Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4301 5.3 警告
Network 		openwebui open webui openwebuiのopen webuiにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-45397 2026-05-21 10:50 2026-05-15 Show GitHub Exploit DB Packet Storm
4302 7.5 重要
Network 		openwebui open webui openwebuiのopen webuiにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-45398 2026-05-21 10:50 2026-05-15 Show GitHub Exploit DB Packet Storm
4303 8.5 重要
Network 		openwebui open webui openwebuiのopen webuiにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-45400 2026-05-21 10:50 2026-05-15 Show GitHub Exploit DB Packet Storm
4304 8.5 重要
Network 		openwebui open webui openwebuiのopen webuiにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-45401 2026-05-21 10:50 2026-05-15 Show GitHub Exploit DB Packet Storm
4305 8.8 重要
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおける認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2026-45434 2026-05-21 10:50 2026-05-19 Show GitHub Exploit DB Packet Storm
4306 5.4 警告
Network 		Outlook.com Microsoft Edge Chromium Microsoft Edge (Chrome ベース) のセキュリティ機能のバイパスの脆弱性 CWE-20
CWE-noinfo
CVE-2026-45492 2026-05-21 10:50 2026-05-18 Show GitHub Exploit DB Packet Storm
4307 6.1 警告
Network 		Outlook.com Microsoft Edge Chromium Microsoft Edge (Chromium ベース) のなりすましの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-45494 2026-05-21 10:50 2026-05-18 Show GitHub Exploit DB Packet Storm
4308 9.8 緊急
Network 		Outlook.com Microsoft Edge Chromium Microsoft Edge (Chromium ベース) のリモートでコードが実行される脆弱性 CWE-119
CWE-20
CWE-94
CVE-2026-45495 2026-05-21 10:50 2026-05-18 Show GitHub Exploit DB Packet Storm
4309 8.8 重要
Network 		openwebui open webui openwebuiのopen webuiにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-45672 2026-05-21 10:50 2026-05-15 Show GitHub Exploit DB Packet Storm
4310 7.5 重要
Network 		ws project ws ws projectのwsにおける初期化されていないリソースの使用に関する脆弱性 CWE-908
初期化されていないリソースの使用 		CVE-2026-45736 2026-05-21 10:50 2026-05-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
305701 - siemens ruggedcom_rugged_operating_system RuggedCom Rugged Operating System (ROS) 3.10.x and earlier has a factory account with a password derived from the MAC Address field in the banner, which makes it easier for remote attackers to obtain… CWE-310
Cryptographic Issues 		CVE-2012-1803 2024-11-21 10:37 2012-04-28 Show GitHub Exploit DB Packet Storm
305702 - trevor_mckay cumin Multiple cross-site scripting (XSS) vulnerabilities in Cumin before r5238 allow remote attackers to inject arbitrary web script or HTML via vectors involving (1) widgets or (2) pages. CWE-79
Cross-site Scripting 		CVE-2012-1575 2024-11-21 10:37 2012-04-23 Show GitHub Exploit DB Packet Storm
305703 - siemens scalance_x414-3e_firmware
scalance_x414-3e
scalance_x308-2m_firmware
scalance_x308-2m
scalance_x-300eec_firmware
scalance_x-300eec
scalance_xr-300_firmware
scalance_xr-300
sca… 		Buffer overflow in the embedded web server on the Siemens Scalance X Industrial Ethernet switch X414-3E before 3.7.1, X308-2M before 3.7.2, X-300EEC before 3.7.2, XR-300 before 3.7.2, and X-300 befor… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-1802 2024-11-21 10:37 2012-04-18 Show GitHub Exploit DB Packet Storm
305704 - abb interlink_module
webware_sdk
s4_opc_server
quickteach
robotstudio_lite
robotstudio_s4
webware_server 		Multiple stack-based buffer overflows in (1) COM and (2) ActiveX controls in ABB WebWare Server, WebWare SDK, Interlink Module, S4 OPC Server, QuickTeach, RobotStudio S4, and RobotStudio Lite allow r… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-1801 2024-11-21 10:37 2012-04-18 Show GitHub Exploit DB Packet Storm
305705 - siemens scalance_s_firmware
scalance_s602
scalance_s612
scalance_s613 		Stack-based buffer overflow in the Profinet DCP protocol implementation on the Siemens Scalance S Security Module firewall S602 V2, S612 V2, and S613 V2 with firmware before 2.3.0.3 allows remote att… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-1800 2024-11-21 10:37 2012-04-18 Show GitHub Exploit DB Packet Storm
305706 - siemens scalance_s_firmware
scalance_s602
scalance_s612
scalance_s613 		The web server on the Siemens Scalance S Security Module firewall S602 V2, S612 V2, and S613 V2 with firmware before 2.3.0.3 does not limit the rate of authentication attempts, which makes it easier … CWE-287
Improper Authentication 		CVE-2012-1799 2024-11-21 10:37 2012-04-18 Show GitHub Exploit DB Packet Storm
305707 - vmware workstation
player
fusion
esxi
esx 		VMware Workstation 8.x before 8.0.2, VMware Player 4.x before 4.0.2, VMware Fusion 4.x before 4.1.2, VMware ESXi 3.5 through 5.0, and VMware ESX 3.5 through 4.1 use an incorrect ACL for the VMware To… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-1518 2024-11-21 10:37 2012-04-18 Show GitHub Exploit DB Packet Storm
305708 - koyo h4-ecom
h0-ecom100
h2-ecom100
h4-ecom-f
h2-ecom-f
h4-ecom100
h2-ecom
h0-ecom 		The web server in the ECOM Ethernet module in Koyo H0-ECOM, H0-ECOM100, H2-ECOM, H2-ECOM-F, H2-ECOM100, H4-ECOM, H4-ECOM-F, and H4-ECOM100 allows remote attackers to cause a denial of service (resour… CWE-399
 Resource Management Errors 		CVE-2012-1809 2024-11-21 10:37 2012-04-14 Show GitHub Exploit DB Packet Storm
305709 - koyo h4-ecom
h0-ecom100
h2-ecom100
h4-ecom-f
h2-ecom-f
h4-ecom100
h2-ecom
h0-ecom 		The web server in the ECOM Ethernet module in Koyo H0-ECOM, H0-ECOM100, H2-ECOM, H2-ECOM-F, H2-ECOM100, H4-ECOM, H4-ECOM-F, and H4-ECOM100 does not require authentication, which allows remote attacke… CWE-287
Improper Authentication 		CVE-2012-1808 2024-11-21 10:37 2012-04-14 Show GitHub Exploit DB Packet Storm
305710 - koyo h4-ecom
h0-ecom100
h2-ecom100
h4-ecom-f
h2-ecom-f
h4-ecom100
h2-ecom
h0-ecom 		Cross-site scripting (XSS) vulnerability in the web server in the ECOM Ethernet module in Koyo H0-ECOM, H0-ECOM100, H2-ECOM, H2-ECOM-F, H2-ECOM100, H4-ECOM, H4-ECOM-F, and H4-ECOM100 allows remote at… CWE-79
Cross-site Scripting 		CVE-2012-1807 2024-11-21 10:37 2012-04-14 Show GitHub Exploit DB Packet Storm