Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1021 4.8 警告
Network 		VMware Spring Security VMwareのSpring SecurityにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 CWE-367
Time-of-check Time-of-use (TOCTOU) 競合状態 		CVE-2026-22751 2026-05-7 12:06 2026-04-21 Show GitHub Exploit DB Packet Storm
1022 8.1 重要
Network 		フォーティネット FortiAnalyzer Cloud
FortiManager Cloud 		フォーティネットのFortiAnalyzer Cloud等の複数製品におけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-22828 2026-05-7 12:06 2026-04-14 Show GitHub Exploit DB Packet Storm
1023 9.8 緊急
Network 		IBM IBM i IBMのIBM iにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-2311 2026-05-7 12:06 2026-04-30 Show GitHub Exploit DB Packet Storm
1024 9.1 緊急
Network 		Eclipse Foundation Jetty Eclipse FoundationのJettyにおけるHTTP リクエストスマグリングに関する脆弱性 CWE-444
HTTP リクエストスマグリング 		CVE-2026-2332 2026-05-7 12:06 2026-04-14 Show GitHub Exploit DB Packet Storm
1025 9.1 緊急
Network 		Dolibarr ERP & CRM dolibarr erp/crm Dolibarr ERP & CRMのdolibarr erp/crmにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-23500 2026-05-7 12:06 2026-04-17 Show GitHub Exploit DB Packet Storm
1026 5.3 警告
Local 		FreeType Project FreeType FreeType ProjectのFreeTypeにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-23865 2026-05-7 12:06 2026-03-2 Show GitHub Exploit DB Packet Storm
1027 6.5 警告
Network 		Linux Foundation tekton pipelines Linux Foundationのtekton pipelinesにおける不正な正規表現に関する脆弱性 CWE-185
不正な正規表現 		CVE-2026-25542 2026-05-7 12:06 2026-04-21 Show GitHub Exploit DB Packet Storm
1028 6.5 警告
Adjacent 		FRRouting Project FRRouting FRRouting ProjectのFRRoutingにおける複数の脆弱性 CWE-125
CWE-190
CVE-2026-28532 2026-05-7 12:06 2026-04-30 Show GitHub Exploit DB Packet Storm
1029 8.8 重要
Network 		CloudARK KubePlus CloudARKのKubePlusにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-29955 2026-05-7 12:06 2026-04-13 Show GitHub Exploit DB Packet Storm
1030 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける領域間での誤ったリソース移動に関する脆弱性 CWE-669
領域間での誤ったリソース移動 		CVE-2026-31431 2026-05-7 12:06 2026-04-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312521 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Check endpoint is valid before dereferencing it When the host controller is not responding, all URBs queued to all end… CWE-476
 NULL Pointer Dereference 		CVE-2023-52901 2024-09-13 22:37 2024-08-21 Show GitHub Exploit DB Packet Storm
312522 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: io_uring: lock overflowing for IOPOLL syzbot reports an issue with overflow filling for IOPOLL: WARNING: CPU: 0 PID: 28 at io_ur… CWE-667
 Improper Locking 		CVE-2023-52903 2024-09-13 22:34 2024-08-21 Show GitHub Exploit DB Packet Storm
312523 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: nommu: fix memory leak in do_mmap() error path The preallocation of the maple tree nodes may leak if the error path to "error_jus… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2023-52902 2024-09-13 22:29 2024-08-21 Show GitHub Exploit DB Packet Storm
312524 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: Fix resource leakage in VF driver unbind resources allocated like mcam entries to support the Ntuple feature and ha… NVD-CWE-Other
CVE-2023-52905 2024-09-13 22:27 2024-08-21 Show GitHub Exploit DB Packet Storm
312525 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: net/sched: act_mpls: Fix warning during failed attribute validation The 'TCA_MPLS_LABEL' attribute is of 'NLA_U32' type, but has … NVD-CWE-noinfo
CVE-2023-52906 2024-09-13 22:21 2024-08-21 Show GitHub Exploit DB Packet Storm
312526 - - - Rejected reason: After careful review of CVE-2024-5203, it has been determined that the issue is not exploitable in real-world scenarios. Moreover, the exploit assumes that the attacker has access to… - CVE-2024-5203 2024-09-13 20:15 2024-06-12 Show GitHub Exploit DB Packet Storm
312527 9.8 CRITICAL
Network 		learningdigital orca_hcm Orca HCM from LEARNING DIGITAL does not properly restrict access to a specific functionality, allowing unauthenticated remote attacker to exploit this functionality to create an account with administ… NVD-CWE-Other
CVE-2024-8584 2024-09-13 19:15 2024-09-9 Show GitHub Exploit DB Packet Storm
312528 5.5 MEDIUM
Local 		- - Illustrator versions 28.6, 27.9.5 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to b… CWE-125
Out-of-bounds Read 		CVE-2024-45111 2024-09-13 18:15 2024-09-13 Show GitHub Exploit DB Packet Storm
312529 5.5 MEDIUM
Local 		- - Illustrator versions 28.6, 27.9.5 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to an application denial-of-service (DoS). An attacker could exploit this vulner… CWE-476
 NULL Pointer Dereference 		CVE-2024-43759 2024-09-13 18:15 2024-09-13 Show GitHub Exploit DB Packet Storm
312530 7.8 HIGH
Local 		- - Illustrator versions 28.6, 27.9.5 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this iss… CWE-416
 Use After Free 		CVE-2024-43758 2024-09-13 18:15 2024-09-13 Show GitHub Exploit DB Packet Storm