Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1011 7.8 重要
Local 		Zeit, Inc. The Turborepo Language Server Protocol (LSP) Vercel, Inc. (旧 Zeit, Inc.)のThe Turborepo Language Server Protocol (LSP)におけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-46508 2026-05-21 10:54 2026-05-15 Show GitHub Exploit DB Packet Storm
1012 9.1 緊急
Network 		FreeRTOS coreMQTT FreeRTOSのcoreMQTTにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-8686 2026-05-21 10:54 2026-05-15 Show GitHub Exploit DB Packet Storm
1013 9.1 緊急
Network 		Aden OpenHive AdenのOpenHiveにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-8757 2026-05-21 10:54 2026-05-17 Show GitHub Exploit DB Packet Storm
1014 6.5 警告
Network 		Kilo Code Kilo Code Kilo Codeにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-8765 2026-05-21 10:54 2026-05-17 Show GitHub Exploit DB Packet Storm
1015 6.5 警告
Network 		Kilo Code Kilo Code Kilo Codeにおける複数の脆弱性 CWE-200
CWE-284
CWE-noinfo
CVE-2026-8766 2026-05-21 10:54 2026-05-17 Show GitHub Exploit DB Packet Storm
1016 3.3
Local 		Continue Continue Continueにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-8770 2026-05-21 10:54 2026-05-18 Show GitHub Exploit DB Packet Storm
1017 4.8 警告
Network 		Nozomi Networks Inc. cmc
Guardian 		Nozomi Networks Inc.のCMC等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-40901 2026-05-21 10:54 2026-05-19 Show GitHub Exploit DB Packet Storm
1018 4.8 警告
Network 		Nozomi Networks Inc. cmc
Guardian 		Nozomi Networks Inc.のCMC等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-40902 2026-05-21 10:54 2026-05-19 Show GitHub Exploit DB Packet Storm
1019 4.8 警告
Network 		Nozomi Networks Inc. cmc
Guardian 		Nozomi Networks Inc.のCMC等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-40903 2026-05-21 10:54 2026-05-19 Show GitHub Exploit DB Packet Storm
1020 5.4 警告
Network 		Nozomi Networks Inc. cmc
Guardian 		Nozomi Networks Inc.のCMC等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-40904 2026-05-21 10:54 2026-05-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311021 - - - Out-of-bounds read in some Intel(R) VPL software before version 24.1.4 may allow an authenticated user to potentially enable information disclosure via local access. CWE-125
Out-of-bounds Read 		CVE-2024-28051 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
311022 - - - Improper input validation in firmware for some Intel(R) PROSet/Wireless Software and Intel(R) Killer(TM) Wi-Fi wireless products before version 23.40 may allow an unauthenticated user to enable denia… - CVE-2024-28049 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
311023 - - - NULL pointer dereference in some Intel(R) VPL software before version 24.1.4 may allow an authenticated user to potentially enable denial of service via local access. CWE-395
 Use of NullPointerException Catch to Detect NULL Pointer Dereference 		CVE-2024-28030 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
311024 - - - Improper input validation in some Intel(R) Neural Compressor software before version v3.0 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access. - CVE-2024-28028 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
311025 - - - Improper access control in some Intel(R) Granulate(TM) software before version 4.30.1 may allow a authenticated user to potentially enable escalation of privilege via local access. CWE-284
Improper Access Control 		CVE-2024-27200 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
311026 - - - Uncontrolled search path in some Intel(R) Rendering Toolkit software before version 2024.1.0 may allow an authenticated user to potentially enable escalation of privilege via local access. CWE-427
 Uncontrolled Search Path Element 		CVE-2024-26017 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
311027 - - - Incorrect default permissions for some Intel(R) Binary Configuration Tool software for Windows before version 3.4.5 may allow an authenticated user to potentially enable escalation of privilege via l… CWE-276
Incorrect Default Permissions  		CVE-2024-25647 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
311028 - - - Insufficient control flow management in UEFI firmware for some Intel(R) Xeon(R) Processors may allow an authenticated user to enable denial of service via local access. CWE-691
 Insufficient Control Flow Management 		CVE-2024-25565 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
311029 - - - Improper initialization in firmware for some Intel(R) PROSet/Wireless Software and Intel(R) Killer(TM) Wi-Fi before version 23.40 may allow a privileged user to potentially enable information disclos… CWE-665
 Improper Initialization 		CVE-2024-25563 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
311030 - - - Exposure of resource to wrong sphere in some Intel(R) processors with Intel(R) ACTM may allow a privileged user to potentially enable escalation of privilege via local access. CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2024-24985 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm