Deserialization of Untrusted Data 		CVE-2021-34393 2024-11-21 15:10 2021-06-23 Show GitHub Exploit DB Packet Storm
191359 5.5 MEDIUM
Local 		nvidia jetson_linux Trusty TLK contains a vulnerability in the NVIDIA TLK kernel where an integer overflow in the tz_map_shared_mem function can bypass boundary checks, which might lead to denial of service. CWE-190
 Integer Overflow or Wraparound 		CVE-2021-34392 2024-11-21 15:10 2021-06-23 Show GitHub Exploit DB Packet Storm
191360 5.5 MEDIUM
Local 		nvidia jetson_linux Trusty contains a vulnerability in the NVIDIA TLK kernel function where a lack of checks allows the exploitation of an integer overflow through a specific SMC call that is triggered by the user, whic… CWE-190
 Integer Overflow or Wraparound 		CVE-2021-34391 2024-11-21 15:10 2021-06-23 Show GitHub Exploit DB Packet Storm