Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 26, 2026, 4:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 611 | 5.3 |
警告
Network |
VMware | Spring Data REST | VMwareのSpring Data RESTにおけるアクセス制御に関する脆弱性 |
CWE-284
不適切なアクセス制御 |
CVE-2026-41837 | 2026-06-23 10:00 | 2026-06-10 | Show | GitHub Exploit DB Packet Storm |
| 612 | 9.9 |
緊急
Network |
オラクル | MySQL Shell | オラクルのMySQL Shellにおけるコードインジェクションの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2026-46850 | 2026-06-23 10:00 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 613 | 8.5 |
重要
Network |
オラクル | MySQL Shell | オラクルのMySQL Shellにおけるアクセス制御に関する脆弱性 |
CWE-284
不適切なアクセス制御 |
CVE-2026-46870 | 2026-06-23 10:00 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 614 | 6.5 |
警告
Network |
オラクル | MySQL Shell | オラクルのMySQL Shellにおけるアクセス制御に関する脆弱性 |
CWE-284
不適切なアクセス制御 |
CVE-2026-46871 | 2026-06-23 10:00 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 615 | 4.8 |
警告
Network |
F5 Networks |
WAF NGINX Gateway Fabric DoS NGINX Instance Manager NGINX Ingress Controller NGINX plus nginx open source |
F5 NetworksのDoS等の複数製品における境界外読み取りに関する脆弱性 |
CWE-125
境界外読み取り |
CVE-2026-48142 | 2026-06-23 10:00 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 616 | 8.1 |
重要
Network |
F5 Networks | NGINX Gateway Fabric | F5 NetworksのNGINX Gateway Fabricにおけるインジェクションに関する脆弱性 |
CWE-74
インジェクション |
CVE-2026-50107 | 2026-06-23 10:00 | 2026-06-17 | Show | GitHub Exploit DB Packet Storm |
| 617 | - | - | 三菱電機 |
MELSEC iQ-Fシリーズ FX5-ENET/IP形Ethernetユニット MELSEC iQ-F FX5-EIP形EtherNet/IPユニット |
三菱電機製MELSEC iQ-FシリーズのFX5-EIPおよびFX5-ENET/IPにおける脆弱性 |
CWE-190 CWE-440 |
CVE-2026-8805 CVE-2026-8806 |
2026-06-22 18:05 | 2026-06-19 | Show | GitHub Exploit DB Packet Storm |
| 618 | - | - | (複数のベンダ) | (複数の製品) | Vendor-signed UEFIアプリケーションにおけるセキュアブートバイパスの脆弱性 | - | - | 2026-06-22 17:17 | 2026-06-19 | Show | GitHub Exploit DB Packet Storm |
| 619 | - | - | (複数のベンダ) | (複数の製品) | CISA ICS Advisory / ICS Medical Advisory(2026年06月18日) | - | - | 2026-06-22 17:17 | 2026-06-19 | Show | GitHub Exploit DB Packet Storm |
| 620 | 8.4 |
重要
Local |
マイクロソフト |
Microsoft Office 2021 Long Term Servicing Channel Edition Microsoft Office 365 Microsoft Office 2024 Long-Term Servicing Ch… |
Microsoft Office のリモート コードが実行される脆弱性 |
CWE-416 CWE-787 |
CVE-2026-45474 | 2026-06-22 11:56 | 2026-06-9 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 26, 2026, 4 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 190831 | 8.1 |
HIGH
Network |
cisco |
sf250-24_firmware sf250-24p_firmware sf250-48_firmware sf250-48hp_firmware sf250-08_firmware sf250-08hp_firmware sf250-10p_firmware sf250-18_firmware sf250-26_firmware sf25… |
A vulnerability in the web-based management interface of multiple Cisco Small Business Series Switches could allow an unauthenticated, remote attacker to replay valid user session credentials and gai… |
CWE-613
Insufficient Session Expiration |
CVE-2021-34739 | 2024-11-21 15:11 | 2021-11-5 | Show | GitHub Exploit DB Packet Storm |
| 190832 | 7.5 |
HIGH
Network |
kaspersky | endpoint_security | Possible system denial of service in case of arbitrary changing Firefox browser parameters. An attacker could change specific Firefox browser parameters file in a certain way and then reboot the syst… |
NVD-CWE-noinfo
|
CVE-2021-35053 | 2024-11-21 15:11 | 2021-11-4 | Show | GitHub Exploit DB Packet Storm |
| 190833 | 6.1 |
MEDIUM
Network |
cisco |
firepower_management_center_virtual_appliance sourcefire_defense_center firepower_threat_defense |
Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an attacker to execute a cross-site scripting (XSS) attack or an open re… |
CWE-79 CWE-601 Cross-site Scripting Open Redirect |
CVE-2021-34764 | 2024-11-21 15:11 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 190834 | 4.8 |
MEDIUM
Network |
cisco |
firepower_management_center_virtual_appliance sourcefire_defense_center firepower_threat_defense |
Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an attacker to execute a cross-site scripting (XSS) attack or an open re… |
CWE-79
Cross-site Scripting |
CVE-2021-34763 | 2024-11-21 15:11 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 190835 | 7.8 |
HIGH
Local |
cisco |
firepower_management_center_virtual_appliance sourcefire_defense_center firepower_threat_defense |
Multiple vulnerabilities in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to execute arbitrary commands with root privileges. For more informat… |
CWE-78
OS Command |
CVE-2021-34756 | 2024-11-21 15:11 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 190836 | 5.3 |
MEDIUM
Network |
cisco |
firepower_threat_defense adaptive_security_appliance_software asa_5512-x_firmware asa_5505_firmware asa_5515-x_firmware asa_5525-x_firmware asa_5545-x_firmware asa_5555-x_firmwar… |
A vulnerability in the Simple Network Management Protocol version 3 (SNMPv3) access control functionality of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) … |
NVD-CWE-Other
|
CVE-2021-34794 | 2024-11-21 15:11 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 190837 | 8.6 |
HIGH
Network |
cisco |
firepower_threat_defense adaptive_security_appliance adaptive_security_appliance_software asa_5512-x_firmware asa_5505_firmware asa_5515-x_firmware asa_5525-x_firmware asa_5545-x… |
A vulnerability in the TCP Normalizer of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software operating in transparent mode could allow an unauthenticated, rem… |
CWE-924
Improper Enforcement of Message Integrity During Transmission in a Communication Channel |
CVE-2021-34793 | 2024-11-21 15:11 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 190838 | 7.8 |
HIGH
Local |
cisco |
firepower_management_center_virtual_appliance sourcefire_defense_center firepower_threat_defense |
Multiple vulnerabilities in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to execute arbitrary commands with root privileges. For more informat… |
CWE-78
OS Command |
CVE-2021-34755 | 2024-11-21 15:11 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 190839 | 7.5 |
HIGH
Network |
cisco |
firepower_threat_defense adaptive_security_appliance_software asa_5512-x_firmware asa_5505_firmware asa_5515-x_firmware asa_5525-x_firmware asa_5545-x_firmware asa_5555-x_firmwar… |
A vulnerability in the memory management of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a den… |
CWE-401
Missing Release of Memory after Effective Lifetime |
CVE-2021-34792 | 2024-11-21 15:11 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 190840 | 5.3 |
MEDIUM
Network |
cisco |
firepower_threat_defense adaptive_security_appliance adaptive_security_appliance_software asa_5512-x_firmware asa_5505_firmware asa_5515-x_firmware asa_5525-x_firmware asa_5545-x… |
Multiple vulnerabilities in the Application Level Gateway (ALG) for the Network Address Translation (NAT) feature of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD… |
CWE-20
Improper Input Validation |
CVE-2021-34791 | 2024-11-21 15:11 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |