Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
591 7 重要
Local 		オラクル Oracle Database オラクルのOracle Databaseにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-21939 2026-02-2 19:35 2026-01-20 Show GitHub Exploit DB Packet Storm
592 7.5 重要
Network 		オラクル Oracle Supply Chain Products Suite オラクルのOracle Supply Chain Products Suiteにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-21940 2026-02-2 19:35 2026-01-20 Show GitHub Exploit DB Packet Storm
593 5 警告
Local 		オラクル Oracle Solaris オラクルのOracle Solarisにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-21942 2026-02-2 19:35 2026-01-20 Show GitHub Exploit DB Packet Storm
594 6.1 警告
Network 		オラクル Oracle Scripting オラクルのOracle Scriptingにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-21943 2026-02-2 19:35 2026-01-20 Show GitHub Exploit DB Packet Storm
595 6.8 警告
Network 		オラクル Oracle Agile Product Lifecycle Management for Process オラクルのOracle Agile Product Lifecycle Management for Processにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-21944 2026-02-2 19:35 2026-01-20 Show GitHub Exploit DB Packet Storm
596 7.5 重要
Network 		オラクル JDK
Oracle GraalVM for JDK
JRE
Oracle GraalVM 		オラクルのOracle GraalVM等の複数製品におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-21945 2026-02-2 19:35 2026-01-20 Show GitHub Exploit DB Packet Storm
597 6.1 警告
Network 		オラクル JD Edwards EnterpriseOne Tools オラクルのJD Edwards EnterpriseOne Toolsにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-21946 2026-02-2 19:35 2026-01-20 Show GitHub Exploit DB Packet Storm
598 3.1
Network 		オラクル JDK
JRE 		オラクルのJDK等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-21947 2026-02-2 19:35 2026-01-20 Show GitHub Exploit DB Packet Storm
599 6.1 警告
Network 		オラクル PeopleSoft Enterprise PeopleTools オラクルのPeopleSoft Enterprise PeopleToolsにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-21951 2026-02-2 19:35 2026-01-20 Show GitHub Exploit DB Packet Storm
600 8.2 重要
Local 		オラクル Oracle VM VirtualBox オラクルのOracle VM VirtualBoxにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-21955 2026-02-2 19:35 2026-01-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
307291 - oracle bea_product_suite Unspecified vulnerability in the JRockit component in BEA Product Suite R27.6.4: JRE/JDK, 1.4.2, 5, and, and 6 allows remote attackers to affect confidentiality, integrity, and availability via unkno… NVD-CWE-noinfo
CVE-2009-3403 2012-10-23 12:11 2009-10-23 Show GitHub Exploit DB Packet Storm
307292 - oracle bea_product_suite Per: http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpuoct2009.html "Sun MicroSystems released a Security Alert in August 2009 to address multiple vulnerabilities affectin… NVD-CWE-noinfo
CVE-2009-3403 2012-10-23 12:11 2009-10-23 Show GitHub Exploit DB Packet Storm
307293 - oracle jd_edwards_enterpriseone
peoplesoft_enterprise 		Unspecified vulnerability in the PeopleSoft PeopleTools & Enterprise Portal component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.49.23 allows remote authenticated users to affect … NVD-CWE-noinfo
CVE-2009-3404 2012-10-23 12:11 2009-10-23 Show GitHub Exploit DB Packet Storm
307294 - oracle jd_edwards_enterpriseone
peoplesoft_enterprise 		Unspecified vulnerability in the JD Edwards Tools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.98.1.4 allows remote authenticated users to affect integrity and availabilit… NVD-CWE-noinfo
CVE-2009-3405 2012-10-23 12:11 2009-10-23 Show GitHub Exploit DB Packet Storm
307295 - oracle jd_edwards_enterpriseone
peoplesoft_enterprise 		Unspecified vulnerability in the JD Edwards Tools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.98.2.1 allows remote authenticated users to affect confidentiality via unkno… NVD-CWE-noinfo
CVE-2009-3406 2012-10-23 12:11 2009-10-23 Show GitHub Exploit DB Packet Storm
307296 - oracle e-business_suite Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 11.5.10 allows remote attackers to affect confidentiality, integrity, and availability via unkn… NVD-CWE-noinfo
CVE-2009-3408 2012-10-23 12:11 2009-10-23 Show GitHub Exploit DB Packet Storm
307297 - oracle jd_edwards_enterpriseone
peoplesoft_enterprise 		Unspecified vulnerability in the PeopleSoft Enterprise HCM (TAM) component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 9.0 Bundle 10 allows remote authenticated users to affect confi… NVD-CWE-noinfo
CVE-2009-3409 2012-10-23 12:11 2009-10-23 Show GitHub Exploit DB Packet Storm
307298 - oracle database_server Unspecified vulnerability in the RDBMS component in Oracle Database 11.1.0.7, 10.2.0.3, 10.2.0.4, 10.1.0.5, 9.2.0.8, and 9.2.0.8DV allows remote authenticated users to affect confidentiality and inte… NVD-CWE-noinfo
CVE-2009-3410 2012-10-23 12:11 2010-01-13 Show GitHub Exploit DB Packet Storm
307299 - oracle database_server Per: http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpujan2010.html "Fixed in all supported releases. Upgrade to any supported release to acquire this fix." NVD-CWE-noinfo
CVE-2009-3410 2012-10-23 12:11 2010-01-13 Show GitHub Exploit DB Packet Storm
307300 - oracle database_server Unspecified vulnerability in the Oracle Data Pump component in Oracle Database 11.1.0.7, 10.2.0.3, 10.2.0.4, 10.1.0.5, 9.2.0.8, and 9.2.0.8DV allows remote authenticated users to affect confidentiali… NVD-CWE-noinfo
CVE-2009-3411 2012-10-23 12:11 2010-01-13 Show GitHub Exploit DB Packet Storm