Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228191 10 危険 tftp - Windows 上で稼動している TFTP Server におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-2161 2012-12-20 18:52 2008-05-12 Show GitHub Exploit DB Packet Storm
228192 7.5 危険 wordnet - Wordnet の searchwn におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-2149 2012-12-20 18:52 2008-05-12 Show GitHub Exploit DB Packet Storm
228193 4.6 警告 VideoLAN - VideoLAN VLC における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2147 2012-12-20 18:52 2008-05-12 Show GitHub Exploit DB Packet Storm
228194 7.5 危険 WordPress.org - Wordpress の wp-includes/vars.php における特定のページに対するアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2146 2012-12-20 18:52 2008-05-12 Show GitHub Exploit DB Packet Storm
228195 2.6 注意 rPath, Inc - rPath Appliance Platform Agent の rootpw プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-2140 2012-12-20 18:52 2008-04-25 Show GitHub Exploit DB Packet Storm
228196 6.5 警告 rPath, Inc - rPath Appliance Platform Agent の rootpw プラグインにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2139 2012-12-20 18:52 2008-04-25 Show GitHub Exploit DB Packet Storm
228197 7.5 危険 visualshapers - VisualShapers ezContents における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2135 2012-12-20 18:52 2008-05-9 Show GitHub Exploit DB Packet Storm
228198 6.8 警告 tru-zone - Tru-Zone Nuke ET の Journal モジュールにおける任意のユーザアカウントへのアクセス権を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2134 2012-12-20 18:52 2008-05-9 Show GitHub Exploit DB Packet Storm
228199 4.3 警告 tru-zone - Tru-Zone Nuke ET の Journal モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2133 2012-12-20 18:52 2008-05-9 Show GitHub Exploit DB Packet Storm
228200 7.5 危険 systementor - Systementor PostcardMentor の step1.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2132 2012-12-20 18:52 2008-05-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2841 8.1 HIGH
Adjacent 		- - In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: fix potential out-of-bounds read in iwl_mvm_nd_match_info_handler() The memcpy function assumes the dynamic a… - CVE-2026-31779 2026-05-3 16:16 2026-05-2 Show GitHub Exploit DB Packet Storm
2842 8.8 HIGH
Adjacent 		- - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: SMP: derive legacy responder STK authentication from MITM state The legacy responder path in smp_random() currently la… - CVE-2026-31773 2026-05-3 16:16 2026-05-2 Show GitHub Exploit DB Packet Storm
2843 7.8 HIGH
Local 		- - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sync: fix stack buffer overflow in hci_le_big_create_sync hci_le_big_create_sync() uses DEFINE_FLEX to allocate a … - CVE-2026-31772 2026-05-3 16:16 2026-05-2 Show GitHub Exploit DB Packet Storm
2844 8.1 HIGH
Adjacent 		- - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_event: move wake reason storage into validated event handlers hci_store_wake_reason() is called from hci_event_pac… - CVE-2026-31771 2026-05-3 16:16 2026-05-2 Show GitHub Exploit DB Packet Storm
2845 7.8 HIGH
Local 		- - In the Linux kernel, the following vulnerability has been resolved: gpib: fix use-after-free in IO ioctl handlers The IBRD, IBWRT, IBCMD, and IBWAIT ioctl handlers use a gpib_descriptor pointer aft… - CVE-2026-31769 2026-05-3 16:16 2026-05-2 Show GitHub Exploit DB Packet Storm
2846 7.8 HIGH
Local 		- - In the Linux kernel, the following vulnerability has been resolved: iio: adc: ti-adc161s626: use DMA-safe memory for spi_read() Add a DMA-safe buffer and use it for spi_read() instead of a stack me… - CVE-2026-31768 2026-05-3 16:16 2026-05-2 Show GitHub Exploit DB Packet Storm
2847 7.1 HIGH
Local 		- - In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: validate doorbell_offset in user queue creation amdgpu_userq_get_doorbell_index() passes the user-provided doorbell_o… - CVE-2026-31766 2026-05-3 16:16 2026-05-2 Show GitHub Exploit DB Packet Storm
2848 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. - CVE-2026-6481 2026-05-3 08:16 2026-05-3 Show GitHub Exploit DB Packet Storm
2849 - - - Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2025-67968. Reason: This candidate is a reservation duplicate of CVE-2025-67968. Notes: All CVE users should reference … - CVE-2025-12993 2026-05-2 06:16 2026-05-2 Show GitHub Exploit DB Packet Storm
2850 5.6 MEDIUM
Network 		vllm vllm A vulnerability was found in vllm up to 0.19.0. The affected element is the function has_mamba_layers of the file vllm/v1/kv_cache_interface.py of the component KV Block Handler. Performing a manipul… CWE-908
 Use of Uninitialized Resource 		CVE-2026-7141 2026-05-2 05:30 2026-04-28 Show GitHub Exploit DB Packet Storm