Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1741	8.6	重要 Network	Mervin Praison (MervinPraison)	PraisonAI	Mervin Praison (MervinPraison)のPraisonAI等の複数製品におけるクラスまたはコードを選択する外部から制御された入力の使用に関する脆弱性	CWE-470 クラスまたはコードを選択する外部から制御された入力の使用	CVE-2026-44339	2026-05-11 11:04	2026-05-8	Show	GitHub Exploit DB Packet Storm

1742	7.5	重要 Network	Mervin Praison (MervinPraison)	PraisonAI	Mervin Praison (MervinPraison)のPraisonAIにおける複数の脆弱性	CWE-22 CWE-59	CVE-2026-44340	2026-05-11 11:04	2026-05-8	Show	GitHub Exploit DB Packet Storm

1743	7.8	重要 Local	ZTE	ZXCLOUD iRAI	ZTEのZXCLOUD iRAIにおける制御されていない検索パスの要素に関する脆弱性	CWE-427 制御されていない検索パスの要素	CVE-2026-44406	2026-05-11 11:04	2026-05-7	Show	GitHub Exploit DB Packet Storm

1744	7.5	重要 Network	Zcash Foundation	Zebrad	Zcash FoundationのZebradにおける計算の誤りに関する脆弱性	CWE-682 計算の誤り	CVE-2026-44498	2026-05-11 11:04	2026-05-8	Show	GitHub Exploit DB Packet Storm

1745	5.3	警告 Network	Zcash Foundation	zebra-network Zebra-chain Zebrad	Zcash FoundationのZebra-chain等の複数製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-44500	2026-05-11 11:04	2026-05-8	Show	GitHub Exploit DB Packet Storm

1746	7.5	重要 Network	The Tor Project	Tor	The Tor ProjectのTorにおける単一、固有のアクションの実施に関する脆弱性	CWE-837 単一、固有のアクションの不適切な実施	CVE-2026-44601	2026-05-11 11:04	2026-05-7	Show	GitHub Exploit DB Packet Storm

1747	7.5	重要 Network	The Tor Project	Tor	The Tor ProjectのTorにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-44602	2026-05-11 11:04	2026-05-7	Show	GitHub Exploit DB Packet Storm

1748	5.5	警告 Local	Open Source Geospatial Foundation	GDAL	Open Source Geospatial FoundationのGDALにおける複数の脆弱性	CWE-119 CWE-125	CVE-2026-8084	2026-05-11 11:04	2026-05-7	Show	GitHub Exploit DB Packet Storm

1749	7.8	重要 Local	Open Source Geospatial Foundation	GDAL	Open Source Geospatial FoundationのGDALにおける複数の脆弱性	CWE-119 CWE-122	CVE-2026-8086	2026-05-11 11:04	2026-05-7	Show	GitHub Exploit DB Packet Storm

1750	7.8	重要 Local	Open Source Geospatial Foundation	GDAL	Open Source Geospatial FoundationのGDALにおける複数の脆弱性	CWE-119 CWE-122	CVE-2026-8087	2026-05-11 11:04	2026-05-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312501	6.1	MEDIUM Network	ellevo	ellevo	A reflected cross-site scripting (XSS) vulnerability in Ellevo 6.2.0.38160 allows attackers to execute arbitrary code in the context of a user's browser via a crafted payload or URL.	CWE-79 Cross-site Scripting	CVE-2024-46655	2024-10-3 00:40	2024-09-26	Show	GitHub Exploit DB Packet Storm

312502	5.3	MEDIUM Adjacent	synology	active_backup_for_business_agent	Missing encryption of sensitive data vulnerability in login component in Synology Active Backup for Business Agent before 2.7.0-3221 allows adjacent man-in-the-middle attackers to obtain user credent…	CWE-311 Missing Encryption of Sensitive Data	CVE-2023-52950	2024-10-3 00:26	2024-09-26	Show	GitHub Exploit DB Packet Storm

312503	5.5	MEDIUM Local	synology	active_backup_for_business_agent	Missing authentication for critical function vulnerability in proxy settings functionality in Synology Active Backup for Business Agent before 2.7.0-3221 allows local users to obtain user credential …	CWE-306 Missing Authentication for Critical Function	CVE-2023-52949	2024-10-3 00:26	2024-09-26	Show	GitHub Exploit DB Packet Storm

312504	5.0	MEDIUM Local	synology	active_backup_for_business_agent	Missing encryption of sensitive data vulnerability in settings functionality in Synology Active Backup for Business Agent before 2.7.0-3221 allows local users to obtain user credential via unspecifie…	CWE-311 Missing Encryption of Sensitive Data	CVE-2023-52948	2024-10-3 00:26	2024-09-26	Show	GitHub Exploit DB Packet Storm

312505	3.3	LOW Local	synology	active_backup_for_business_agent	Missing authentication for critical function vulnerability in logout functionality in Synology Active Backup for Business Agent before 2.6.3-3101 allows local users to logout the client via unspecifi…	CWE-306 Missing Authentication for Critical Function	CVE-2023-52947	2024-10-3 00:26	2024-09-26	Show	GitHub Exploit DB Packet Storm

312506	5.5	MEDIUM Local	opentext	identity_manager_azuread_driver	A vulnerability identified in OpenText™ Identity Manager AzureAD Driver that allows logging of sensitive information into log file. This impacts all versions before 5.1.4.0	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2021-22518	2024-10-3 00:10	2024-09-12	Show	GitHub Exploit DB Packet Storm

312507	7.5	HIGH Network	netiq	identity_manager_rest_driver	Possible Insertion of Sensitive Information into Log File Vulnerability in Identity Manager has been discovered in OpenText™ Identity Manager REST Driver. This impact version before 1.1.2.0200.	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2022-26322	2024-10-3 00:03	2024-09-12	Show	GitHub Exploit DB Packet Storm

312508	9.8	CRITICAL Network	rockwellautomation	factorytalk_batch_view	CVE-2024-45823 IMPACT An authentication bypass vulnerability exists in the affected product. The vulnerability exists due to shared secrets across accounts and could allow a threat actor to impers…	NVD-CWE-noinfo	CVE-2024-45823	2024-10-2 23:49	2024-09-13	Show	GitHub Exploit DB Packet Storm

312509	8.3	HIGH Network	nvidia	nvidia_container_toolkit nvidia_gpu_operator	NVIDIA Container Toolkit 1.16.1 or earlier contains a Time-of-check Time-of-Use (TOCTOU) vulnerability when used with default configuration where a specifically crafted container image may gain acces…	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2024-0132	2024-10-2 23:45	2024-09-26	Show	GitHub Exploit DB Packet Storm

312510	3.4	LOW Network	nvidia	nvidia_container_toolkit nvidia_gpu_operator	NVIDIA Container Toolkit 1.16.1 or earlier contains a vulnerability in the default mode of operation allowing a specially crafted container image to create empty files on the host file system. This d…	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2024-0133	2024-10-2 23:43	2024-09-26	Show	GitHub Exploit DB Packet Storm