Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 26, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
991	7.5	重要 Network	アルバネットワークス株式会社	SD-WAN ArubaOS	アルバネットワークス株式会社のArubaOS等の複数製品における入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-23825	2026-05-18 12:07	2026-05-12	Show	GitHub Exploit DB Packet Storm

992	7.5	重要 Network	アルバネットワークス株式会社	SD-WAN ArubaOS	アルバネットワークス株式会社のArubaOS等の複数製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-23826	2026-05-18 12:07	2026-05-12	Show	GitHub Exploit DB Packet Storm

993	7.5	重要 Network	アルバネットワークス株式会社	SD-WAN ArubaOS	アルバネットワークス株式会社のArubaOS等の複数製品におけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-23827	2026-05-18 12:07	2026-05-12	Show	GitHub Exploit DB Packet Storm

994	7.5	重要 Network	Fleet Device Management	fleet	Fleet Device Managementのfleetにおける証明書検証に関する脆弱性	CWE-295 不正な証明書検証	CVE-2026-23998	2026-05-18 12:07	2026-05-14	Show	GitHub Exploit DB Packet Storm

995	5.3	警告 Network	Fleet Device Management	fleet	Fleet Device Managementのfleetにおけるスプーフィングによる認証回避に関する脆弱性	CWE-290 スプーフィングによる認証回避	CVE-2026-24000	2026-05-18 12:07	2026-05-14	Show	GitHub Exploit DB Packet Storm

996	7.5	重要 Network	strapi	strapi	strapiにおける複数の脆弱性	CWE-200 CWE-22 CWE-943	CVE-2026-27886	2026-05-18 12:07	2026-05-14	Show	GitHub Exploit DB Packet Storm

997	6.5	警告 Network	Grafana Labs	Grafana	Grafana LabsのGrafanaにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-28376	2026-05-18 12:07	2026-05-13	Show	GitHub Exploit DB Packet Storm

998	2.7	低 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-2900	2026-05-18 12:07	2026-05-14	Show	GitHub Exploit DB Packet Storm

999	4.3	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-3073	2026-05-18 12:07	2026-05-14	Show	GitHub Exploit DB Packet Storm

1000	4.3	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-3074	2026-05-18 12:07	2026-05-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311531	7.5	HIGH Network	-	-	An Out-of-Bounds Read vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated network-based attacker sending a specifically …	CWE-125 Out-of-bounds Read	CVE-2024-39516	2024-10-17 07:15	2024-10-10	Show	GitHub Exploit DB Packet Storm

311532	8.8	HIGH Network	blood_bank_system_project	blood_bank_system	A vulnerability, which was classified as critical, was found in code-projects Blood Bank System 1.0. Affected is an unknown function of the file reset.php. The manipulation of the argument useremail …	CWE-89 SQL Injection	CVE-2024-9894	2024-10-17 07:13	2024-10-12	Show	GitHub Exploit DB Packet Storm

311533	5.4	MEDIUM Network	oretnom23	online_eyewear_shop	A vulnerability, which was classified as problematic, was found in SourceCodester Online Eyewear Shop 1.0. Affected is an unknown function of the file /admin/?page=inventory/view_inventory&id=2. The …	CWE-79 Cross-site Scripting	CVE-2024-9906	2024-10-17 07:12	2024-10-13	Show	GitHub Exploit DB Packet Storm

311534	8.8	HIGH Network	oretnom23	online_eyewear_shop	A vulnerability, which was classified as critical, has been found in SourceCodester Online Eyewear Shop 1.0. This issue affects some unknown processing of the file /admin/?page=inventory/view_invento…	CWE-89 SQL Injection	CVE-2024-9905	2024-10-17 07:12	2024-10-13	Show	GitHub Exploit DB Packet Storm

311535	9.8	CRITICAL Network	usualtool	usualtoolcms	A vulnerability, which was classified as critical, has been found in HuangDou UTCMS V9. Affected by this issue is some unknown functionality of the file app/modules/ut-cac/admin/cli.php. The manipula…	CWE-78 OS Command	CVE-2024-9916	2024-10-17 07:11	2024-10-14	Show	GitHub Exploit DB Packet Storm

311536	9.8	CRITICAL Network	ragic	enterprise_cloud_database	Enterprise Cloud Database from Ragic does not authenticate access to specific functionality, allowing unauthenticated remote attackers to use this functionality to obtain any user's session cookie.	CWE-306 Missing Authentication for Critical Function	CVE-2024-9984	2024-10-17 07:03	2024-10-15	Show	GitHub Exploit DB Packet Storm

311537	7.5	HIGH Network	ragic	enterprise_cloud_database	Enterprise Cloud Database from Ragic does not properly validate a specific page parameter, allowing unauthenticated remote attackers to exploit this vulnerability to read arbitrary system files.	CWE-22 Path Traversal	CVE-2024-9983	2024-10-17 07:03	2024-10-15	Show	GitHub Exploit DB Packet Storm

311538	9.8	CRITICAL Network	ragic	enterprise_cloud_database	Enterprise Cloud Database from Ragic does not properly validate the file type for uploads. Attackers with regular privileges can upload a webshell and use it to execute arbitrary code on the remote s…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-9985	2024-10-17 07:02	2024-10-15	Show	GitHub Exploit DB Packet Storm

311539	7.1	HIGH Network	microsoft	windows_server_2022_23h2 windows_10_1809 windows_server_2022 windows_11_21h2 windows_10_21h2 windows_10_22h2 windows_11_23h2 windows_11_24h2 windows_11_22h2 windows_server_…	Microsoft OpenSSH for Windows Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-43581	2024-10-17 06:54	2024-10-9	Show	GitHub Exploit DB Packet Storm

311540	7.8	HIGH Local	microsoft	365_apps office_long_term_servicing_channel	Microsoft Office Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-43576	2024-10-17 06:54	2024-10-9	Show	GitHub Exploit DB Packet Storm