Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1361 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. AC9 ファームウェア Shenzhen Tenda Technology Co.,Ltd.のAC9 ファームウェアにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-6016 2026-05-1 10:42 2026-04-10 Show GitHub Exploit DB Packet Storm
1362 9.8 緊急
Network 		Shenzhen Tenda Technology Co.,Ltd. i6 ファームウェア Shenzhen Tenda Technology Co.,Ltd.のi6 ファームウェアにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-6024 2026-05-1 10:42 2026-04-10 Show GitHub Exploit DB Packet Storm
1363 8.8 重要
Network 		MetaGPT MetaGPT MetaGPTにおける複数の脆弱性 CWE-352
CWE-862
CVE-2026-6109 2026-05-1 10:42 2026-04-12 Show GitHub Exploit DB Packet Storm
1364 9.8 緊急
Network 		MetaGPT MetaGPT MetaGPTにおける複数の脆弱性 CWE-74
CWE-94
CVE-2026-6110 2026-05-1 10:42 2026-04-12 Show GitHub Exploit DB Packet Storm
1365 6.5 警告
Network 		MetaGPT MetaGPT MetaGPTにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-6111 2026-05-1 10:42 2026-04-12 Show GitHub Exploit DB Packet Storm
1366 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. F451 Firmware Shenzhen Tenda Technology Co.,Ltd.のF451 Firmwareにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-6120 2026-05-1 10:42 2026-04-12 Show GitHub Exploit DB Packet Storm
1367 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. F451 Firmware Shenzhen Tenda Technology Co.,Ltd.のF451 Firmwareにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-6121 2026-05-1 10:42 2026-04-12 Show GitHub Exploit DB Packet Storm
1368 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. F451 Firmware Shenzhen Tenda Technology Co.,Ltd.のF451 Firmwareにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-6122 2026-05-1 10:42 2026-04-12 Show GitHub Exploit DB Packet Storm
1369 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. F451 Firmware Shenzhen Tenda Technology Co.,Ltd.のF451 Firmwareにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-6123 2026-05-1 10:42 2026-04-12 Show GitHub Exploit DB Packet Storm
1370 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. F451 Firmware Shenzhen Tenda Technology Co.,Ltd.のF451 Firmwareにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-6124 2026-05-1 10:42 2026-04-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313011 9.8 CRITICAL
Network 		ivanti neurons_for_itsm An information disclosure vulnerability in Ivanti ITSM on-prem and Neurons for ITSM versions 2023.4 and earlier allows an unauthenticated attacker to obtain the OIDC client secret via debug informati… NVD-CWE-Other
CVE-2024-7569 2024-09-7 06:57 2024-08-14 Show GitHub Exploit DB Packet Storm
313012 9.3 CRITICAL
Network 		roundcube webmail A Cross-Site Scripting vulnerability in Roundcube through 1.5.7 and 1.6.x through 1.6.7 allows a remote attacker to steal and send emails of a victim via a crafted e-mail message that abuses a Desani… CWE-79
Cross-site Scripting 		CVE-2024-42009 2024-09-7 06:50 2024-08-6 Show GitHub Exploit DB Packet Storm
313013 9.3 CRITICAL
Network 		roundcube webmail A Cross-Site Scripting vulnerability in rcmail_action_mail_get->run() in Roundcube through 1.5.7 and 1.6.x through 1.6.7 allows a remote attacker to steal and send emails of a victim via a malicious … CWE-79
Cross-site Scripting 		CVE-2024-42008 2024-09-7 06:48 2024-08-6 Show GitHub Exploit DB Packet Storm
313014 4.3 MEDIUM
Network 		xwiki xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. When a user has view but not edit right on a page in XWiki, that user can delete the page and … CWE-862
 Missing Authorization 		CVE-2024-37898 2024-09-7 06:16 2024-08-1 Show GitHub Exploit DB Packet Storm
313015 4.6 MEDIUM
Network 		xwiki xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. When uploading an attachment with a malicious filename, malicious JavaScript code could be exe… CWE-94
Code Injection 		CVE-2024-37900 2024-09-7 06:06 2024-08-1 Show GitHub Exploit DB Packet Storm
313016 8.8 HIGH
Network 		xwiki xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Any user with edit right on any page can perform arbitrary remote code execution by adding ins… CWE-94
Code Injection 		CVE-2024-37901 2024-09-7 05:54 2024-08-1 Show GitHub Exploit DB Packet Storm
313017 5.4 MEDIUM
Network 		xwiki xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. By creating a conflict when another user with more rights is currently editing a page, it is p… CWE-79
Cross-site Scripting 		CVE-2024-41947 2024-09-7 05:46 2024-08-1 Show GitHub Exploit DB Packet Storm
313018 7.5 HIGH
Network 		intel ethernet_800_series_controllers_driver Protection mechanism failure in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters E810 Series before version 28.3 may allow an unauthenticated user to potentially e… NVD-CWE-noinfo
CVE-2024-23499 2024-09-7 05:43 2024-08-14 Show GitHub Exploit DB Packet Storm
313019 7.8 HIGH
Local 		intel oneapi_dpc\+\+\/c\+\+_compiler
high_level_synthesis_compiler
quartus_prime 		Uncontrolled search path in some Intel(R) High Level Synthesis Compiler software before version 23.4 may allow an authenticated user to potentially enable escalation of privilege via local access. CWE-427
 Uncontrolled Search Path Element 		CVE-2024-23907 2024-09-7 05:38 2024-08-14 Show GitHub Exploit DB Packet Storm
313020 7.8 HIGH
Local 		intel field_programmable_gate_array_software_development_kit_for_opencl Uncontrolled search path in some Intel(R) FPGA SDK for OpenCL(TM) software technology may allow an authenticated user to potentially enable escalation of privilege via local access. CWE-427
 Uncontrolled Search Path Element 		CVE-2024-23909 2024-09-7 05:33 2024-08-14 Show GitHub Exploit DB Packet Storm