Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
691	7.5	重要 Network		-	オラクルのOracle WebCenter Sites Support Toolsにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-35295	2026-06-22 11:39	2026-06-17	Show	GitHub Exploit DB Packet Storm

692	9.8	緊急 Network		-	オラクルのOracle WebCenter Sites Support Toolsにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-35296	2026-06-22 11:39	2026-06-17	Show	GitHub Exploit DB Packet Storm

693	9.1	緊急 Network	オラクル	Oracle WebLogic Server	オラクルのOracle WebLogic Serverにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-35298	2026-06-22 11:39	2026-06-17	Show	GitHub Exploit DB Packet Storm

694	8.8	重要 Network	オラクル	Oracle WebLogic Server	オラクルのOracle WebLogic Serverにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-35299	2026-06-22 11:39	2026-06-17	Show	GitHub Exploit DB Packet Storm

695	9.8	緊急 Network	オラクル	Oracle WebLogic Server	オラクルのOracle WebLogic Serverにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-35300	2026-06-22 11:39	2026-06-17	Show	GitHub Exploit DB Packet Storm

696	10	緊急 Network	オラクル	Oracle WebLogic Server	オラクルのOracle WebLogic Serverにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-35301	2026-06-22 11:39	2026-06-17	Show	GitHub Exploit DB Packet Storm

697	8.3	重要 Network	オラクル	Oracle WebLogic Server	オラクルのOracle WebLogic Serverにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2026-35302	2026-06-22 11:39	2026-06-17	Show	GitHub Exploit DB Packet Storm

698	8.8	重要 Network	オラクル	Oracle WebLogic Server	オラクルのOracle WebLogic Serverにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-35303	2026-06-22 11:39	2026-06-17	Show	GitHub Exploit DB Packet Storm

699	9.8	緊急 Network	オラクル	Oracle Coherence	オラクルのOracle Coherenceにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-35304	2026-06-22 11:39	2026-06-17	Show	GitHub Exploit DB Packet Storm

700	9.3	緊急 Network	オラクル	Oracle Coherence	オラクルのOracle Coherenceにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-35305	2026-06-22 11:39	2026-06-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 26, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
190961	6.1	MEDIUM Network	antisamy_project oracle netapp	antisamy retail_back_office retail_returns_management retail_central_office banking_platform insurance_policy_administration banking_enterprise_default_management banking_party_m…	OWASP AntiSamy before 1.6.4 allows XSS via HTML attributes when using the HTML output serializer (XHTML is not affected). This was demonstrated by a javascript: URL with &#00058 as the replacement fo…	CWE-79 Cross-site Scripting	CVE-2021-35043	2024-11-21 15:11	2021-07-20	Show	GitHub Exploit DB Packet Storm

190962	6.7	MEDIUM Local	unisys	stealth	Unisys Stealth 5.1 before 5.1.025.0 and 6.0 before 6.0.055.0 has an unquoted Windows search path for a scheduled task. An unintended executable might run.	CWE-428 Unquoted Search Path or Element	CVE-2021-35056	2024-11-21 15:11	2021-07-16	Show	GitHub Exploit DB Packet Storm

190963	8.8	HIGH Adjacent	dlink	dap-1330_firmware	This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1330 1.13B01 BETA routers. Authentication is not required to exploit this vulner…	-	CVE-2021-34830	2024-11-21 15:11	2021-07-16	Show	GitHub Exploit DB Packet Storm

190964	8.8	HIGH Adjacent	dlink	dap-1330_firmware	This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1330 1.13B01 BETA routers. Authentication is not required to exploit this vulner…	-	CVE-2021-34829	2024-11-21 15:11	2021-07-16	Show	GitHub Exploit DB Packet Storm

190965	8.8	HIGH Adjacent	dlink	dap-1330_firmware	This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1330 1.13B01 BETA routers. Authentication is not required to exploit this vulner…	-	CVE-2021-34828	2024-11-21 15:11	2021-07-16	Show	GitHub Exploit DB Packet Storm

190966	8.8	HIGH Adjacent	dlink	dap-1330_firmware	This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1330 1.13B01 BETA routers. Authentication is not required to exploit this vulner…	-	CVE-2021-34827	2024-11-21 15:11	2021-07-16	Show	GitHub Exploit DB Packet Storm

190967	9.8	CRITICAL Network	kramerav	viaware	KramerAV VIAWare, all tested versions, allow privilege escalation through misconfiguration of sudo. Sudoers permits running of multiple dangerous commands, including unzip, systemctl and dpkg.	CWE-269 Improper Privilege Management	CVE-2021-35064	2024-11-21 15:11	2021-07-12	Show	GitHub Exploit DB Packet Storm

190968	6.1	MEDIUM Network	jamf	jamf	Jamf Pro before 10.30.1 allows for an unvalidated URL redirect vulnerability affecting Jamf Pro customers who host their environments on-premises. An attacker may craft a URL that appears to be for a…	CWE-601 Open Redirect	CVE-2021-35037	2024-11-21 15:11	2021-07-12	Show	GitHub Exploit DB Packet Storm

190969	7.8	HIGH Local	linux debian	linux_kernel debian_linux	kernel/module.c in the Linux kernel before 5.12.14 mishandles Signature Verification, aka CID-0c18f29aae7c. Without CONFIG_MODULE_SIG, verification that a kernel module is signed, for loading via ini…	CWE-347 Improper Verification of Cryptographic Signature	CVE-2021-35039	2024-11-21 15:11	2021-07-7	Show	GitHub Exploit DB Packet Storm

190970	6.1	MEDIUM Network	zimbra	collaboration	An open redirect vulnerability exists in the /preauth Servlet in Zimbra Collaboration Suite through 9.0. To exploit the vulnerability, an attacker would need to have obtained a valid zimbra auth toke…	CWE-601 Open Redirect	CVE-2021-34807	2024-11-21 15:11	2021-07-3	Show	GitHub Exploit DB Packet Storm