Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
711 4.8 警告
Network 		デル PowerFlex Manager デルのPowerFlex Managerにおける暗号アルゴリズムの使用に関する脆弱性 CWE-327
不完全、または危険な暗号アルゴリズムの使用 		CVE-2026-40641 2026-06-24 09:59 2026-06-17 Show GitHub Exploit DB Packet Storm
712 8.8 重要
Network 		Eclipse Foundation Theia Eclipse FoundationのTheiaにおける信頼できない制御領域からの機能の組み込みに関する脆弱性 CWE-829
信頼性のない制御領域からの機能の組み込み 		CVE-2026-44688 2026-06-24 09:59 2026-06-18 Show GitHub Exploit DB Packet Storm
713 8.8 重要
Network 		Eclipse Foundation Theia Eclipse FoundationのTheiaにおける信頼できない制御領域からの機能の組み込みに関する脆弱性 CWE-829
信頼性のない制御領域からの機能の組み込み 		CVE-2026-44691 2026-06-24 09:59 2026-06-18 Show GitHub Exploit DB Packet Storm
714 8.8 重要
Network 		Eclipse Foundation Theia Eclipse FoundationのTheiaにおける信頼できない制御領域からの機能の組み込みに関する脆弱性 CWE-829
信頼性のない制御領域からの機能の組み込み 		CVE-2026-46580 2026-06-24 09:59 2026-06-18 Show GitHub Exploit DB Packet Storm
715 8.1 重要
Adjacent 		デル PowerFlex Manager デルのPowerFlex Managerにおける認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2026-49502 2026-06-24 09:59 2026-06-17 Show GitHub Exploit DB Packet Storm
716 6.1 警告
Network 		Astro Astro Astroにおけるクロスサイトスクリプティングの脆弱性 CWE-80
クロスサイトスクリプティング (Basic XSS) 		CVE-2026-50146 2026-06-24 09:59 2026-06-22 Show GitHub Exploit DB Packet Storm
717 6.1 警告
Network 		Astro Astro Astroにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-54298 2026-06-24 09:59 2026-06-22 Show GitHub Exploit DB Packet Storm
718 4.6 警告 Iomega ZIP drive for Iomega ZIP-100 disks IomegaのZIP drive for Iomega ZIP-100 disksにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-1174 2026-06-23 11:22 2001-12-21 Show GitHub Exploit DB Packet Storm
719 5 警告 oreilly WebSite
WebSite Pro 		oreillyのWebSite等の複数製品における不特定の脆弱性 CWE-Other
その他 		CVE-1999-1180 2026-06-23 11:22 1999-02-16 Show GitHub Exploit DB Packet Storm
720 5 警告 Maximizer Maximizer Enterprise MaximizerのMaximizer Enterpriseにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-1172 2026-06-23 11:22 1999-01-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
190811 8.8 HIGH
Network 		auvesy versiondog The database connection to the server is performed by calling a specific API, which could allow an unprivileged user to gain SYSDBA permissions. NVD-CWE-noinfo
CVE-2021-38475 2024-11-21 15:17 2021-10-22 Show GitHub Exploit DB Packet Storm
190812 8.8 HIGH
Network 		auvesy versiondog The affected product’s code base doesn’t properly control arguments for specific functions, which could lead to a stack overflow. CWE-787
 Out-of-bounds Write 		CVE-2021-38473 2024-11-21 15:17 2021-10-22 Show GitHub Exploit DB Packet Storm
190813 9.1 CRITICAL
Network 		auvesy versiondog There are multiple API function codes that permit data writing to any file, which may allow an attacker to modify existing files or create new files. - CVE-2021-38471 2024-11-21 15:17 2021-10-22 Show GitHub Exploit DB Packet Storm
190814 7.1 HIGH
Local 		auvesy versiondog Many of the services used by the affected product do not specify full paths for the DLLs they are loading. An attacker can exploit the uncontrolled search path by implanting their own DLL near the af… - CVE-2021-38469 2024-11-21 15:17 2021-10-22 Show GitHub Exploit DB Packet Storm
190815 8.1 HIGH
Network 		auvesy versiondog A specific function code receives a raw pointer supplied by the user and deallocates this pointer. The user can then control what memory regions will be freed and cause use-after-free condition. - CVE-2021-38467 2024-11-21 15:17 2021-10-22 Show GitHub Exploit DB Packet Storm
190816 6.5 MEDIUM
Network 		auvesy versiondog The webinstaller is a Golang web server executable that enables the generation of an Auvesy image agent. Resource consumption can be achieved by generating large amounts of installations, which are t… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2021-38465 2024-11-21 15:17 2021-10-22 Show GitHub Exploit DB Packet Storm
190817 8.1 HIGH
Network 		auvesy versiondog The affected product does not properly control the allocation of resources. A user may be able to allocate unlimited memory buffers using API functions. CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2021-38463 2024-11-21 15:17 2021-10-22 Show GitHub Exploit DB Packet Storm
190818 8.2 HIGH
Network 		auvesy versiondog The affected product uses a hard-coded blowfish key for encryption/decryption processes. The key can be easily extracted from binaries. CWE-798
 Use of Hard-coded Credentials 		CVE-2021-38461 2024-11-21 15:17 2021-10-22 Show GitHub Exploit DB Packet Storm
190819 9.8 CRITICAL
Network 		auvesy versiondog The data of a network capture of the initial handshake phase can be used to authenticate at a SYSDBA level. If a specific .exe is not restarted often, it is possible to access the needed handshake pa… - CVE-2021-38459 2024-11-21 15:17 2021-10-22 Show GitHub Exploit DB Packet Storm
190820 9.8 CRITICAL
Network 		auvesy versiondog The server permits communication without any authentication procedure, allowing the attacker to initiate a session with the server without providing any form of authentication. CWE-306
Missing Authentication for Critical Function 		CVE-2021-38457 2024-11-21 15:17 2021-10-22 Show GitHub Exploit DB Packet Storm