Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
611 5.3 警告
Network 		VMware Spring Data REST VMwareのSpring Data RESTにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-41837 2026-06-23 10:00 2026-06-10 Show GitHub Exploit DB Packet Storm
612 9.9 緊急
Network 		オラクル MySQL Shell オラクルのMySQL Shellにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-46850 2026-06-23 10:00 2026-06-17 Show GitHub Exploit DB Packet Storm
613 8.5 重要
Network 		オラクル MySQL Shell オラクルのMySQL Shellにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-46870 2026-06-23 10:00 2026-06-17 Show GitHub Exploit DB Packet Storm
614 6.5 警告
Network 		オラクル MySQL Shell オラクルのMySQL Shellにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-46871 2026-06-23 10:00 2026-06-17 Show GitHub Exploit DB Packet Storm
615 4.8 警告
Network 		F5 Networks WAF
NGINX Gateway Fabric
DoS
NGINX Instance Manager
NGINX Ingress Controller
NGINX plus
nginx open source 		F5 NetworksのDoS等の複数製品における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-48142 2026-06-23 10:00 2026-06-17 Show GitHub Exploit DB Packet Storm
616 8.1 重要
Network 		F5 Networks NGINX Gateway Fabric F5 NetworksのNGINX Gateway Fabricにおけるインジェクションに関する脆弱性 CWE-74
インジェクション 		CVE-2026-50107 2026-06-23 10:00 2026-06-17 Show GitHub Exploit DB Packet Storm
617 - - 三菱電機 MELSEC iQ-Fシリーズ FX5-ENET/IP形Ethernetユニット
MELSEC iQ-F FX5-EIP形EtherNet/IPユニット 		三菱電機製MELSEC iQ-FシリーズのFX5-EIPおよびFX5-ENET/IPにおける脆弱性 CWE-190
CWE-440
CVE-2026-8805
CVE-2026-8806 		2026-06-22 18:05 2026-06-19 Show GitHub Exploit DB Packet Storm
618 - - (複数のベンダ) (複数の製品) Vendor-signed UEFIアプリケーションにおけるセキュアブートバイパスの脆弱性 - - 2026-06-22 17:17 2026-06-19 Show GitHub Exploit DB Packet Storm
619 - - (複数のベンダ) (複数の製品) CISA ICS Advisory / ICS Medical Advisory(2026年06月18日) - - 2026-06-22 17:17 2026-06-19 Show GitHub Exploit DB Packet Storm
620 8.4 重要
Local 		マイクロソフト Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft Office 365
Microsoft Office 2024 Long-Term Servicing Ch… 		Microsoft Office のリモート コードが実行される脆弱性 CWE-416
CWE-787
CVE-2026-45474 2026-06-22 11:56 2026-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
190761 7.5 HIGH
Network 		wal-g_project wal-g WAL-G before 1.1, when a non-libsodium build (e.g., one of the official binary releases published as GitHub Releases) is used, silently ignores the libsodium encryption key and uploads cleartext back… CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2021-38599 2024-11-21 15:17 2021-08-13 Show GitHub Exploit DB Packet Storm
190762 7.5 HIGH
Network 		gnu
fedoraproject
oracle 		glibc
fedora
communications_cloud_native_core_network_function_cloud_native_environment
communications_cloud_native_core_binding_support_function
communications_cloud_native_core_network_… 		In librt in the GNU C Library (aka glibc) through 2.34, sysdeps/unix/sysv/linux/mq_notify.c mishandles certain NOTIFY_REMOVED data, leading to a NULL pointer dereference. NOTE: this vulnerability was… CWE-476
 NULL Pointer Dereference 		CVE-2021-38604 2024-11-21 15:17 2021-08-13 Show GitHub Exploit DB Packet Storm
190763 5.9 MEDIUM
Network 		wolfssl wolfssl wolfSSL before 4.8.1 incorrectly skips OCSP verification in certain situations of irrelevant response data that contains the NoCheck extension. CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2021-38597 2024-11-21 15:17 2021-08-13 Show GitHub Exploit DB Packet Storm
190764 7.5 HIGH
Network 		qt
fedoraproject 		qt
fedora 		Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write in QOutlineMapper::convertPath (called from QRasterPaintEngine::fill and QPaintEngineEx::stroke). CWE-787
 Out-of-bounds Write 		CVE-2021-38593 2024-11-21 15:17 2021-08-12 Show GitHub Exploit DB Packet Storm
190765 7.5 HIGH
Network 		wasm3_project wasm3 Wasm3 0.5.0 has a heap-based buffer overflow in op_Const64 (called from EvaluateExpression and m3_LoadModule). CWE-787
 Out-of-bounds Write 		CVE-2021-38592 2024-11-21 15:17 2021-08-12 Show GitHub Exploit DB Packet Storm
190766 3.3 LOW
Local 		google android An issue was discovered on LG mobile devices with Android OS P and Q software for mt6762/mt6765/mt6883. Attackers can change some of the NvRAM content by leveraging the misconfiguration of a debug co… NVD-CWE-noinfo
CVE-2021-38591 2024-11-21 15:17 2021-08-12 Show GitHub Exploit DB Packet Storm
190767 5.5 MEDIUM
Local 		cpanel cpanel In cPanel before 96.0.8, weak permissions on web stats can lead to information disclosure (SEC-584). CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2021-38590 2024-11-21 15:17 2021-08-12 Show GitHub Exploit DB Packet Storm
190768 8.1 HIGH
Network 		cpanel cpanel In cPanel before 96.0.13, scripts/fix-cpanel-perl does not properly restrict the overwriting of files (SEC-588). NVD-CWE-noinfo
CVE-2021-38589 2024-11-21 15:17 2021-08-12 Show GitHub Exploit DB Packet Storm
190769 8.1 HIGH
Network 		cpanel cpanel In cPanel before 96.0.13, fix_cpanel_perl lacks verification of the integrity of downloads (SEC-587). CWE-494
 Download of Code Without Integrity Check 		CVE-2021-38588 2024-11-21 15:17 2021-08-12 Show GitHub Exploit DB Packet Storm
190770 7.5 HIGH
Network 		cpanel cpanel In cPanel before 96.0.13, scripts/fix-cpanel-perl mishandles the creation of temporary files (SEC-586). CWE-362
Race Condition 		CVE-2021-38587 2024-11-21 15:17 2021-08-12 Show GitHub Exploit DB Packet Storm