Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 14, 2026, 12:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1501	9.8	緊急 Network	Progress Software Corporation	MOVEit Automation Web Admin	Progress Software CorporationのMOVEit Automation Web Adminにおける根本の脆弱性による認証回避の脆弱性	CWE-305 根本の脆弱性による認証回避	CVE-2026-4670	2026-05-7 11:25	2026-04-30	Show	GitHub Exploit DB Packet Storm

1502	8.8	重要 Network	Progress Software Corporation	MOVEit Automation Web Admin	Progress Software CorporationのMOVEit Automation Web Adminにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-5174	2026-05-7 11:25	2026-04-30	Show	GitHub Exploit DB Packet Storm

1503	6.5	警告 Network	GNU Project	GNU C Library	GNU ProjectのGNU C Libraryにおけるバッファオーバーリードの脆弱性	CWE-126 バッファオーバーリード	CVE-2026-6238	2026-05-7 11:25	2026-04-28	Show	GitHub Exploit DB Packet Storm

1504	8.1	重要 Network	langflow	langflow	langflowにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-6542	2026-05-7 11:25	2026-04-30	Show	GitHub Exploit DB Packet Storm

1505	6.5	警告 Network	Devolutions	Devolutions Server	DevolutionsのDevolutions Serverにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-6706	2026-05-7 11:25	2026-04-28	Show	GitHub Exploit DB Packet Storm

1506	6.5	警告 Adjacent	Amazon.com, Inc.	freertos-plus-tcp	Amazon.com, Inc.のfreertos-plus-tcpにおけるスプーフィングによる認証回避に関する脆弱性	CWE-290 スプーフィングによる認証回避	CVE-2026-7422	2026-05-7 11:25	2026-04-29	Show	GitHub Exploit DB Packet Storm

1507	6.5	警告 Adjacent	Amazon.com, Inc.	freertos-plus-tcp	Amazon.com, Inc.のfreertos-plus-tcpにおける整数アンダーフローの脆弱性	CWE-191 整数アンダーフロー	CVE-2026-7423	2026-05-7 11:25	2026-04-29	Show	GitHub Exploit DB Packet Storm

1508	8.1	重要 Adjacent	Amazon.com, Inc.	freertos-plus-tcp	Amazon.com, Inc.のfreertos-plus-tcpにおける整数アンダーフローの脆弱性	CWE-191 整数アンダーフロー	CVE-2026-7424	2026-05-7 11:25	2026-04-29	Show	GitHub Exploit DB Packet Storm

1509	6.5	警告 Adjacent	Amazon.com, Inc.	freertos-plus-tcp	Amazon.com, Inc.のfreertos-plus-tcpにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-7425	2026-05-7 11:25	2026-04-29	Show	GitHub Exploit DB Packet Storm

1510	8.1	重要 Adjacent	Amazon.com, Inc.	freertos-plus-tcp	Amazon.com, Inc.のfreertos-plus-tcpにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-7426	2026-05-7 11:25	2026-04-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1141	9.6	CRITICAL Network	argoproj	argo_cd	Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. From versions 3.2.0 to before 3.2.11 and 3.3.0 to before 3.3.9, there is a missing authorization and data-masking gap in Argo… Update	CWE-200 CWE-212 Information Exposure Improper Removal of Sensitive Information Before Storage or Transfer	CVE-2026-42880	2026-05-12 02:46	2026-05-8	Show	GitHub Exploit DB Packet Storm

1142	8.8	HIGH Network	gitpython_project	gitpython	GitPython is a python library used to interact with Git repositories. From version 3.1.30 to before version 3.1.47, GitPython blocks dangerous Git options such as --upload-pack and --receive-pack by … Update	CWE-78 OS Command	CVE-2026-42215	2026-05-12 02:45	2026-05-8	Show	GitHub Exploit DB Packet Storm

1143	7.8	HIGH Local	gitpython_project	gitpython	GitPython is a python library used to interact with Git repositories. Prior to version 3.1.49, GitConfigParser.set_value() passes values to Python's configparser without validating for newlines. GitP… Update	CWE-94 Code Injection	CVE-2026-44244	2026-05-12 02:44	2026-05-8	Show	GitHub Exploit DB Packet Storm

1144	7.5	HIGH Network	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ipv4: icmp: fix null-ptr-deref in icmp_build_probe() ipv6_stub->ipv6_dev_find() may return ERR_PTR(-EAFNOSUPPORT) when the IPv6 s… Update	CWE-476 NULL Pointer Dereference	CVE-2026-43099	2026-05-12 02:36	2026-05-6	Show	GitHub Exploit DB Packet Storm

1145	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: bridge: guard local VLAN-0 FDB helpers against NULL vlan group When CONFIG_BRIDGE_VLAN_FILTERING is not set, br_vlan_group() and … Update	CWE-476 NULL Pointer Dereference	CVE-2026-43100	2026-05-12 02:35	2026-05-6	Show	GitHub Exploit DB Packet Storm

1146	7.5	HIGH Network	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ipv6: ioam: fix potential NULL dereferences in __ioam6_fill_trace_data() We need to check __in6_dev_get() for possible NULL value… Update	CWE-476 NULL Pointer Dereference	CVE-2026-43101	2026-05-12 02:35	2026-05-6	Show	GitHub Exploit DB Packet Storm

1147	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net: airoha: Fix memory leak in airoha_qdma_rx_process() If an error occurs on the subsequents buffers belonging to the non-linea… Update	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2026-43102	2026-05-12 02:34	2026-05-6	Show	GitHub Exploit DB Packet Storm

1148	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net: lapbether: handle NETDEV_PRE_TYPE_CHANGE lapbeth_data_transmit() expects the underlying device type to be ARPHRD_ETHER. Ret… Update	NVD-CWE-noinfo	CVE-2026-43103	2026-05-12 02:33	2026-05-6	Show	GitHub Exploit DB Packet Storm

1149	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/vc4: Fix a memory leak in hang state error path When vc4_save_hang_state() encounters an early return condition, it returns w… Update	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2026-43104	2026-05-12 02:32	2026-05-6	Show	GitHub Exploit DB Packet Storm

1150	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/vc4: Fix memory leak of BO array in hang state The hang state's BO array is allocated separately with kzalloc() in vc4_save_h… Update	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2026-43105	2026-05-12 02:32	2026-05-6	Show	GitHub Exploit DB Packet Storm