Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 26, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
621	7.8	重要 Local	マイクロソフト	Microsoft Office 2021 Long Term Servicing Channel Edition Microsoft Office 365 Microsoft Office 2024 Long-Term Servicing Ch…	Microsoft Office のリモートコードが実行される脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-45475	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

622	5.4	警告 Network	マイクロソフト	Microsoft SharePoint Server	Microsoft Office Project Server のなりすましの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-45483	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

623	7.8	重要 Local	マイクロソフト	.NET	.NET SDK の特権昇格の脆弱性	CWE-285 CWE-863	CVE-2026-45490	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

624	5.5	警告 Local	マイクロソフト	.NET	.NET の改ざんの脆弱性	CWE-59 リンク解釈の問題	CVE-2026-45491	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

625	6.1	警告 Network	マイクロソフト	Microsoft Exchange Server Subscription Edition (SE) Microsoft Exchange Server	Microsoft Exchange Server のなりすましの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-45500	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

626	8.1	重要 Network	マイクロソフト	Microsoft Exchange Server Subscription Edition (SE) Microsoft Exchange Server	Microsoft Exchange Server のリモートでコードが実行される脆弱性	CWE-94 コード・インジェクション	CVE-2026-45583	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

627	7.5	重要 Network	マイクロソフト	Microsoft Visual Studio 2026 .NET ASP.NET Core	ASP.NET Core のサービス拒否の脆弱性	CWE-400 CWE-noinfo	CVE-2026-45591	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

628	7.5	重要 Network	マイクロソフト	Microsoft Windows 11 26h1 Microsoft Windows Server 2022 Microsoft Windows 10 22h2 Microsoft Windows 10 1607 Microsoft Wind…	Windows リモートデスクトッププロトコル (RDP) の情報漏えいの脆弱性	CWE-125 境界外読み取り	CVE-2026-45639	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

629	7.8	重要 Local	マイクロソフト	Microsoft Office 2021 Long Term Servicing Channel Edition Microsoft Office 365 Microsoft Office 2024 Long-Term Servicing Ch…	Microsoft Office のリモートコードが実行される脆弱性	CWE-787 CWE-822	CVE-2026-45645	2026-06-22 11:56	2026-06-9	Show	GitHub Exploit DB Packet Storm

630	7	重要 Local	マイクロソフト	Microsoft Defender for Endpoint	Microsoft Defender for Endpoint for Mac の特権の昇格の脆弱性	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-45647	2026-06-22 11:55	2026-06-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 26, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
191221	5.5	MEDIUM Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019	GDI+ Information Disclosure Vulnerability	NVD-CWE-noinfo	CVE-2021-34440	2024-11-21 15:10	2021-07-17	Show	GitHub Exploit DB Packet Storm

191222	7.8	HIGH Local	microsoft	windows_10 windows_server_2016	Microsoft Windows Media Foundation Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2021-34439	2024-11-21 15:10	2021-07-17	Show	GitHub Exploit DB Packet Storm

191223	7.8	HIGH Local	microsoft	windows_server_2019 windows_10 windows_server_2016	Windows Font Driver Host Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2021-34438	2024-11-21 15:10	2021-07-17	Show	GitHub Exploit DB Packet Storm

191224	5.3	MEDIUM Network	eclipse netapp oracle	jetty snap_creator_framework solidfire hci_management_node e-series_santricity_web_services snapcenter_plug-in e-series_santricity_os_controller element_plug-in_for_vcenter_serve…	For Eclipse Jetty versions 9.4.37-9.4.42, 10.0.1-10.0.5 & 11.0.1-11.0.5, URIs can be crafted using some encoded characters to access the content of the WEB-INF directory and/or bypass some security c…	NVD-CWE-Other	CVE-2021-34429	2024-11-21 15:10	2021-07-16	Show	GitHub Exploit DB Packet Storm

191225	7.8	HIGH Local	idrive	remotepc	iDrive RemotePC before 7.6.48 on Windows allows privilege escalation. A local and low-privileged user can force RemotePC to execute an attacker-controlled executable with SYSTEM privileges.	CWE-829 Inclusion of Functionality from Untrusted Control Sphere	CVE-2021-34692	2024-11-21 15:10	2021-07-15	Show	GitHub Exploit DB Packet Storm

191226	7.5	HIGH Network	idrive	remotepc	iDrive RemotePC before 4.0.1 on Linux allows denial of service. A remote and unauthenticated attacker can disconnect a valid user session by connecting to an ephemeral port.	NVD-CWE-noinfo	CVE-2021-34691	2024-11-21 15:10	2021-07-15	Show	GitHub Exploit DB Packet Storm

191227	9.8	CRITICAL Network	idrive	remotepc	iDrive RemotePC before 7.6.48 on Windows allows authentication bypass. A remote and unauthenticated attacker can bypass cloud authentication to connect and control a system via TCP port 5970 and 5980.	CWE-287 Improper Authentication	CVE-2021-34690	2024-11-21 15:10	2021-07-15	Show	GitHub Exploit DB Packet Storm

191228	5.5	MEDIUM Local	idrive	remotepc	iDrive RemotePC before 7.6.48 on Windows allows information disclosure. A locally authenticated attacker can read the system's Personal Key in world-readable %PROGRAMDATA% log files.	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2021-34689	2024-11-21 15:10	2021-07-15	Show	GitHub Exploit DB Packet Storm

191229	3.3	LOW Local	idrive	remotepc	iDrive RemotePC before 7.6.48 on Windows allows information disclosure. A locally authenticated attacker can read an encrypted version of the system's Personal Key in world-readable %PROGRAMDATA% log…	CWE-798 Use of Hard-coded Credentials	CVE-2021-34688	2024-11-21 15:10	2021-07-15	Show	GitHub Exploit DB Packet Storm

191230	5.3	MEDIUM Adjacent	idrive	remotepc	iDrive RemotePC before 7.6.48 on Windows allows information disclosure. A man in the middle can recover a system's Personal Key when a client attempts to make a LAN connection. The Personal Key is tr…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2021-34687	2024-11-21 15:10	2021-07-15	Show	GitHub Exploit DB Packet Storm