Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 21, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3691 7.2 重要
Network 		フォーティネット FortiMail フォーティネットのFortiMailにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2025-53681 2026-05-18 12:08 2026-05-12 Show GitHub Exploit DB Packet Storm
3692 8.8 重要
Network 		フォーティネット FortiOS フォーティネットのFortiOSにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2025-53844 2026-05-18 12:08 2026-05-12 Show GitHub Exploit DB Packet Storm
3693 6.7 警告
Local 		フォーティネット FortiAP
FortiAP-W2 		フォーティネットのFortiAP-W2等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2025-53870 2026-05-18 12:08 2026-05-12 Show GitHub Exploit DB Packet Storm
3694 5.3 警告
Network 		strapi strapi strapiにおける過度な認証試行の不適切な制限に関する脆弱性 CWE-307
過度な認証試行の不適切な制限 		CVE-2025-64526 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
3695 5.3 警告
Network 		フォーティネット FortiManager
FortiAnalyzer 		フォーティネットのFortiAnalyzer等の複数製品における潜在的に危険な関数の使用に関する脆弱性 CWE-676
潜在的に危険な関数の使用 		CVE-2025-67604 2026-05-18 12:08 2026-05-12 Show GitHub Exploit DB Packet Storm
3696 7.5 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-1184 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
3697 8.1 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるビジネスロジックエラーに関する脆弱性 CWE-840
ビジネスロジックエラー 		CVE-2026-1322 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
3698 4.3 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-1338 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
3699 7.5 重要
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-1659 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
3700 10 緊急
Network 		シスコシステムズ Cisco SD-WAN vSmart Controller シスコシステムズのCisco Catalyst SD-WAN Manager等の複数製品における認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2026-20182 2026-05-18 12:08 2026-05-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
307221 - oracle jd_edwards_enterpriseone_tools
jd_edwards_products 		Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote authenticated users to affect confidentiality, related to Enterprise Infrastructure SEC (J… NVD-CWE-noinfo
CVE-2011-2325 2024-11-21 10:28 2012-01-19 Show GitHub Exploit DB Packet Storm
307222 - oracle jd_edwards_enterpriseone_tools
jd_edwards_products 		Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote attackers to affect availability, related to Enterprise Infrastructure SEC (JDENET). NVD-CWE-noinfo
CVE-2011-2324 2024-11-21 10:28 2012-01-19 Show GitHub Exploit DB Packet Storm
307223 - oracle jd_edwards_enterpriseone_tools
jd_edwards_products 		Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote authenticated users to affect confidentiality, related to Enterprise Infrastructure SEC (J… NVD-CWE-noinfo
CVE-2011-2321 2024-11-21 10:28 2012-01-19 Show GitHub Exploit DB Packet Storm
307224 - oracle jd_edwards_enterpriseone_tools
jd_edwards_products 		Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allows remote authenticated users to affect integrity, related to Enterprise Infrastucture SEC (JDNET). NVD-CWE-noinfo
CVE-2011-2317 2024-11-21 10:28 2012-01-19 Show GitHub Exploit DB Packet Storm
307225 - robert_luberda super Buffer overflow in the Error function in super.c in Super 3.30.0 might allow local users to execute arbitrary code via vectors related to syslog logging. NOTE: some of these details are obtained fro… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2011-2776 2024-11-21 10:28 2012-01-14 Show GitHub Exploit DB Packet Storm
307226 - tor tor Multiple heap-based buffer overflows in Tor before 0.2.2.35 allow remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code by (1) establishing a SOCKS conn… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2011-2778 2024-11-21 10:28 2011-12-23 Show GitHub Exploit DB Packet Storm
307227 - tor tor Tor before 0.2.2.34, when configured as a bridge, accepts the CREATE and CREATE_FAST values in the Command field of a cell within an OR connection that it initiated, which allows remote relays to enu… CWE-200
Information Exposure 		CVE-2011-2769 2024-11-21 10:28 2011-12-23 Show GitHub Exploit DB Packet Storm
307228 - tor tor Tor before 0.2.2.34, when configured as a client or bridge, sends a TLS certificate chain as part of an outgoing OR connection, which allows remote relays to bypass intended anonymity properties by r… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-2768 2024-11-21 10:28 2011-12-23 Show GitHub Exploit DB Packet Storm
307229 - emc rsa_adaptive_authentication_on-premise EMC RSA Adaptive Authentication On-Premise (AAOP) 6.0.2.1 SP1 Patch 2, SP1 Patch 3, SP2, SP2 Patch 1, and SP3 does not properly perform forensic evaluation upon receipt of device tokens from mobile a… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-2742 2024-11-21 10:28 2011-12-14 Show GitHub Exploit DB Packet Storm
307230 - emc rsa_adaptive_authentication_on-premise EMC RSA Adaptive Authentication On-Premise (AAOP) 6.0.2.1 SP1 Patch 2, SP1 Patch 3, SP2, SP2 Patch 1, and SP3 does not properly implement Device Recovery and Device Identification, which might allow … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-2741 2024-11-21 10:28 2011-12-14 Show GitHub Exploit DB Packet Storm