Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2041 6.5 警告
Network 		Nexxt Solutions Nebula300Plus Firmware Nexxt SolutionsのNebula300Plus Firmwareにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2026-31849 2026-05-1 10:38 2026-03-23 Show GitHub Exploit DB Packet Storm
2042 4.9 警告
Network 		Nexxt Solutions Nebula300Plus Firmware Nexxt SolutionsのNebula300Plus Firmwareにおける認証情報の平文保存に関する脆弱性 CWE-256
平文でパスワードを保存 		CVE-2026-31850 2026-05-1 10:38 2026-03-23 Show GitHub Exploit DB Packet Storm
2043 9.8 緊急
Network 		Nexxt Solutions Nebula300Plus Firmware Nexxt SolutionsのNebula300Plus Firmwareにおける過度な認証試行の不適切な制限に関する脆弱性 CWE-307
過度な認証試行の不適切な制限 		CVE-2026-31851 2026-05-1 10:38 2026-03-23 Show GitHub Exploit DB Packet Storm
2044 6.1 警告
Network 		angular Angular CLI angularのAngular CLIにおけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2026-33397 2026-05-1 10:38 2026-03-26 Show GitHub Exploit DB Packet Storm
2045 9.1 緊急
Network 		Fatedier FRP FatedierのFRPにおける認証に関する脆弱性 CWE-287
CWE-noinfo
CVE-2026-40910 2026-05-1 10:38 2026-04-21 Show GitHub Exploit DB Packet Storm
2046 8.8 重要
Network 		VMware Spring gRPC VMwareのSpring gRPCにおける隔離または分類に関する脆弱性 CWE-653
不適切な隔離または分類 		CVE-2026-40968 2026-05-1 10:38 2026-04-28 Show GitHub Exploit DB Packet Storm
2047 5.3 警告
Network 		VMware Spring gRPC VMwareのSpring gRPCにおけるエラーメッセージによる情報漏えいに関する脆弱性 CWE-209
エラーメッセージによる情報漏えい 		CVE-2026-40969 2026-05-1 10:38 2026-04-28 Show GitHub Exploit DB Packet Storm
2048 7.5 重要
Network 		Frappe Press FrappeのPressにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2026-41317 2026-05-1 10:38 2026-04-24 Show GitHub Exploit DB Packet Storm
2049 6.1 警告
Network 		Frappe Press FrappeのPressにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-41430 2026-05-1 10:38 2026-04-24 Show GitHub Exploit DB Packet Storm
2050 8.8 重要
Network 		D-Link Systems, Inc. DHP-1320 Firmware D-Link CorporationのDHP-1320 Firmwareにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-4529 2026-05-1 10:38 2026-03-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313211 3.1 LOW
Network 		keyfactor ejbca The CMP CLI client in KeyFactor EJBCA before 8.3.1 has only 6 octets of salt, and is thus not compliant with the security requirements of RFC 4211, and might make man-in-the-middle attacks easier. CM… NVD-CWE-noinfo
CVE-2024-36066 2024-09-19 05:28 2024-09-13 Show GitHub Exploit DB Packet Storm
313212 7.8 HIGH
Local 		wibu wibukey An issue was discovered in WibuKey64.sys in WIBU-SYSTEMS WibuKey before v6.70 and fixed in v.6.70. An improper bounds check allows crafted packets to cause an arbitrary address write, resulting in ke… CWE-787
 Out-of-bounds Write 		CVE-2024-45181 2024-09-19 05:26 2024-09-13 Show GitHub Exploit DB Packet Storm
313213 6.1 MEDIUM
Network 		discourse calendar Discourse Calendar plugin adds the ability to create a dynamic calendar in the first post of a topic to Discourse. Rendering event names can be susceptible to XSS attacks. This vulnerability only aff… CWE-79
Cross-site Scripting 		CVE-2024-45303 2024-09-19 05:25 2024-09-13 Show GitHub Exploit DB Packet Storm
313214 6.1 MEDIUM
Network 		eclipse glassfish In Eclipse Glassfish versions prior to 7.0.10, a URL redirection vulnerability to untrusted sites existed. This vulnerability is caused by the vulnerability (CVE-2023-41080) in the Apache code includ… CWE-601
Open Redirect 		CVE-2024-8646 2024-09-19 05:20 2024-09-11 Show GitHub Exploit DB Packet Storm
313215 6.5 MEDIUM
Network 		reedos aim-star This vulnerability exists in Reedos aiM-Star version 2.0.1 due to improper access controls on its certain API endpoints. An authenticated remote attacker could exploit this vulnerability by manipulat… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2024-45786 2024-09-19 05:12 2024-09-11 Show GitHub Exploit DB Packet Storm
313216 7.5 HIGH
Network 		reedos aim-star This vulnerability exists in Reedos aiM-Star version 2.0.1 due to missing rate limiting on OTP requests in certain API endpoints. An authenticated remote attacker could exploit this vulnerability by … NVD-CWE-Other
CVE-2024-45788 2024-09-19 04:57 2024-09-11 Show GitHub Exploit DB Packet Storm
313217 4.3 MEDIUM
Network 		reedos aim-star This vulnerability exists in Reedos aiM-Star version 2.0.1 due to improper validation of the ‘mode’ parameter in the API endpoint used during the registration process. An authenticated remote attacke… CWE-354
 Improper Validation of Integrity Check Value 		CVE-2024-45789 2024-09-19 04:55 2024-09-11 Show GitHub Exploit DB Packet Storm
313218 7.8 HIGH
Local 		schneider-electric vijeo_designer_embedded_in_ecostruxure_machine_expert
vijeo_designer 		CWE-269: Improper Privilege Management vulnerability exists that could cause unauthorized access, loss of confidentiality, integrity and availability of the workstation when non-admin authenticated u… NVD-CWE-noinfo
CVE-2024-8306 2024-09-19 04:51 2024-09-12 Show GitHub Exploit DB Packet Storm
313219 6.7 MEDIUM
Local 		dell latitude_5290_2-in-1_firmware
precision_3420_tower_firmware
precision_3620_firmware
wyse_7040_thin_client_firmware
precision_7720_firmware
precision_7520_firmware
precision_5530_2-i… 		Dell BIOS contains an Improper Input Validation vulnerability in an externally developed component. A high privileged attacker with local access could potentially exploit this vulnerability, leading … NVD-CWE-noinfo
CVE-2024-38483 2024-09-19 04:19 2024-08-14 Show GitHub Exploit DB Packet Storm
313220 7.8 HIGH
Local 		adobe audition Audition versions 24.4.1, 23.6.6 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of thi… CWE-787
 Out-of-bounds Write 		CVE-2024-39378 2024-09-19 04:16 2024-09-12 Show GitHub Exploit DB Packet Storm