Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 12:21 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
621	5.9	警告 Network	Node.js Foundation	undici	Node.js FoundationのundiciにおけるCRLF インジェクションの脆弱性	CWE-93 CRLF インジェクション	CVE-2026-9679	2026-06-26 11:51	2026-06-17	Show	GitHub Exploit DB Packet Storm

622	7.4	重要 Network	Node.js Foundation	undici	Node.js Foundationのundiciにおける証明書検証に関する脆弱性	CWE-295 不正な証明書検証	CVE-2026-9697	2026-06-26 11:51	2026-06-17	Show	GitHub Exploit DB Packet Storm

623	8.2	重要 Network	PEVANS (Paul Evans )	Metrics::Any::Adapter::Statsd	PEVANS (Paul Evans )のMetrics::Any::Adapter::Statsdにおける複数の脆弱性	CWE-150 CWE-93	CVE-2026-46719 CVE-2026-46720 CVE-2026-46739 CVE-2026-50637 CVE-2026-50638 CVE-2026-50639	2026-06-26 11:51	2026-06-10	Show	GitHub Exploit DB Packet Storm

624	9.1	緊急 Network	PEVANS (Paul Evans )	Metrics::Any::Adapter::DogStatsd	PEVANS (Paul Evans )のMetrics::Any::Adapter::DogStatsdにおける複数の脆弱性	CWE-150 CWE-93	CVE-2026-50637 CVE-2026-50638 CVE-2026-50639 CVE-2026-9270	2026-06-26 11:51	2026-06-10	Show	GitHub Exploit DB Packet Storm

625	6.5	警告 Network	PEVANS (Paul Evans )	Metrics::Any::Adapter::SignalFx	PEVANS (Paul Evans )のMetrics::Any::Adapter::SignalFxにおける複数の脆弱性	CWE-150 CWE-93	CVE-2026-50637 CVE-2026-50638 CVE-2026-50639 CVE-2026-9270	2026-06-26 11:51	2026-06-10	Show	GitHub Exploit DB Packet Storm

626	7.5	重要 Network	Devolutions	UniGetUI	DevolutionsのUniGetUIにおける誤って解決された名前や参照の使用に関する脆弱性	CWE-706 誤って解決された名前や参照の使用	CVE-2026-10696	2026-06-26 11:51	2026-06-17	Show	GitHub Exploit DB Packet Storm

627	7.8	重要 Local	デル	AIOps Collector	デルのAIOps Collectorにおけるデフォルトの認証情報の使用に関する脆弱性	CWE-1392 デフォルトの認証情報の使用	CVE-2026-32652	2026-06-26 11:50	2026-06-17	Show	GitHub Exploit DB Packet Storm

628	9.1	緊急 Network	UI	UniFi OS Server	UIのUniFi OS Serverにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-33000	2026-06-26 11:50	2026-05-22	Show	GitHub Exploit DB Packet Storm

629	7.7	重要 Network	UI	UniFi Dream Machine Special Edition Firmware (UDM-SE) UniFi Cloud Gateway Ultra Firmware (UCG-Ultra) UniFi Network Video Re…	UIのEnterprise Fortress Gateway Firmware (EFG)等の複数製品におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-34911	2026-06-26 11:50	2026-05-22	Show	GitHub Exploit DB Packet Storm

630	8.8	重要 Adjacent	Palo Alto Networks	IDIRA Privilege Cloud Connector	Palo Alto NetworksのIDIRA Privilege Cloud Connectorにおける証明書検証に関する脆弱性	CWE-295 不正な証明書検証	CVE-2026-45170	2026-06-26 11:50	2026-06-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
190761	7.8	HIGH Local	fujielectric	v-server v-simulator	Fuji Electric V-Server Lite and Tellus Lite V-Simulator prior to v4.0.12.0 is vulnerable to an out-of-bounds write, which can result in data corruption, a system crash, or code execution.	-	CVE-2021-38419	2024-11-21 15:17	2021-12-21	Show	GitHub Exploit DB Packet Storm

190762	7.8	HIGH Local	fujielectric	v-server v-simulator	Fuji Electric V-Server Lite and Tellus Lite V-Simulator prior to v4.0.12.0 is vulnerable a heap-based buffer overflow when parsing a specially crafted project file, which may allow an attacker to exe…	-	CVE-2021-38415	2024-11-21 15:17	2021-12-21	Show	GitHub Exploit DB Packet Storm

190763	7.8	HIGH Local	fujielectric	v-server v-simulator	Fuji Electric V-Server Lite and Tellus Lite V-Simulator prior to v4.0.12.0 is vulnerable to a stack-based buffer overflow, which may allow an attacker to achieve code execution.	-	CVE-2021-38413	2024-11-21 15:17	2021-12-21	Show	GitHub Exploit DB Packet Storm

190764	7.8	HIGH Local	fujielectric	v-server v-simulator	Fuji Electric V-Server Lite and Tellus Lite V-Simulator prior to v4.0.12.0 is vulnerable to an access of uninitialized pointer, which may allow an attacker read from or write to unexpected memory loc…	-	CVE-2021-38409	2024-11-21 15:17	2021-12-21	Show	GitHub Exploit DB Packet Storm

190765	7.8	HIGH Local	fujielectric	v-server v-simulator	Fuji Electric V-Server Lite and Tellus Lite V-Simulator prior to v4.0.12.0 is vulnerable to an untrusted pointer dereference, which may allow an attacker to execute arbitrary code and cause the appli…	-	CVE-2021-38401	2024-11-21 15:17	2021-12-21	Show	GitHub Exploit DB Packet Storm

190766	4.8	MEDIUM Network	motorola	t008_firmware t100_firmware t101_firmware t102_firmware t103_firmware t200_firmware t201_firmware t204_firmware t205_firmware t290_firmware	Certain Motorola Solutions Avigilon devices allow XSS in the administrative UI. This affects T200/201 before 4.10.0.68; T290 before 4.4.0.80; T008 before 2.2.0.86; T205 before 4.12.0.62; T204 before …	CWE-79 Cross-site Scripting	CVE-2021-38701	2024-11-21 15:17	2021-12-15	Show	GitHub Exploit DB Packet Storm

190767	8.8	HIGH Network	mozilla	firefox firefox_esr thunderbird	The executable file warning was not presented when downloading .inetloc files, which, due to a flaw in Mac OS, can run commands on a user's computer.*Note: This issue only affected Mac OS operating s…	NVD-CWE-noinfo	CVE-2021-38510	2024-11-21 15:17	2021-12-9	Show	GitHub Exploit DB Packet Storm

190768	4.3	MEDIUM Network	mozilla debian	firefox_esr thunderbird firefox debian_linux	Due to an unusual sequence of attacker-controlled events, a Javascript alert() dialog with arbitrary (although unstyled) contents could be displayed over top an uncontrolled webpage of the attacker's…	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2021-38509	2024-11-21 15:17	2021-12-9	Show	GitHub Exploit DB Packet Storm

190769	4.3	MEDIUM Network	mozilla debian	firefox_esr thunderbird firefox debian_linux	By displaying a form validity message in the correct location at the same time as a permission prompt (such as for geolocation), the validity message could have obscured the prompt, resulting in the …	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2021-38508	2024-11-21 15:17	2021-12-9	Show	GitHub Exploit DB Packet Storm

190770	6.5	MEDIUM Network	mozilla debian	firefox_esr thunderbird firefox debian_linux	The Opportunistic Encryption feature of HTTP2 (RFC 8164) allows a connection to be transparently upgraded to TLS while retaining the visual properties of an HTTP connection, including being same-orig…	CWE-346 Origin Validation Error	CVE-2021-38507	2024-11-21 15:17	2021-12-9	Show	GitHub Exploit DB Packet Storm