Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
541	7.7	重要 Network	openwebui	open webui	openwebuiのopen webuiにおける複数の脆弱性	CWE-22 CWE-918	CVE-2026-54017	2026-06-26 11:55	2026-06-18	Show	GitHub Exploit DB Packet Storm

542	7.7	重要 Network	openwebui	open webui	openwebuiのopen webuiにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-54018	2026-06-26 11:55	2026-06-23	Show	GitHub Exploit DB Packet Storm

543	6.5	警告 Network	openwebui	open webui	openwebuiのopen webuiにおける複数の脆弱性	CWE-862 CWE-943	CVE-2026-54019	2026-06-26 11:55	2026-06-23	Show	GitHub Exploit DB Packet Storm

544	6.3	警告 Network	openwebui	open webui	openwebuiのopen webuiにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-54021	2026-06-26 11:55	2026-06-23	Show	GitHub Exploit DB Packet Storm

545	5.3	警告 Network	openwebui	open webui	openwebuiのopen webuiにおける複数の脆弱性	CWE-706 CWE-863	CVE-2026-54022	2026-06-26 11:55	2026-06-23	Show	GitHub Exploit DB Packet Storm

546	7.5	重要 Network	マイクロソフト	Microsoft 365 Copilot	M365 Copilot の情報漏えいの脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-54130	2026-06-26 11:55	2026-06-18	Show	GitHub Exploit DB Packet Storm

547	8.8	重要 Network	vLLM	vLLM	vLLMにおける制御されていない検索パスの要素に関する脆弱性	CWE-427 制御されていない検索パスの要素	CVE-2026-54232	2026-06-26 11:55	2026-06-22	Show	GitHub Exploit DB Packet Storm

548	6.5	警告 Network	vLLM	vLLM	vLLMにおける高圧縮データの処理 (データ増幅)に関する脆弱性	CWE-409 高圧縮データの不適切な処理 (データ増幅)	CVE-2026-54233	2026-06-26 11:55	2026-06-22	Show	GitHub Exploit DB Packet Storm

549	6.5	警告 Network	vLLM	vLLM	vLLMにおける指定されたタイプの入力に対する不適切な検証に関する脆弱性	CWE-1287 指定されたタイプの入力に対する不適切な検証	CVE-2026-54235	2026-06-26 11:55	2026-06-22	Show	GitHub Exploit DB Packet Storm

550	5.3	警告 Network	vLLM	vLLM	vLLMにおけるログファイルからの情報漏えいに関する脆弱性	CWE-532 ログファイルからの情報漏えい	CVE-2026-54236	2026-06-26 11:55	2026-06-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
190671	7.5	HIGH Network	allwinnertech	android_q_sdk	There is a NULL pointer dereference in the syscall open_exec function of Allwinner R818 SoC Android Q SDK V1.0 that could executable a malicious file to cause a system crash.	CWE-476 NULL Pointer Dereference	CVE-2021-38784	2024-11-21 15:18	2022-01-18	Show	GitHub Exploit DB Packet Storm

190672	7.5	HIGH Network	allwinnertech	android_q_sdk	There is a Out-of-Bound Write in the Allwinner R818 SoC Android Q SDK V1.0 camera driver "/dev/cedar_dev" through iotcl cmd IOCTL_SET_PROC_INFO and IOCTL_COPY_PROC_INFO, which could cause a system cr…	CWE-787 Out-of-bounds Write	CVE-2021-38783	2024-11-21 15:18	2022-01-18	Show	GitHub Exploit DB Packet Storm

190673	8.8	HIGH Network	ibm	filenet_content_manager	IBM FileNet Content Manager 5.5.4, 5.5.6, and 5.5.7 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. IBM X-Force ID: 212…	CWE-78 OS Command	CVE-2021-38965	2024-11-21 15:18	2022-01-18	Show	GitHub Exploit DB Packet Storm

190674	5.5	MEDIUM Local	ibm	sterling_gentran	IBM Sterling Gentran:Server for Microsoft Windows 5.3 stores potentially sensitive information in log files that could be read by a local user. IBM X-Force ID: 213962.	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2021-39032	2024-11-21 15:18	2022-01-15	Show	GitHub Exploit DB Packet Storm

190675	6.5	MEDIUM Network	ibm	i	The IBM i 7.1, 7.2, 7.3, and 7.4 Extended Dynamic Remote SQL server (EDRSQL) could allow a remote authenticated user to send a specially crafted request and cause a denial of service. IBM X-Force ID:…	NVD-CWE-noinfo	CVE-2021-39056	2024-11-21 15:18	2022-01-14	Show	GitHub Exploit DB Packet Storm

190676	7.8	HIGH Local	ibm	aix vios	IBM AIX 7.0, 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the lscore command which could lead to code execution. IBM X-Force ID: 212953.	NVD-CWE-noinfo	CVE-2021-38991	2024-11-21 15:18	2022-01-12	Show	GitHub Exploit DB Packet Storm

190677	7.8	HIGH Local	ibm	aix vios	IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the mount command which could lead to code execution. IBM X-Force ID: 212952.	NVD-CWE-noinfo	CVE-2021-38990	2024-11-21 15:18	2022-01-10	Show	GitHub Exploit DB Packet Storm

190678	7.5	HIGH Network	ibm	security_verify_access	IBM Security Verify 10.0.0, 10.0.1.0, and 10.0.2.0 could disclose sensitive information due to hazardous input validation during QR code generation. IBM X-Force ID: 212040.	CWE-20 Improper Input Validation	CVE-2021-38957	2024-11-21 15:18	2022-01-10	Show	GitHub Exploit DB Packet Storm

190679	5.3	MEDIUM Network	ibm	security_verify_access	IBM Security Verify 10.0.0, 10.0.1.0, and 10.0.2.0 could disclose sensitive version information in HTTP response headers that could aid in further attacks against the system. IBM X-Force ID: 212038	CWE-200 Information Exposure	CVE-2021-38956	2024-11-21 15:18	2022-01-10	Show	GitHub Exploit DB Packet Storm

190680	7.5	HIGH Network	ibm	security_verify_access	IBM Security Verify 10.0.0, 10.0.1.0, and 10.0.2.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 210067.	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2021-38921	2024-11-21 15:18	2022-01-10	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed