Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1071	7.5	重要 Network	protobufjs project	protobufjs	protobufjs projectのprotobufjsにおける再帰制御に関する脆弱性	CWE-674 不適切な再帰制御	CVE-2026-45740	2026-05-15 10:56	2026-05-13	Show	GitHub Exploit DB Packet Storm

1072	6.5	警告 Network	Haxx	cURL	HaxxのcURLにおけるセッション期限に関する脆弱性	CWE-613 不適切なセッション期限	CVE-2026-5545	2026-05-15 10:56	2026-05-13	Show	GitHub Exploit DB Packet Storm

1073	7.5	重要 Network	Haxx	cURL	HaxxのcURLにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-5773	2026-05-15 10:56	2026-05-13	Show	GitHub Exploit DB Packet Storm

1074	6.5	警告 Network	IBM	IBM Verify Identity Access IBM Verify Identity Access Container IBM Security Verify Access Container	IBMのSecurity Verify Access等の複数製品における暗号アルゴリズムの使用に関する脆弱性	CWE-327 不完全、または危険な暗号アルゴリズムの使用	CVE-2026-5926	2026-05-15 10:56	2026-04-23	Show	GitHub Exploit DB Packet Storm

1075	6.5	警告 Adjacent	ZyXEL	WRE6505 ファームウェア	ZyXELのWRE6505 ファームウェアにおける過度な認証試行の不適切な制限に関する脆弱性	CWE-307 過度な認証試行の不適切な制限	CVE-2026-7255	2026-05-15 10:56	2026-05-12	Show	GitHub Exploit DB Packet Storm

1076	7.5	重要 Network	Open5GS	Open5GS	Open5GSにおける複数の脆弱性	CWE-119 CWE-125	CVE-2026-8186	2026-05-15 10:56	2026-05-9	Show	GitHub Exploit DB Packet Storm

1077	7.5	重要 Network	Open5GS	Open5GS	Open5GSにおける複数の脆弱性	CWE-400 CWE-404	CVE-2026-8187	2026-05-15 10:56	2026-05-9	Show	GitHub Exploit DB Packet Storm

1078	8.8	重要 Network	WAVLINK	WL-NU516U1 ファームウェア	WAVLINKのWL-NU516U1 ファームウェアにおける複数の脆弱性	CWE-77 CWE-78	CVE-2026-8188	2026-05-15 10:56	2026-05-9	Show	GitHub Exploit DB Packet Storm

1079	8.8	重要 Network	WAVLINK	WL-NU516U1 ファームウェア	WAVLINKのWL-NU516U1 ファームウェアにおける複数の脆弱性	CWE-77 CWE-78	CVE-2026-8189	2026-05-15 10:56	2026-05-9	Show	GitHub Exploit DB Packet Storm

1080	8.8	重要 Network	WAVLINK	WL-NU516U1 ファームウェア	WAVLINKのWL-NU516U1 ファームウェアにおける複数の脆弱性	CWE-77 CWE-78	CVE-2026-8190	2026-05-15 10:56	2026-05-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311891	6.5	MEDIUM Network	-	-	Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. A low-privileged a…	CWE-284 Improper Access Control	CVE-2024-45118	2024-10-10 21:51	2024-10-10	Show	GitHub Exploit DB Packet Storm

311892	7.6	HIGH Network	-	-	Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Input Validation vulnerability that could lead to arbitrary file system read. An admin attacker…	CWE-20 Improper Input Validation	CVE-2024-45117	2024-10-10 21:51	2024-10-10	Show	GitHub Exploit DB Packet Storm

311893	8.1	HIGH Network	-	-	Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by a Cross-Site Scripting (XSS) vulnerability that could be exploited to execute arbitrary code. If an admin a…	CWE-79 Cross-site Scripting	CVE-2024-45116	2024-10-10 21:51	2024-10-10	Show	GitHub Exploit DB Packet Storm

311894	9.8	CRITICAL Network	-	-	Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Authentication vulnerability that could result in privilege escalation. An attacker could explo…	CWE-287 Improper Authentication	CVE-2024-45115	2024-10-10 21:51	2024-10-10	Show	GitHub Exploit DB Packet Storm

311895	-		-	-	An Insecure Direct Object Reference (IDOR) vulnerability exists in open-webui/open-webui version v0.3.8. The vulnerability occurs in the API endpoint `http://0.0.0.0:3000/api/v1/memories/{id}/update`…	CWE-250 Execution with Unnecessary Privileges	CVE-2024-7041	2024-10-10 21:51	2024-10-10	Show	GitHub Exploit DB Packet Storm

311896	-		-	-	In version v0.3.8 of open-webui/open-webui, the endpoint /api/pipelines/upload is vulnerable to arbitrary file write and delete due to unsanitized file.filename concatenation with CACHE_DIR. This vul…	CWE-22 Path Traversal	CVE-2024-7037	2024-10-10 21:51	2024-10-10	Show	GitHub Exploit DB Packet Storm

311897	7.5	HIGH Network	-	-	An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated network-based attacker se…	CWE-755 Improper Handling of Exceptional Conditions	CVE-2024-39525	2024-10-10 21:51	2024-10-10	Show	GitHub Exploit DB Packet Storm

311898	7.5	HIGH Network	-	-	An Improper Validation of Consistency within Input vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated network-based attacke…	CWE-1288 Improper Validation of Consistency within Input	CVE-2024-39515	2024-10-10 21:51	2024-10-10	Show	GitHub Exploit DB Packet Storm

311899	-		-	-	VMware NSX contains a local privilege escalation vulnerability. An authenticated malicious actor may exploit this vulnerability to obtain permissions from a separate group role than previously assi…	-	CVE-2024-38818	2024-10-10 21:51	2024-10-10	Show	GitHub Exploit DB Packet Storm

311900	-		-	-	VMware NSX contains a content spoofing vulnerability. An unauthenticated malicious actor may be able to craft a URL and redirect a victim to an attacker controlled domain leading to sensitive infor…	-	CVE-2024-38815	2024-10-10 21:51	2024-10-10	Show	GitHub Exploit DB Packet Storm