Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
611 5.3 警告
Network 		VMware Spring Data REST VMwareのSpring Data RESTにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-41837 2026-06-23 10:00 2026-06-10 Show GitHub Exploit DB Packet Storm
612 9.9 緊急
Network 		オラクル MySQL Shell オラクルのMySQL Shellにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-46850 2026-06-23 10:00 2026-06-17 Show GitHub Exploit DB Packet Storm
613 8.5 重要
Network 		オラクル MySQL Shell オラクルのMySQL Shellにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-46870 2026-06-23 10:00 2026-06-17 Show GitHub Exploit DB Packet Storm
614 6.5 警告
Network 		オラクル MySQL Shell オラクルのMySQL Shellにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-46871 2026-06-23 10:00 2026-06-17 Show GitHub Exploit DB Packet Storm
615 4.8 警告
Network 		F5 Networks WAF
NGINX Gateway Fabric
DoS
NGINX Instance Manager
NGINX Ingress Controller
NGINX plus
nginx open source 		F5 NetworksのDoS等の複数製品における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-48142 2026-06-23 10:00 2026-06-17 Show GitHub Exploit DB Packet Storm
616 8.1 重要
Network 		F5 Networks NGINX Gateway Fabric F5 NetworksのNGINX Gateway Fabricにおけるインジェクションに関する脆弱性 CWE-74
インジェクション 		CVE-2026-50107 2026-06-23 10:00 2026-06-17 Show GitHub Exploit DB Packet Storm
617 - - 三菱電機 MELSEC iQ-Fシリーズ FX5-ENET/IP形Ethernetユニット
MELSEC iQ-F FX5-EIP形EtherNet/IPユニット 		三菱電機製MELSEC iQ-FシリーズのFX5-EIPおよびFX5-ENET/IPにおける脆弱性 CWE-190
CWE-440
CVE-2026-8805
CVE-2026-8806 		2026-06-22 18:05 2026-06-19 Show GitHub Exploit DB Packet Storm
618 - - (複数のベンダ) (複数の製品) Vendor-signed UEFIアプリケーションにおけるセキュアブートバイパスの脆弱性 - - 2026-06-22 17:17 2026-06-19 Show GitHub Exploit DB Packet Storm
619 - - (複数のベンダ) (複数の製品) CISA ICS Advisory / ICS Medical Advisory(2026年06月18日) - - 2026-06-22 17:17 2026-06-19 Show GitHub Exploit DB Packet Storm
620 8.4 重要
Local 		マイクロソフト Microsoft Office 2021 Long Term Servicing Channel Edition
Microsoft Office 365
Microsoft Office 2024 Long-Term Servicing Ch… 		Microsoft Office のリモート コードが実行される脆弱性 CWE-416
CWE-787
CVE-2026-45474 2026-06-22 11:56 2026-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
190801 8.8 HIGH
Network 		mozilla firefox_esr
thunderbird 		Mozilla developers reported memory safety bugs present in Thunderbird 78.13.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have … CWE-787
 Out-of-bounds Write 		CVE-2021-38495 2024-11-21 15:17 2021-11-3 Show GitHub Exploit DB Packet Storm
190802 8.8 HIGH
Network 		mozilla firefox Mozilla developers reported memory safety bugs present in Firefox 91. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been expl… CWE-787
 Out-of-bounds Write 		CVE-2021-38494 2024-11-21 15:17 2021-11-3 Show GitHub Exploit DB Packet Storm
190803 8.8 HIGH
Network 		mozilla firefox
firefox_esr
thunderbird 		Mozilla developers reported memory safety bugs present in Firefox 91 and Firefox ESR 78.13. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of thes… CWE-787
 Out-of-bounds Write 		CVE-2021-38493 2024-11-21 15:17 2021-11-3 Show GitHub Exploit DB Packet Storm
190804 6.5 MEDIUM
Network 		mozilla firefox
firefox_esr
thunderbird 		When delegating navigations to the operating system, Firefox would accept the `mk` scheme which might allow attackers to launch pages and execute scripts in Internet Explorer in unprivileged mode. *T… NVD-CWE-noinfo
CVE-2021-38492 2024-11-21 15:17 2021-11-3 Show GitHub Exploit DB Packet Storm
190805 6.5 MEDIUM
Network 		mozilla firefox Mixed-content checks were unable to analyze opaque origins which led to some mixed content being loaded. This vulnerability affects Firefox < 92. NVD-CWE-noinfo
CVE-2021-38491 2024-11-21 15:17 2021-11-3 Show GitHub Exploit DB Packet Storm
190806 8.8 HIGH
Network 		trane tracer_concierge
tracer_sc_firmware
tracer_sc\+_firmware 		The affected controllers do not properly sanitize the input containing code syntax. As a result, an attacker could craft code to alter the intended controller flow of the software. NVD-CWE-Other
CVE-2021-38450 2024-11-21 15:17 2021-10-27 Show GitHub Exploit DB Packet Storm
190807 8.8 HIGH
Network 		emerson wireless_1410_gateway_firmware
wireless_1410d_gateway_firmware
wireless_1420_gateway_firmware 		The affected product is vulnerable to improper input validation in the restore file. This enables an attacker to provide malicious config files to replace any file on disk. - CVE-2021-38485 2024-11-21 15:17 2021-10-22 Show GitHub Exploit DB Packet Storm
190808 9.8 CRITICAL
Network 		auvesy versiondog The scheduler service running on a specific TCP port enables the user to start and stop jobs. There is no sanitation of the supplied JOB ID provided to the function. An attacker may send a malicious … - CVE-2021-38481 2024-11-21 15:17 2021-10-22 Show GitHub Exploit DB Packet Storm
190809 7.5 HIGH
Network 		auvesy versiondog Many API function codes receive raw pointers remotely from the user and trust these pointers as valid in-bound memory regions. An attacker can manipulate API functions by writing arbitrary data into … - CVE-2021-38479 2024-11-21 15:17 2021-10-22 Show GitHub Exploit DB Packet Storm
190810 9.8 CRITICAL
Network 		auvesy versiondog There are multiple API function codes that permit reading and writing data to or from files and directories, which could lead to the manipulation and/or the deletion of files. - CVE-2021-38477 2024-11-21 15:17 2021-10-22 Show GitHub Exploit DB Packet Storm