Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
771	9.1	緊急 Network	Apache Software Foundation	Apache Shiro	Apache Software FoundationのApache ShiroにおけるLDAP インジェクションの脆弱性	CWE-90 LDAP インジェクション	CVE-2026-49268	2026-06-22 11:48	2026-06-17	Show	GitHub Exploit DB Packet Storm

772	7	重要 Local	マイクロソフト	Microsoft Malware Protection Engine	Microsoft Defender Elevation of Privilege Vulnerability	CWE-59 リンク解釈の問題	CVE-2026-50656	2026-06-22 11:48	2026-06-16	Show	GitHub Exploit DB Packet Storm

773	8.1	重要 Network	KubeV2V	Migration assessment	KubeV2VのMigration assessmentにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-53469	2026-06-22 11:48	2026-06-10	Show	GitHub Exploit DB Packet Storm

774	8.1	重要 Network	KubeV2V	Migration assessment	KubeV2VのMigration assessmentにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-53470	2026-06-22 11:48	2026-06-10	Show	GitHub Exploit DB Packet Storm

775	7.7	重要 Network	KubeV2V	Migration assessment	KubeV2VのMigration assessmentにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-53471	2026-06-22 11:48	2026-06-10	Show	GitHub Exploit DB Packet Storm

776	7.1	重要 Network	OpenClaw	OpenClaw	OpenClawにおける認証情報の不十分な保護に関する脆弱性	CWE-522 認証情報の不十分な保護	CVE-2026-53840	2026-06-22 11:48	2026-06-16	Show	GitHub Exploit DB Packet Storm

777	6.1	警告 Network	OpenClaw	OpenClaw	OpenClawにおけるWeb ページの属性に対するスクリプトの不適切な無害化に関する脆弱性	CWE-83 Web ページの属性に対するスクリプトの不適切な無害化	CVE-2026-53841	2026-06-22 11:48	2026-06-16	Show	GitHub Exploit DB Packet Storm

778	7.1	重要 Local	OpenClaw	OpenClaw	OpenClawにおける信頼できない検索パスに関する脆弱性	CWE-426 信頼性のない検索パス	CVE-2026-53842	2026-06-22 11:48	2026-06-16	Show	GitHub Exploit DB Packet Storm

779	8.8	重要 Network	OpenClaw	OpenClaw	OpenClawにおけるセッション期限に関する脆弱性	CWE-613 不適切なセッション期限	CVE-2026-53843	2026-06-22 11:48	2026-06-16	Show	GitHub Exploit DB Packet Storm

780	6.5	警告 Network	OpenClaw	OpenClaw	OpenClawにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-53844	2026-06-22 11:48	2026-06-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
190911	8.8	HIGH Network	google debian	chrome debian_linux	Heap buffer overflow in PDFium in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.	CWE-787 Out-of-bounds Write	CVE-2021-37984	2024-11-21 15:16	2021-11-3	Show	GitHub Exploit DB Packet Storm

190912	8.8	HIGH Network	google debian	chrome debian_linux	Use after free in Dev Tools in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.	CWE-416 Use After Free	CVE-2021-37983	2024-11-21 15:16	2021-11-3	Show	GitHub Exploit DB Packet Storm

190913	8.8	HIGH Network	google debian	chrome debian_linux	Use after free in Incognito in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.	CWE-416 Use After Free	CVE-2021-37982	2024-11-21 15:16	2021-11-3	Show	GitHub Exploit DB Packet Storm

190914	9.6	CRITICAL Network	google debian	chrome debian_linux	Heap buffer overflow in Skia in Google Chrome prior to 95.0.4638.54 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.	CWE-787 Out-of-bounds Write	CVE-2021-37981	2024-11-21 15:16	2021-11-3	Show	GitHub Exploit DB Packet Storm

190915	7.4	HIGH Network	google fedoraproject debian	chrome fedora debian_linux	Inappropriate implementation in Sandbox in Google Chrome prior to 94.0.4606.81 allowed a remote attacker to potentially bypass site isolation via Windows.	NVD-CWE-noinfo	CVE-2021-37980	2024-11-21 15:16	2021-11-3	Show	GitHub Exploit DB Packet Storm

190916	8.8	HIGH Network	google fedoraproject debian	chrome fedora debian_linux	heap buffer overflow in WebRTC in Google Chrome prior to 94.0.4606.81 allowed a remote attacker who convinced a user to browse to a malicious website to potentially exploit heap corruption via a craf…	CWE-787 Out-of-bounds Write	CVE-2021-37979	2024-11-21 15:16	2021-11-3	Show	GitHub Exploit DB Packet Storm

190917	8.8	HIGH Network	google fedoraproject debian	chrome fedora debian_linux	Heap buffer overflow in Blink in Google Chrome prior to 94.0.4606.81 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.	CWE-787 Out-of-bounds Write	CVE-2021-37978	2024-11-21 15:16	2021-11-3	Show	GitHub Exploit DB Packet Storm

190918	8.8	HIGH Network	google fedoraproject debian	chrome fedora debian_linux	Use after free in Garbage Collection in Google Chrome prior to 94.0.4606.81 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.	CWE-416 Use After Free	CVE-2021-37977	2024-11-21 15:16	2021-11-3	Show	GitHub Exploit DB Packet Storm

190919	6.1	MEDIUM Network	nextscripts	social_networks_auto_poster	The NextScripts: Social Networks Auto-Poster <= 4.3.20 WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the $_REQUEST['page'] parameter which is echoed out on inc/nxs_class_snap.p…	-	CVE-2021-38356	2024-11-21 15:16	2021-11-2	Show	GitHub Exploit DB Packet Storm

190920	8.8	HIGH Network	grandstream	ht801_firmware	An issue was discovered on the Grandstream HT801 Analog Telephone Adaptor before 1.0.29.8. From the limited configuration shell, it is possible to set the malicious gdb_debug_server variable. As a re…	NVD-CWE-noinfo	CVE-2021-37915	2024-11-21 15:16	2021-10-28	Show	GitHub Exploit DB Packet Storm