Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
245001 4.3 警告 bluesky - v2.ocx の BlueSkychat ActiveX コントロールにおけるヒープベースのバッファオーバーフローの脆弱性 - CVE-2007-4145 2012-06-26 15:54 2007-08-3 Show GitHub Exploit DB Packet Storm
245002 7.5 危険 firestorm technologies - Joomla! の gmaps コンポーネントにおける SQL インジェクションの脆弱性 - CVE-2007-4128 2012-06-26 15:54 2007-08-1 Show GitHub Exploit DB Packet Storm
245003 10 危険 e-commerce solutions - E-Commerce Scripts Shopping Cart Script の admin.aspx における SQL インジェクションの脆弱性 - CVE-2007-4121 2012-06-26 15:54 2007-08-1 Show GitHub Exploit DB Packet Storm
245004 7.5 危険 berthanas ziyaretci - Berthanas Ziyaretci Defteri 2.0 の yonetici.asp における SQL インジェクションの脆弱性 - CVE-2007-4119 2012-06-26 15:54 2007-08-1 Show GitHub Exploit DB Packet Storm
245005 3.5 注意 awbs - AWBS における他の専用サーバの設定データを取得される脆弱性 - CVE-2007-4113 2012-06-26 15:54 2007-07-31 Show GitHub Exploit DB Packet Storm
245006 6.8 警告 awbs - AWBS における SQL インジェクションの脆弱性 - CVE-2007-4112 2012-06-26 15:54 2007-07-31 Show GitHub Exploit DB Packet Storm
245007 6.8 警告 codewidgets - Real Estate listing website アプリケーションテンプレートのログインスクリプトにおける SQL インジェクションの脆弱性 - CVE-2007-4111 2012-06-26 15:54 2007-07-31 Show GitHub Exploit DB Packet Storm
245008 7.5 危険 codewidgets - Message Board / Threaded Discussion Forum Application Template の sign_in.aspx における SQL インジェクションの脆弱性 - CVE-2007-4110 2012-06-26 15:54 2007-07-31 Show GitHub Exploit DB Packet Storm
245009 7.5 危険 codewidgets - Online Store Application Template の sign_in.aspx における SQL インジェクションの脆弱性 - CVE-2007-4109 2012-06-26 15:54 2007-07-31 Show GitHub Exploit DB Packet Storm
245010 7.5 危険 codewidgets - Online Event Registration Template の sign_in.aspx における SQL インジェクションの脆弱性 - CVE-2007-4108 2012-06-26 15:54 2007-07-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
451 - - - An out-of-bounds read in power management firmware by a malicious local attacker with low privileges could potentially lead to a partial loss of confidentiality and availability. New CWE-125
Out-of-bounds Read 		CVE-2025-0044 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
452 - - - An out of bounds write within the AMD Platform Management Framework (PMF) could allow an attacker to execute arbitrary code at an elevated privilege level potentially leading to loss of confidentiali… New CWE-787
 Out-of-bounds Write 		CVE-2025-29935 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
453 - - - Improper input validation within the AMD Platform Management Framework (PMF) could allow an attacker to unmap arbitrary memory pages potentially impacting integrity and availability, or allowing priv… New CWE-20
 Improper Input Validation  		CVE-2025-29936 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
454 - - - An out of bounds read within the AMD Platform Management Framework (PMF) could allow an attacker to trigger a read of an arbitrary memory location potentially resulting in loss of availability or con… New CWE-125
Out-of-bounds Read 		CVE-2025-29937 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
455 - - - An unchecked return value within the AMD Platform Management Framework (PMF) could allow an attacker to write to an arbitrary memory address resulting in denial of service or arbitrary code execution. New CWE-252
 Unchecked Return Value 		CVE-2025-29938 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
456 - - - A buffer overflow vulnerability within AMD Sensor Fusion Hub Driver can allow a local attacker to write out of bounds, potentially resulting in denial of service or crash New CWE-120
Classic Buffer Overflow 		CVE-2025-29944 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
457 - - - Use of uninitialized resource within the AMD Platform Management Framework (PMF) could allow an attacker to read a uninitialized kernel memory resulting in loss of confidentiality or availability. New CWE-908
 Use of Uninitialized Resource 		CVE-2025-48513 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
458 - - - Insecure default configuration state of DDR5 memory module by AGESA Bootloader Firmware could allow an attacker with local user privilege to abuse the unprotected PMIC interface to create a permanent… New CWE-276
Incorrect Default Permissions  		CVE-2025-48516 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
459 - - - Improper handling of insufficient privileges in the AMD Secure Processor (ASP) could allow an attacker to provide an input value to a function without sufficient privileges and successfully write dat… New CWE-274
 Improper Handling of Insufficient Privileges 		CVE-2025-54511 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
460 - - - Out of bounds write in AMD AMDGV_CMD_GET_DIAG_DATA ioctl handler could allow a local user to escalate privileges via remote code execution. New CWE-787
 Out-of-bounds Write 		CVE-2025-54517 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm