Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2811	8.8	重要 Network	マイクロソフト	Microsoft SharePoint Server	Microsoft SharePoint Server のリモートでコードが実行される脆弱性	CWE-1220 アクセス制御の不十分な粒度	CVE-2026-40365	2026-05-15 11:01	2026-05-12	Show	GitHub Exploit DB Packet Storm

2812	8	重要 Network	マイクロソフト	Microsoft SharePoint Server	Microsoft SharePoint Server のリモートでコードが実行される脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-40368	2026-05-15 11:01	2026-05-12	Show	GitHub Exploit DB Packet Storm

2813	5.5	警告 Local	jqlang	jq	jqlangのjqにおける再帰制御に関する脆弱性	CWE-674 不適切な再帰制御	CVE-2026-40612	2026-05-15 11:01	2026-05-11	Show	GitHub Exploit DB Packet Storm

2814	7.5	重要 Network	PHPOffice	PhpSpreadsheet	PHPOfficeのPhpSpreadsheetにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-40863	2026-05-15 11:01	2026-05-12	Show	GitHub Exploit DB Packet Storm

2815	5.5	警告 Local	jqlang	jq	jqlangのjqにおけるNULL バイトまたは NULL キャラクタの無害化に関する脆弱性	CWE-158 NULL バイトまたは NULL キャラクタの不適切な無害化	CVE-2026-41256	2026-05-15 11:01	2026-05-11	Show	GitHub Exploit DB Packet Storm

2816	5.5	警告 Local	jqlang	jq	jqlangのjqにおける複数の脆弱性	CWE-190 CWE-787	CVE-2026-41257	2026-05-15 11:01	2026-05-11	Show	GitHub Exploit DB Packet Storm

2817	5.4	警告 Network	Langfuse GmbH	Langfuse	Langfuse GmbHのLangfuseにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-41487	2026-05-15 11:00	2026-05-8	Show	GitHub Exploit DB Packet Storm

2818	9.8	緊急 Network	Nhost	Nhost/auth	NhostのNhost/authにおける認証に関する脆弱性	CWE-287 CWE-noinfo	CVE-2026-41574	2026-05-15 11:00	2026-05-8	Show	GitHub Exploit DB Packet Storm

2819	7.5	重要 Network	Web Technologies	Change Detection	Web TechnologiesのChange DetectionにおけるXML 外部エンティティの脆弱性	CWE-611 XML 外部エンティティ参照の不適切な制限	CVE-2026-41895	2026-05-15 11:00	2026-05-12	Show	GitHub Exploit DB Packet Storm

2820	9.8	緊急 Network	レッドハット GNU Project	Red Hat OpenShift Container Platform Red Hat Hardened Images GnuTLS Red Hat Enterprise Linux	GNU Project等の複数ベンダの製品におけるNull バイト相互作用エラー (Poison Null Byte) の脆弱性	CWE-626 Null バイト相互作用エラー (Poison Null Byte)	CVE-2026-42010	2026-05-15 11:00	2026-05-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312091	-	-	-	Improper Access Control in some Thunderbolt(TM) Share software before version 1.0.49.9 may allow an authenticated user to potentially enable escalation of privilege via local access.	CWE-284 Improper Access Control	CVE-2024-34022	2024-11-15 23:00	2024-11-14	Show	GitHub Exploit DB Packet Storm

312092	-	-	-	Improper input validation for some Intel(R) PROSet/Wireless WiFi software for Windows before version 23.60 may allow an unauthenticated user to potentially enable denial of service via network access.	CWE-20 Improper Input Validation	CVE-2024-33624	2024-11-15 23:00	2024-11-14	Show	GitHub Exploit DB Packet Storm

312093	-	-	-	Insufficient control flow management in some Intel(R) QAT Engine for OpenSSL software before version v1.6.1 may allow information disclosure via network access.	CWE-691 Insufficient Control Flow Management	CVE-2024-33617	2024-11-15 23:00	2024-11-14	Show	GitHub Exploit DB Packet Storm

312094	-	-	-	Improper input validation for some Intel(R) PROSet/Wireless WiFi software for Windows before version 23.60 may allow a privileged user to potentially enable denial of service via local access.	CWE-20 Improper Input Validation	CVE-2024-33611	2024-11-15 23:00	2024-11-14	Show	GitHub Exploit DB Packet Storm

312095	-	-	-	Out-of-bounds read for some OpenCL(TM) software may allow an authenticated user to potentially enable denial of service via local access.	CWE-125 Out-of-bounds Read	CVE-2024-32667	2024-11-15 23:00	2024-11-14	Show	GitHub Exploit DB Packet Storm

312096	-	-	-	Improper access control for some Intel(R) EMA software before version 1.13.1.0 may allow an authenticated user to potentially enable escalation of privilege via local access.	CWE-284 Improper Access Control	CVE-2024-32483	2024-11-15 23:00	2024-11-14	Show	GitHub Exploit DB Packet Storm

312097	-	-	-	Improper input validation in the Intel(R) Distribution of OpenVINO(TM) Model Server software before version 2024.0 may allow an unauthenticated user to potentially enable denial of service via adjace…	CWE-20 Improper Input Validation	CVE-2024-32048	2024-11-15 23:00	2024-11-14	Show	GitHub Exploit DB Packet Storm

312098	-	-	-	Improper access control for some Intel(R) Arc(TM) Pro Graphics for Windows drivers before version 31.0.101.5319 may allow an authenticated user to potentially enable escalation of privilege via adjac…	CWE-284 Improper Access Control	CVE-2024-32044	2024-11-15 23:00	2024-11-14	Show	GitHub Exploit DB Packet Storm

312099	-	-	-	Uncontrolled search path in some Intel(R) High Level Synthesis Compiler software for Intel(R) Quartus(R) Prime Pro Edition Software before version 24.1 may allow an authenticated user to potentially …	CWE-427 Uncontrolled Search Path Element	CVE-2024-31407	2024-11-15 23:00	2024-11-14	Show	GitHub Exploit DB Packet Storm

312100	-	-	-	Improper input validation in UEFI firmware in some Intel(R) Server Board S2600BP Family may allow a privileged user to potentially enable escalation of privilege via local access.	CWE-20 Improper Input Validation	CVE-2024-31158	2024-11-15 23:00	2024-11-14	Show	GitHub Exploit DB Packet Storm