Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1221	6.2	警告 Local	アドビシステムズ	C2PA (Coalition for Content Provenance and Authenticity) (Content Authenticity Initiative) c2pa-web	アドビの(Content Authenticity Initiative) c2pa-web等の複数製品におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-34673	2026-05-18 11:23	2026-05-12	Show	GitHub Exploit DB Packet Storm

1222	6.2	警告 Local	アドビシステムズ	C2PA (Coalition for Content Provenance and Authenticity) (Content Authenticity Initiative) c2pa-web	アドビの(Content Authenticity Initiative) c2pa-web等の複数製品におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-34677	2026-05-18 11:23	2026-05-12	Show	GitHub Exploit DB Packet Storm

1223	6.2	警告 Local	アドビシステムズ	C2PA (Coalition for Content Provenance and Authenticity) (Content Authenticity Initiative) c2pa-web	アドビの(Content Authenticity Initiative) c2pa-web等の複数製品におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-34678	2026-05-18 11:23	2026-05-12	Show	GitHub Exploit DB Packet Storm

1224	6.2	警告 Local	アドビシステムズ	C2PA (Coalition for Content Provenance and Authenticity) (Content Authenticity Initiative) c2pa-web	アドビの(Content Authenticity Initiative) c2pa-web等の複数製品における入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-34679	2026-05-18 11:23	2026-05-12	Show	GitHub Exploit DB Packet Storm

1225	6.2	警告 Local	アドビシステムズ	C2PA (Coalition for Content Provenance and Authenticity) (Content Authenticity Initiative) c2pa-web	アドビの(Content Authenticity Initiative) c2pa-web等の複数製品における整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-34680	2026-05-18 11:23	2026-05-12	Show	GitHub Exploit DB Packet Storm

1226	6.2	警告 Local	アドビシステムズ	C2PA (Coalition for Content Provenance and Authenticity) (Content Authenticity Initiative) c2pa-web	アドビの(Content Authenticity Initiative) c2pa-web等の複数製品における入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-34688	2026-05-18 11:23	2026-05-12	Show	GitHub Exploit DB Packet Storm

1227	7.1	重要 Adjacent	Linux Foundation	automotive grade linux	Linux FoundationのAutomotive Grade Linuxにおけるバッファオーバーリードの脆弱性	CWE-126 バッファオーバーリード	CVE-2026-37532	2026-05-18 11:23	2026-05-1	Show	GitHub Exploit DB Packet Storm

1228	8.8	重要 Network	マイクロソフト	Microsoft Data Formulator	Microsoft Data Formulator のリモートでコードが実行される脆弱性	CWE-94 コード・インジェクション	CVE-2026-41094	2026-05-18 11:22	2026-05-12	Show	GitHub Exploit DB Packet Storm

1229	9.1	緊急 Network	マイクロソフト	Microsoft Confluence SAML SSO plugin Microsoft JIRA SAML SSO plugin	Jira と Confluence 用の Microsoft SSO プラグインの特権昇格の脆弱性	CWE-303 CWE-Other	CVE-2026-41103	2026-05-18 11:22	2026-05-12	Show	GitHub Exploit DB Packet Storm

1230	5.9	警告 Network	opentelemetry	OpenTelemetry.Resources.Azure	opentelemetryのOpenTelemetry.Resources.Azureにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-41483	2026-05-18 11:22	2026-05-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311511	5.5	MEDIUM Local	apple	macos	This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Sequoia 15, macOS Sonoma 14.7.1. An app may be able to access sensitive user data.	CWE-59 Link Following	CVE-2024-44175	2024-10-31 02:14	2024-10-29	Show	GitHub Exploit DB Packet Storm

311512	4.9	MEDIUM Network	mayurik	petrol_pump_management	A vulnerability, which was classified as critical, has been found in SourceCodester Petrol Pump Management Software 1.0. Affected by this issue is some unknown functionality of the file /admin/invoic…	CWE-89 SQL Injection	CVE-2024-10355	2024-10-31 02:13	2024-10-25	Show	GitHub Exploit DB Packet Storm

311513	3.3	LOW Local	apple	iphone_os ipados	This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 18 and iPadOS 18. An attacker may be able to use Siri to enable Auto-Answer Calls.	NVD-CWE-noinfo	CVE-2024-40853	2024-10-31 02:08	2024-10-29	Show	GitHub Exploit DB Packet Storm

311514	3.3	LOW Local	apple	macos	A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sequoia 15. An app may be able to read sensitive location information.	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2024-27849	2024-10-31 02:07	2024-10-29	Show	GitHub Exploit DB Packet Storm

311515	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: io_uring/sqpoll: ensure task state is TASK_RUNNING when running task_work When the sqpoll is exiting and cancels pending work ite…	NVD-CWE-noinfo	CVE-2024-50079	2024-10-31 02:05	2024-10-29	Show	GitHub Exploit DB Packet Storm

311516	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: pinctrl: nuvoton: fix a double free in ma35_pinctrl_dt_node_to_map_func() 'new_map' is allocated using devm_* which takes care of…	CWE-415 Double Free	CVE-2024-50071	2024-10-31 02:02	2024-10-29	Show	GitHub Exploit DB Packet Storm

311517	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: pinctrl: stm32: check devm_kasprintf() returned value devm_kasprintf() can return a NULL pointer on failure but this returned val…	CWE-476 NULL Pointer Dereference	CVE-2024-50070	2024-10-31 01:59	2024-10-29	Show	GitHub Exploit DB Packet Storm

311518	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: pinctrl: apple: check devm_kasprintf() returned value devm_kasprintf() can return a NULL pointer on failure but this returned val…	CWE-476 NULL Pointer Dereference	CVE-2024-50069	2024-10-31 01:58	2024-10-29	Show	GitHub Exploit DB Packet Storm

311519	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: mm/damon/tests/sysfs-kunit.h: fix memory leak in damon_sysfs_test_add_targets() The sysfs_target->regions allocated in damon_sysf…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2024-50068	2024-10-31 01:57	2024-10-29	Show	GitHub Exploit DB Packet Storm

311520	9.8	CRITICAL Network	codezips	sales_management_system	A vulnerability was found in Codezips Sales Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /addcustcom.php. The manipu…	CWE-89 SQL Injection	CVE-2024-10369	2024-10-31 01:50	2024-10-25	Show	GitHub Exploit DB Packet Storm