Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 29, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
621 7.5 重要
Network 		Node.js Foundation undici Node.js Foundationのundiciにおける複数の脆弱性 CWE-400
CWE-770
CVE-2026-9675 2026-06-26 11:51 2026-06-17 Show GitHub Exploit DB Packet Storm
622 5.9 警告
Network 		Node.js Foundation undici Node.js Foundationのundiciにおける重要な情報を含むキャッシュの使用に関する脆弱性 CWE-524
重要な情報を含むキャッシュの使用 		CVE-2026-9678 2026-06-26 11:51 2026-06-17 Show GitHub Exploit DB Packet Storm
623 5.9 警告
Network 		Node.js Foundation undici Node.js FoundationのundiciにおけるCRLF インジェクションの脆弱性 CWE-93
CRLF インジェクション 		CVE-2026-9679 2026-06-26 11:51 2026-06-17 Show GitHub Exploit DB Packet Storm
624 7.4 重要
Network 		Node.js Foundation undici Node.js Foundationのundiciにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2026-9697 2026-06-26 11:51 2026-06-17 Show GitHub Exploit DB Packet Storm
625 8.2 重要
Network 		PEVANS (Paul Evans ) Metrics::Any::Adapter::Statsd PEVANS (Paul Evans )のMetrics::Any::Adapter::Statsdにおける複数の脆弱性 CWE-150
CWE-93
CVE-2026-46719
CVE-2026-46720
CVE-2026-46739
CVE-2026-50637
CVE-2026-50638
CVE-2026-50639 		2026-06-26 11:51 2026-06-10 Show GitHub Exploit DB Packet Storm
626 9.1 緊急
Network 		PEVANS (Paul Evans ) Metrics::Any::Adapter::DogStatsd PEVANS (Paul Evans )のMetrics::Any::Adapter::DogStatsdにおける複数の脆弱性 CWE-150
CWE-93
CVE-2026-50637
CVE-2026-50638
CVE-2026-50639
CVE-2026-9270 		2026-06-26 11:51 2026-06-10 Show GitHub Exploit DB Packet Storm
627 6.5 警告
Network 		PEVANS (Paul Evans ) Metrics::Any::Adapter::SignalFx PEVANS (Paul Evans )のMetrics::Any::Adapter::SignalFxにおける複数の脆弱性 CWE-150
CWE-93
CVE-2026-50637
CVE-2026-50638
CVE-2026-50639
CVE-2026-9270 		2026-06-26 11:51 2026-06-10 Show GitHub Exploit DB Packet Storm
628 7.5 重要
Network 		Devolutions UniGetUI DevolutionsのUniGetUIにおける誤って解決された名前や参照の使用に関する脆弱性 CWE-706
誤って解決された名前や参照の使用 		CVE-2026-10696 2026-06-26 11:51 2026-06-17 Show GitHub Exploit DB Packet Storm
629 7.8 重要
Local 		デル AIOps Collector デルのAIOps Collectorにおけるデフォルトの認証情報の使用に関する脆弱性 CWE-1392
デフォルトの認証情報の使用 		CVE-2026-32652 2026-06-26 11:50 2026-06-17 Show GitHub Exploit DB Packet Storm
630 9.1 緊急
Network 		UI UniFi OS Server UIのUniFi OS Serverにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-33000 2026-06-26 11:50 2026-05-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
190791 4.8 MEDIUM
Network 		deltaww dialink Delta Electronics DIALink versions 1.2.4.0 and prior is vulnerable to cross-site scripting because an authenticated attacker can inject arbitrary JavaScript code into the parameter deviceName of the … - CVE-2021-38411 2024-11-21 15:17 2021-11-4 Show GitHub Exploit DB Packet Storm
190792 4.8 MEDIUM
Network 		deltaww dialink Delta Electronics DIALink versions 1.2.4.0 and prior is vulnerable to cross-site scripting because an authenticated attacker can inject arbitrary JavaScript code into the parameter name of the API de… - CVE-2021-38407 2024-11-21 15:17 2021-11-4 Show GitHub Exploit DB Packet Storm
190793 4.8 MEDIUM
Network 		deltaww dialink Delta Electronics DIALink versions 1.2.4.0 and prior is vulnerable to cross-site scripting because an authenticated attacker can inject arbitrary JavaScript code into the parameter supplier of the AP… - CVE-2021-38403 2024-11-21 15:17 2021-11-4 Show GitHub Exploit DB Packet Storm
190794 5.9 MEDIUM
Network 		mozilla
debian 		thunderbird
debian_linux 		Thunderbird ignored the configuration to require STARTTLS security for an SMTP connection. A MITM could perform a downgrade attack to intercept transmitted messages, or could take control of the auth… NVD-CWE-Other
CVE-2021-38502 2024-11-21 15:17 2021-11-3 Show GitHub Exploit DB Packet Storm
190795 8.8 HIGH
Network 		mozilla firefox
firefox_esr
thunderbird 		Mozilla developers reported memory safety bugs present in Firefox 92 and Firefox ESR 91.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these… NVD-CWE-noinfo
CVE-2021-38501 2024-11-21 15:17 2021-11-3 Show GitHub Exploit DB Packet Storm
190796 8.8 HIGH
Network 		mozilla
debian 		firefox
firefox_esr
thunderbird
debian_linux 		Mozilla developers reported memory safety bugs present in Firefox 92 and Firefox ESR 91.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these… NVD-CWE-noinfo
CVE-2021-38500 2024-11-21 15:17 2021-11-3 Show GitHub Exploit DB Packet Storm
190797 8.8 HIGH
Network 		mozilla firefox Mozilla developers reported memory safety bugs present in Firefox 92. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been expl… CWE-787
 Out-of-bounds Write 		CVE-2021-38499 2024-11-21 15:17 2021-11-3 Show GitHub Exploit DB Packet Storm
190798 7.5 HIGH
Network 		mozilla firefox
firefox_esr
thunderbird 		During process shutdown, a document could have caused a use-after-free of a languages service object, leading to memory corruption and a potentially exploitable crash. This vulnerability affects Fire… CWE-416
 Use After Free 		CVE-2021-38498 2024-11-21 15:17 2021-11-3 Show GitHub Exploit DB Packet Storm
190799 6.5 MEDIUM
Network 		mozilla firefox
firefox_esr
thunderbird 		Through use of reportValidity() and window.open(), a plain-text validation message could have been overlaid on another origin, leading to possible user confusion and spoofing attacks. This vulnerabil… CWE-346
 Origin Validation Error 		CVE-2021-38497 2024-11-21 15:17 2021-11-3 Show GitHub Exploit DB Packet Storm
190800 8.8 HIGH
Network 		mozilla
debian 		firefox
firefox_esr
thunderbird
debian_linux 		During operations on MessageTasks, a task may have been removed while it was still scheduled, resulting in memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbir… CWE-416
 Use After Free 		CVE-2021-38496 2024-11-21 15:17 2021-11-3 Show GitHub Exploit DB Packet Storm