Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
541	8.8	重要 Network	Google	Android	GoogleのAndroidにおける型の取り違えに関する脆弱性 New	CWE-843 型の取り違え	CVE-2026-0162	2026-06-22 11:45	2026-06-16	Show	GitHub Exploit DB Packet Storm

542	8.8	重要 Network	Google	Android	GoogleのAndroidにおける複数の脆弱性 New	CWE-120 CWE-787	CVE-2026-0164	2026-06-22 11:45	2026-06-16	Show	GitHub Exploit DB Packet Storm

543	5.7	警告 Network	Google	Android	GoogleのAndroidにおける複数の脆弱性 New	CWE-120 CWE-125	CVE-2026-0165	2026-06-22 11:45	2026-06-16	Show	GitHub Exploit DB Packet Storm

544	6.4	警告 Network	ネットギア	RBE371 FIRMWARE RBE372 FIRMWARE RBE370 FIRMWARE RBE374 FIRMWARE	ネットギアのRBE370 FIRMWARE等の複数製品におけるバッファエラーの脆弱性 New	CWE-119 バッファエラー	CVE-2026-0409	2026-06-22 11:45	2026-06-9	Show	GitHub Exploit DB Packet Storm

545	4.5	警告 Adjacent	ネットギア	JR6150 ファームウェア	ネットギアのJR6150 ファームウェアにおける入力確認に関する脆弱性 New	CWE-20 CWE-noinfo	CVE-2026-0412	2026-06-22 11:45	2026-06-9	Show	GitHub Exploit DB Packet Storm

546	4.5	警告 Adjacent	ネットギア	RBRE950 FIRMWARE RBR750 ファームウェア RBE770 FIRMWARE RBS750 ファームウェア RBS860 FIRMWARE RBR860 FIRMWARE RBR840 ファームウェア RBE370 FIRMWARE RBRE960&n…	ネットギアのRBE370 FIRMWARE等の複数製品におけるスタックベースのバッファオーバーフローの脆弱性 New	CWE-121 スタックオーバーフロー	CVE-2026-0413	2026-06-22 11:45	2026-06-9	Show	GitHub Exploit DB Packet Storm

547	4.5	警告 Adjacent	ネットギア	RBE970 FIRMWARE	ネットギアのRBE970 FIRMWAREにおけるコードインジェクションの脆弱性 New	CWE-94 コード・インジェクション	CVE-2026-0414	2026-06-22 11:45	2026-06-9	Show	GitHub Exploit DB Packet Storm

548	4.5	警告 Adjacent	ネットギア	RBRE950 FIRMWARE RBR750 ファームウェア RBS750 ファームウェア RBS860 FIRMWARE RBR860 FIRMWARE RBE970 FIRMWARE RBR840 ファームウェア RBRE960 ファームウェア RBSE960&n…	ネットギアのRBE970 FIRMWARE等の複数製品における入力確認に関する脆弱性 New	CWE-20 不適切な入力確認	CVE-2026-0415	2026-06-22 11:45	2026-06-9	Show	GitHub Exploit DB Packet Storm

549	4.5	警告 Adjacent	ネットギア	RAXE450 Firmware RAXE500 Firmware	ネットギアのRAXE450 Firmware等の複数製品における入力確認に関する脆弱性 New	CWE-20 CWE-noinfo	CVE-2026-0416	2026-06-22 11:44	2026-06-9	Show	GitHub Exploit DB Packet Storm

550	8	重要 Adjacent	ネットギア	JR6150 ファームウェア	ネットギアのJR6150 ファームウェアにおける入力確認に関する脆弱性 New	CWE-20 不適切な入力確認	CVE-2026-0419	2026-06-22 11:44	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
190971	9.8	CRITICAL Network	djangoproject fedoraproject	django fedora	Django 3.1.x before 3.1.13 and 3.2.x before 3.2.5 allows QuerySet.order_by SQL injection if order_by is untrusted input from a client of a web application.	CWE-89 SQL Injection	CVE-2021-35042	2024-11-21 15:11	2021-07-2	Show	GitHub Exploit DB Packet Storm

190972	9.8	CRITICAL Network	zyxel	usg1900_firmware usg1100_firmware usg310_firmware usg210_firmware usg110_firmware usg40_firmware usg40w_firmware usg60_firmware usg60w_firmware usg300_firmware usg1000_f…	An authentication bypasss vulnerability in the web-based management interface of Zyxel USG/Zywall series firmware versions 4.35 through 4.64 and USG Flex, ATP, and VPN series firmware versions 4.35 t…	CWE-287 Improper Authentication	CVE-2021-35029	2024-11-21 15:11	2021-07-2	Show	GitHub Exploit DB Packet Storm

190973	8.8	HIGH Network	istio	istio	Istio (1.8.x, 1.9.0-1.9.5 and 1.10.0-1.10.1) contains a remotely exploitable vulnerability where credentials specified in the Gateway and DestinationRule credentialName field can be accessed from dif…	NVD-CWE-noinfo	CVE-2021-34824	2024-11-21 15:11	2021-06-29	Show	GitHub Exploit DB Packet Storm

190974	7.5	HIGH Network	fidelissecurity	deception network	User credentials stored in a recoverable format within Fidelis Network and Deception CommandPost. In the event that an attacker gains access to the CommandPost, these values could be decoded and used…	CWE-522 Insufficiently Protected Credentials	CVE-2021-35050	2024-11-21 15:11	2021-06-25	Show	GitHub Exploit DB Packet Storm

190975	8.8	HIGH Network	fidelissecurity	network deception	Vulnerability in Fidelis Network and Deception CommandPost enables authenticated command injection through the web interface. The vulnerability could allow a specially crafted HTTP request to execute…	CWE-78 OS Command	CVE-2021-35049	2024-11-21 15:11	2021-06-25	Show	GitHub Exploit DB Packet Storm

190976	9.8	CRITICAL Network	fidelissecurity	network deception	Vulnerability in Fidelis Network and Deception CommandPost enables unauthenticated SQL injection through the web interface. The vulnerability could lead to exposure of authentication tokens in some v…	CWE-89 SQL Injection	CVE-2021-35048	2024-11-21 15:11	2021-06-25	Show	GitHub Exploit DB Packet Storm

190977	8.8	HIGH Network	fidelissecurity	network deception	Vulnerability in the CommandPost, Collector, and Sensor components of Fidelis Network and Deception enables an attacker with user level access to the CLI to inject root level commands into the compon…	CWE-78 OS Command	CVE-2021-35047	2024-11-21 15:11	2021-06-25	Show	GitHub Exploit DB Packet Storm

190978	7.5	HIGH Network	fisco-bcos	fisco-bcos	The blockchain node in FISCO-BCOS V2.7.2 may have a bug when dealing with unformatted packet and lead to a crash. A malicious node can send a packet continuously. The packet is in an incorrect format…	CWE-20 Improper Input Validation	CVE-2021-35041	2024-11-21 15:11	2021-06-24	Show	GitHub Exploit DB Packet Storm

190979	6.1	MEDIUM Network	icehrm	icehrm	A session fixation vulnerability was discovered in Ice Hrm 29.0.0 OS which allows an attacker to hijack a valid user session via a crafted session cookie.	CWE-384 Session Fixation	CVE-2021-35046	2024-11-21 15:11	2021-06-22	Show	GitHub Exploit DB Packet Storm

190980	6.1	MEDIUM Network	icehrm	icehrm	Cross site scripting (XSS) vulnerability in Ice Hrm 29.0.0.OS, allows attackers to execute arbitrary code via the parameters to the /app/ endpoint.	CWE-79 Cross-site Scripting	CVE-2021-35045	2024-11-21 15:11	2021-06-22	Show	GitHub Exploit DB Packet Storm