Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 15, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 1651 | 7.8 |
重要
Local |
Zurich Instruments | LabOne Q | Zurich InstrumentsのLabOne Qにおける信頼できないデータのデシリアライゼーションに関する脆弱性 |
CWE-502
信頼性のないデータのデシリアライゼーション |
CVE-2026-7584 | 2026-05-7 11:31 | 2026-05-1 | Show | GitHub Exploit DB Packet Storm |
| 1652 | 9.8 |
緊急
Network |
Shenzhen Tenda Technology Co.,Ltd. | W308R Firmware | Shenzhen Tenda Technology Co.,Ltd.のW308R Firmwareにおけるスプーフィングによる認証回避に関する脆弱性 |
CWE-290
スプーフィングによる認証回避 |
CVE-2018-25316 | 2026-05-7 11:31 | 2026-04-29 | Show | GitHub Exploit DB Packet Storm |
| 1653 | 9.8 |
緊急
Network |
Shenzhen Tenda Technology Co.,Ltd. |
W3002R Firmware A302 Firmware W309R Firmware |
Shenzhen Tenda Technology Co.,Ltd.のA302 Firmware等の複数製品におけるスプーフィングによる認証回避に関する脆弱性 |
CWE-290
スプーフィングによる認証回避 |
CVE-2018-25317 | 2026-05-7 11:31 | 2026-04-29 | Show | GitHub Exploit DB Packet Storm |
| 1654 | 9.8 |
緊急
Network |
Shenzhen Tenda Technology Co.,Ltd. |
FH303 Firmware A300 Firmware |
Shenzhen Tenda Technology Co.,Ltd.のA300 Firmware等の複数製品におけるスプーフィングによる認証回避に関する脆弱性 |
CWE-290
スプーフィングによる認証回避 |
CVE-2018-25318 | 2026-05-7 11:31 | 2026-04-29 | Show | GitHub Exploit DB Packet Storm |
| 1655 | 9.8 |
緊急
Network |
DeanWu (pylixm) | Django-mdeditor | DeanWu (pylixm)のDjango-mdeditorにおける重要な機能に対する認証の欠如に関する脆弱性 |
CWE-306
重要な機能に対する認証の欠如 解説 |
CVE-2025-13030 | 2026-05-7 11:31 | 2026-04-30 | Show | GitHub Exploit DB Packet Storm |
| 1656 | 7.8 |
重要
Local |
The Qt Company | qtdeclarative | The Qt Companyのqtdeclarativeにおける複数の脆弱性 |
CWE-20 CWE-94 CWE-94 |
CVE-2025-14576 | 2026-05-7 11:30 | 2026-04-30 | Show | GitHub Exploit DB Packet Storm |
| 1657 | 6.4 |
警告
Local |
レッドハット | OpenShift Update Service (OSUS) | レッドハットのOpenShift Update Service (OSUS)における不適切なデフォルトパーミッションに関する脆弱性 |
CWE-276
不適切なデフォルトパーミッション |
CVE-2025-57854 | 2026-05-7 11:30 | 2026-04-8 | Show | GitHub Exploit DB Packet Storm |
| 1658 | 5.4 |
警告
Network |
Wolters Kluwer Financial Services, Inc. | LEX Baza Dokumentow | Wolters Kluwer Financial Services, Inc.のLEX Baza Dokumentowにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2026-1493 | 2026-05-7 11:30 | 2026-04-30 | Show | GitHub Exploit DB Packet Storm |
| 1659 | 5.7 |
警告
Adjacent |
シスコシステムズ |
Firepower Threat Defense (FTD) Adaptive Security Appliance (ASA) Software |
シスコシステムズのAdaptive Security Appliance (ASA) Software等の複数製品における入力確認に関する脆弱性 |
CWE-20 CWE-noinfo |
CVE-2026-20020 | 2026-05-7 11:30 | 2026-03-4 | Show | GitHub Exploit DB Packet Storm |
| 1660 | 6.1 |
警告
Network |
シスコシステムズ |
Firepower Threat Defense (FTD) Adaptive Security Appliance (ASA) Software |
シスコシステムズのAdaptive Security Appliance (ASA) Software等の複数製品におけるクロスサイトスクリプティングの脆弱性 |
CWE-80
クロスサイトスクリプティング (Basic XSS) |
CVE-2026-20070 | 2026-05-7 11:30 | 2026-03-4 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 15, 2026, 4:28 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 312861 | 6.1 |
MEDIUM
Network |
classcms_project | classcms | A vulnerability classified as problematic was found in ClassCMS 4.8. Affected by this vulnerability is an unknown functionality of the file /index.php/admin of the component Logo Handler. The manipul… |
CWE-79
Cross-site Scripting |
CVE-2024-8144 | 2024-09-19 00:31 | 2024-08-25 | Show | GitHub Exploit DB Packet Storm |
| 312862 | 6.5 |
MEDIUM
Network |
siemens |
simatic_rf360r_firmware simatic_rf1170r_firmware simatic_rf1140r_firmware simatic_reader_rf685r_fcc_firmware simatic_reader_rf685r_etsi_firmware simatic_reader_rf685r_cmiit_firmware
A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All versions < V4.2), SIMATIC Reader RF610R ETSI (6GT2811-6BC10-0AA0) (All versions < V4.2), SIMATIC Reader RF…
|
CWE-306
|
Missing Authentication for Critical Function
CVE-2024-37991
|
2024-09-19 00:29 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 312863 | 6.5 |
MEDIUM
Network |
siemens |
simatic_rf360r_firmware simatic_rf1170r_firmware simatic_rf1140r_firmware simatic_reader_rf685r_fcc_firmware simatic_reader_rf685r_etsi_firmware simatic_reader_rf685r_cmiit_firmware
A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All versions < V4.2), SIMATIC Reader RF610R ETSI (6GT2811-6BC10-0AA0) (All versions < V4.2), SIMATIC Reader RF…
|
NVD-CWE-Other
|
CVE-2024-37990
|
2024-09-19 00:27 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 312864 | 4.4 |
MEDIUM
Local |
nvidia | cuda_toolkit | NVIDIA CUDA Toolkit contains a vulnerability in command 'cuobjdump' where a user may cause a crash or produce incorrect output by passing a malformed ELF file. A successful exploit of this vulnerabil… |
CWE-1284
Improper Validation of Specified Quantity in Input |
CVE-2024-0111 | 2024-09-19 00:22 | 2024-08-31 | Show | GitHub Exploit DB Packet Storm |
| 312865 | 6.5 |
MEDIUM
Network |
inspireui | mstore_api | The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable to unauthorized user registration in all versions up to, and including, 4.15.3. This is due to the pl… |
NVD-CWE-noinfo
|
CVE-2024-8269 | 2024-09-19 00:20 | 2024-09-14 | Show | GitHub Exploit DB Packet Storm |
| 312866 | 3.3 |
LOW
Local |
nvidia | cuda_toolkit | NVIDIA CUDA Toolkit contains a vulnerability in command `cuobjdump` where a user may cause a crash by passing in a malformed ELF file. A successful exploit of this vulnerability may cause an out of b… |
CWE-125
Out-of-bounds Read |
CVE-2024-0109 | 2024-09-19 00:18 | 2024-08-31 | Show | GitHub Exploit DB Packet Storm |
| 312867 | 7.8 |
HIGH
Local |
nvidia | cuda_toolkit | NVIDIA CUDA Toolkit contains a vulnerability in command `cuobjdump` where a user may cause an out-of-bound write by passing in a malformed ELF file. A successful exploit of this vulnerability may lea… |
CWE-787
Out-of-bounds Write |
CVE-2024-0110 | 2024-09-19 00:16 | 2024-08-31 | Show | GitHub Exploit DB Packet Storm |
| 312868 | 8.1 |
HIGH
Network |
microsoft |
windows_server_2019 windows_server_2022 windows_server_2022_23h2 windows_11_24h2 windows_10_22h2 windows_11_23h2 windows_11_22h2 windows_11_21h2 windows_10_1809 windows_10_… |
Windows TCP/IP Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2024-38045 | 2024-09-19 00:04 | 2024-09-11 | Show | GitHub Exploit DB Packet Storm |
| 312869 | 8.8 |
HIGH
Network |
microsoft | sharepoint_server | Microsoft SharePoint Server Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2024-38018 | 2024-09-19 00:04 | 2024-09-11 | Show | GitHub Exploit DB Packet Storm |
| 312870 | 7.8 |
HIGH
Local |
microsoft |
windows_10_1507 windows_server_2019 windows_server_2022 windows_server_2022_23h2 windows_11_24h2 windows_10_1607 windows_server_2016 windows_10_22h2 windows_11_23h2 windows… |
PowerShell Elevation of Privilege Vulnerability |
NVD-CWE-noinfo
|
CVE-2024-38046 | 2024-09-19 00:02 | 2024-09-11 | Show | GitHub Exploit DB Packet Storm |