Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251	7.5	重要 Network	アップル	visionos iOS iPadOS	アップルのiPadOS等の複数製品における認可されていない行為者への個人情報の漏えいに関する脆弱性 New	CWE-359 認可されていないアクターへの個人情報の漏えい	CVE-2026-28906	2026-05-15 10:52	2026-05-11	Show	GitHub Exploit DB Packet Storm

252	3.3	低 Local		-	アップルのmacOSにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-28910	2026-05-15 10:52	2026-05-11	Show	GitHub Exploit DB Packet Storm

253	4.3	警告 Network	アップル	tvOS iOS watchOS visionos iPadOS	アップルのiPadOS等の複数製品における入力確認に関する脆弱性 New	CWE-20 不適切な入力確認	CVE-2026-28917	2026-05-15 10:52	2026-05-11	Show	GitHub Exploit DB Packet Storm

254	6.5	警告 Network	アップル	tvOS iOS watchOS visionos iPadOS	アップルのiPadOS等の複数製品における複数の脆弱性 New	CWE-125 CWE-787	CVE-2026-28918	2026-05-15 10:52	2026-05-11	Show	GitHub Exploit DB Packet Storm

255	-	-	クアルコム	(複数の製品)	Intel製品に対するアップデート（2026年5月） New	-	-	2026-05-14 17:11	2026-05-13	Show	GitHub Exploit DB Packet Storm

256	-	-	（複数のベンダ）	（複数の製品）	CISA ICS Advisory / ICS Medical Advisory（2026年05月12日） New	-	-	2026-05-14 17:11	2026-05-13	Show	GitHub Exploit DB Packet Storm

257	-	-	シーメンス	(複数の製品)	Siemens製品に対するアップデート（2026年5月） New	-	CVE-2024-3596 CVE-2026-27446	2026-05-14 17:11	2026-05-13	Show	GitHub Exploit DB Packet Storm

258	7.8	重要 Local	wps キングソフト株式会社	WPS Office2 WPS Cloud WPS Cloud Pro KINGSOFT PDF Pro	WPS Officeで使用される名前付きパイプに対するアクセス制御不備の脆弱性 New	CWE-Other その他	CVE-2018-6400	2026-05-14 12:07	2026-05-14	Show	GitHub Exploit DB Packet Storm

259	6.5	警告 Network	Augmentt Technology	Augmentt	Augmentt TechnologyのAugmenttにおけるユーザ制御の鍵による認証回避に関する脆弱性 New	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-6355	2026-05-14 10:23	2026-04-22	Show	GitHub Exploit DB Packet Storm

260	9.6	緊急 Network	Augmentt Technology	Augmentt	Augmentt TechnologyのAugmenttにおけるアクセス制御の不十分な粒度に関する脆弱性 New	CWE-1220 アクセス制御の不十分な粒度	CVE-2026-6356	2026-05-14 10:23	2026-04-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312131	-	-	-	In the Linux kernel, the following vulnerability has been resolved: media: vivid: fix compose size exceed boundary syzkaller found a bug: BUG: unable to handle page fault for address: ffffc9000a3…	-	CVE-2022-48945	2024-09-26 22:32	2024-09-23	Show	GitHub Exploit DB Packet Storm

312132	-	-	-	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in ElementsKit ElementsKit Pro allows PHP Local File Inclusion.This issue affects ElementsKit Pro: from n/…	CWE-22 Path Traversal	CVE-2024-43996	2024-09-26 22:32	2024-09-23	Show	GitHub Exploit DB Packet Storm

312133	-	-	-	A stored cross-site scripting (XSS) vulnerability exists in NetBox 4.1.0 within the "Configuration History" feature of the "Admin" panel via a /core/config-revisions/ Add action. An authenticated use…	-	CVE-2024-47226	2024-09-26 22:32	2024-09-22	Show	GitHub Exploit DB Packet Storm

312134	-	-	-	An issue was discovered in the WEBrick toolkit through 1.8.1 for Ruby. It allows HTTP request smuggling by providing both a Content-Length header and a Transfer-Encoding header, e.g., "GET /admin HTT…	-	CVE-2024-47220	2024-09-26 22:32	2024-09-22	Show	GitHub Exploit DB Packet Storm

312135	-	-	-	An issue was discovered in vesoft NebulaGraph through 3.8.0. It allows shell command injection.	-	CVE-2024-47219	2024-09-26 22:32	2024-09-22	Show	GitHub Exploit DB Packet Storm

312136	-	-	-	An issue was discovered in vesoft NebulaGraph through 3.8.0. It allows bypassing authentication.	-	CVE-2024-47218	2024-09-26 22:32	2024-09-22	Show	GitHub Exploit DB Packet Storm

312137	-	-	-	Gladys Assistant before 4.45.1 allows Privilege Escalation (a user changing their own role) because req.body.role can be used in updateMySelf in server/api/controllers/user.controller.js.	-	CVE-2024-47210	2024-09-26 22:32	2024-09-22	Show	GitHub Exploit DB Packet Storm

312138	-	-	-	eNMS up to 4.7.1 is vulnerable to Directory Traversal via download/folder.	-	CVE-2024-46649	2024-09-26 22:32	2024-09-21	Show	GitHub Exploit DB Packet Storm

312139	-	-	-	eNMS 4.4.0 to 4.7.1 is vulnerable to Directory Traversal via scan_folder.	-	CVE-2024-46648	2024-09-26 22:32	2024-09-21	Show	GitHub Exploit DB Packet Storm

312140	-	-	-	eNMS 4.4.0 to 4.7.1 is vulnerable to Directory Traversal via upload_files.	-	CVE-2024-46647	2024-09-26 22:32	2024-09-21	Show	GitHub Exploit DB Packet Storm