Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 25, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 511 | 7.5 |
重要
Network |
VMware | Spring AI | VMwareのSpring AIにおけるデータクエリロジックの特殊要素の不適切な中立化に関する脆弱性 |
CWE-943
データクエリロジックの特殊要素の不適切な中立化 |
CVE-2026-47835 | 2026-06-22 11:49 | 2026-06-15 | Show | GitHub Exploit DB Packet Storm |
| 512 | 8.1 |
重要
Network |
VMware | Spring Security | VMwareのSpring Securityにおける認証に関する脆弱性 |
CWE-287
不適切な認証 |
CVE-2026-47838 | 2026-06-22 11:49 | 2026-06-10 | Show | GitHub Exploit DB Packet Storm |
| 513 | 7.8 |
重要
Local |
アドビシステムズ |
Adobe Acrobat Reader DC Adobe Acrobat Adobe Acrobat DC |
アドビのAdobe Acrobat等の複数製品における境界外書き込みに関する脆弱性 |
CWE-787
境界外書き込み |
CVE-2026-47965 | 2026-06-22 11:49 | 2026-06-12 | Show | GitHub Exploit DB Packet Storm |
| 514 | 8.2 |
重要
Network |
アドビシステムズ | Adobe Acrobat | アドビのAdobe Acrobatにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2026-48294 | 2026-06-22 11:49 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 515 | 9.3 |
緊急
Network |
Rocket.Chat | Rocket.Chat | Rocket.Chatにおけるアクセス制御に関する脆弱性 |
CWE-284
不適切なアクセス制御 |
CVE-2026-48616 | 2026-06-22 11:49 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 516 | 7.5 |
重要
Network |
ws project | ws | ws projectのwsにおける複数の脆弱性 |
CWE-400 CWE-770 |
CVE-2026-48779 | 2026-06-22 11:49 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 517 | 7.5 |
重要
Network |
Rocket.Chat | Rocket.Chat | Rocket.Chatにおける認証に関する脆弱性 |
CWE-287
不適切な認証 |
CVE-2026-48929 | 2026-06-22 11:49 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 518 | 9.8 |
緊急
Network |
MariaDB Corporation Ab. | MariaDB | MariaDB Corporation Ab.のMariaDBにおけるOS コマンドインジェクションの脆弱性 |
CWE-78
OSコマンド・インジェクション |
CVE-2026-49261 | 2026-06-22 11:49 | 2026-06-11 | Show | GitHub Exploit DB Packet Storm |
| 519 | 9.1 |
緊急
Network |
Apache Software Foundation | Apache Shiro | Apache Software FoundationのApache ShiroにおけるLDAP インジェクションの脆弱性 |
CWE-90
LDAP インジェクション |
CVE-2026-49268 | 2026-06-22 11:48 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 520 | 7 |
重要
Local |
マイクロソフト | Microsoft Malware Protection Engine | Microsoft Defender Elevation of Privilege Vulnerability |
CWE-59
リンク解釈の問題 |
CVE-2026-50656 | 2026-06-22 11:48 | 2026-06-16 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 26, 2026, 4 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 190831 | 8.1 |
HIGH
Network |
cisco |
sf250-24_firmware sf250-24p_firmware sf250-48_firmware sf250-48hp_firmware sf250-08_firmware sf250-08hp_firmware sf250-10p_firmware sf250-18_firmware sf250-26_firmware sf25… |
A vulnerability in the web-based management interface of multiple Cisco Small Business Series Switches could allow an unauthenticated, remote attacker to replay valid user session credentials and gai… |
CWE-613
Insufficient Session Expiration |
CVE-2021-34739 | 2024-11-21 15:11 | 2021-11-5 | Show | GitHub Exploit DB Packet Storm |
| 190832 | 7.5 |
HIGH
Network |
kaspersky | endpoint_security | Possible system denial of service in case of arbitrary changing Firefox browser parameters. An attacker could change specific Firefox browser parameters file in a certain way and then reboot the syst… |
NVD-CWE-noinfo
|
CVE-2021-35053 | 2024-11-21 15:11 | 2021-11-4 | Show | GitHub Exploit DB Packet Storm |
| 190833 | 6.1 |
MEDIUM
Network |
cisco |
firepower_management_center_virtual_appliance sourcefire_defense_center firepower_threat_defense |
Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an attacker to execute a cross-site scripting (XSS) attack or an open re… |
CWE-79 CWE-601 Cross-site Scripting Open Redirect |
CVE-2021-34764 | 2024-11-21 15:11 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 190834 | 4.8 |
MEDIUM
Network |
cisco |
firepower_management_center_virtual_appliance sourcefire_defense_center firepower_threat_defense |
Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an attacker to execute a cross-site scripting (XSS) attack or an open re… |
CWE-79
Cross-site Scripting |
CVE-2021-34763 | 2024-11-21 15:11 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 190835 | 7.8 |
HIGH
Local |
cisco |
firepower_management_center_virtual_appliance sourcefire_defense_center firepower_threat_defense |
Multiple vulnerabilities in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to execute arbitrary commands with root privileges. For more informat… |
CWE-78
OS Command |
CVE-2021-34756 | 2024-11-21 15:11 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 190836 | 5.3 |
MEDIUM
Network |
cisco |
firepower_threat_defense adaptive_security_appliance_software asa_5512-x_firmware asa_5505_firmware asa_5515-x_firmware asa_5525-x_firmware asa_5545-x_firmware asa_5555-x_firmwar… |
A vulnerability in the Simple Network Management Protocol version 3 (SNMPv3) access control functionality of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) … |
NVD-CWE-Other
|
CVE-2021-34794 | 2024-11-21 15:11 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 190837 | 8.6 |
HIGH
Network |
cisco |
firepower_threat_defense adaptive_security_appliance adaptive_security_appliance_software asa_5512-x_firmware asa_5505_firmware asa_5515-x_firmware asa_5525-x_firmware asa_5545-x… |
A vulnerability in the TCP Normalizer of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software operating in transparent mode could allow an unauthenticated, rem… |
CWE-924
Improper Enforcement of Message Integrity During Transmission in a Communication Channel |
CVE-2021-34793 | 2024-11-21 15:11 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 190838 | 7.8 |
HIGH
Local |
cisco |
firepower_management_center_virtual_appliance sourcefire_defense_center firepower_threat_defense |
Multiple vulnerabilities in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to execute arbitrary commands with root privileges. For more informat… |
CWE-78
OS Command |
CVE-2021-34755 | 2024-11-21 15:11 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 190839 | 7.5 |
HIGH
Network |
cisco |
firepower_threat_defense adaptive_security_appliance_software asa_5512-x_firmware asa_5505_firmware asa_5515-x_firmware asa_5525-x_firmware asa_5545-x_firmware asa_5555-x_firmwar… |
A vulnerability in the memory management of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a den… |
CWE-401
Missing Release of Memory after Effective Lifetime |
CVE-2021-34792 | 2024-11-21 15:11 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 190840 | 5.3 |
MEDIUM
Network |
cisco |
firepower_threat_defense adaptive_security_appliance adaptive_security_appliance_software asa_5512-x_firmware asa_5505_firmware asa_5515-x_firmware asa_5525-x_firmware asa_5545-x… |
Multiple vulnerabilities in the Application Level Gateway (ALG) for the Network Address Translation (NAT) feature of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD… |
CWE-20
Improper Input Validation |
CVE-2021-34791 | 2024-11-21 15:11 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |