Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2811	5.8	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-35376	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

2812	8.8	重要 Network	DBitNet	N300 T1 Pro ファームウェア	DBitNetのN300 T1 Pro ファームウェアにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-36956	2026-05-7 11:26	2026-04-30	Show	GitHub Exploit DB Packet Storm

2813	7.5	重要 Network	DBitNet	N300 T1 Pro ファームウェア	DBitNetのN300 T1 Pro ファームウェアにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-36957	2026-05-7 11:26	2026-04-30	Show	GitHub Exploit DB Packet Storm

2814	4.4	警告 Local	Absolute Software	secure access	Absolute Softwareのsecure accessにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-40949	2026-05-7 11:26	2026-04-30	Show	GitHub Exploit DB Packet Storm

2815	6.5	警告 Network	Absolute Software	secure access	Absolute Softwareのsecure accessにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-40950	2026-05-7 11:26	2026-04-30	Show	GitHub Exploit DB Packet Storm

2816	5.5	警告 Local	Absolute Software	secure access	Absolute Softwareのsecure accessにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-40951	2026-05-7 11:26	2026-04-30	Show	GitHub Exploit DB Packet Storm

2817	9.8	緊急 Network	flowiseai	flowise	flowiseaiのflowiseにおけるデータクエリロジックの特殊要素の不適切な中立化に関する脆弱性	CWE-943 データクエリロジックの特殊要素の不適切な中立化	CVE-2026-41274	2026-05-7 11:26	2026-04-23	Show	GitHub Exploit DB Packet Storm

2818	7.5	重要 Network	JetBrains	IntelliJ IDEA	JetBrainsのIntelliJ IDEAにおけるリンク解釈に関する脆弱性	CWE-59 リンク解釈の問題	CVE-2026-41882	2026-05-7 11:26	2026-04-30	Show	GitHub Exploit DB Packet Storm

2819	9.8	緊急 Network	asrmicro	asr1803 ファームウェア	asrmicroのasr1803 ファームウェアにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-42799	2026-05-7 11:25	2026-04-30	Show	GitHub Exploit DB Packet Storm

2820	8.5	重要 Network	OpenStack	Openstack Keystone	OpenStackのOpenstack Keystoneにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-43001	2026-05-7 11:25	2026-05-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313871	8.1	HIGH Network	zohocorp	manageengine_exchange_reporter_plus	Zohocorp ManageEngine Exchange Reporter Plus versions before 5715 are vulnerable to SQL Injection in the reports module.	CWE-89 SQL Injection	CVE-2024-6204	2024-09-20 00:41	2024-08-31	Show	GitHub Exploit DB Packet Storm

313872	8.1	HIGH Network	master-nan	sweet-cms	A vulnerability was found in master-nan Sweet-CMS up to 5f441e022b8876f07cde709c77b5be6d2f262e3f. It has been rated as problematic. This issue affects the function LogHandler of the file middleware/l…	CWE-117 Improper Output Neutralization for Logs	CVE-2024-8334	2024-09-20 00:39	2024-08-30	Show	GitHub Exploit DB Packet Storm

313873	9.8	CRITICAL Network	openrapid	rapidcms	A vulnerability classified as critical has been found in OpenRapid RapidCMS up to 1.3.1. Affected is an unknown function of the file /resource/runlogon.php. The manipulation of the argument username …	CWE-89 SQL Injection	CVE-2024-8335	2024-09-20 00:31	2024-08-30	Show	GitHub Exploit DB Packet Storm

313874	8.1	HIGH Network	eclipse	eclipse_dataspace_components	In Eclipse Dataspace Components, from version 0.5.0 and before version 0.9.0, the ConsumerPullTransferTokenValidationApiController does not check for token validity (expiry, not-before, issuance date…	CWE-287 Improper Authentication	CVE-2024-8642	2024-09-20 00:18	2024-09-11	Show	GitHub Exploit DB Packet Storm

313875	7.5	HIGH Network	hoverfly	hoverfly	Hoverfly is a lightweight service virtualization/ API simulation / API mocking tool for developers and testers. The `/api/v2/simulation` POST handler allows users to create new simulation views from …	CWE-22 Path Traversal	CVE-2024-45388	2024-09-20 00:18	2024-09-3	Show	GitHub Exploit DB Packet Storm

313876	4.6	MEDIUM Physics	idec	kit-fc6a-24-kc_firmware kit-fc6a-24-pc_firmware kit-fc6a-24-ra_firmware kit-fc6a-24-ra-hg1g_firmware kit-fc6a-24-ra-hg2g-5tn_firmware kit-fc6a-24-ra-hg2g-5tt_firmware kit-fc6a-24-rc…	Cleartext transmission of sensitive information vulnerability exists in multiple IDEC PLCs. If an attacker sends a specific command to PLC's serial communication port, user credentials may be obtaine…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2024-41927	2024-09-20 00:10	2024-09-4	Show	GitHub Exploit DB Packet Storm

313877	7.8	HIGH Local	adobe	acrobat acrobat_dc acrobat_reader acrobat_reader_dc	Acrobat Reader versions 24.002.21005, 24.001.30159, 20.005.30655, 24.003.20054 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context …	CWE-416 Use After Free	CVE-2024-41869	2024-09-20 00:09	2024-09-13	Show	GitHub Exploit DB Packet Storm

313878	7.5	HIGH Network	fujitsu	ipcom_ve2_ls_100_firmware ipcom_ve2_ls_200_firmware ipcom_ve2_ls_220_firmware ipcom_ve2_ls_plus_100_firmware ipcom_ve2_ls_plus_200_firmware ipcom_ve2_ls_plus_220_firmware ipcom_ve2_…	Observable timing discrepancy issue exists in IPCOM EX2 Series V01L02NF0001 to V01L06NF0401, V01L20NF0001 to V01L20NF0401, V02L20NF0001 to V02L21NF0301, and IPCOM VE2 Series V01L04NF0001 to V01L06NF0…	CWE-203 Information Exposure Through Discrepancy	CVE-2024-39921	2024-09-19 23:59	2024-09-4	Show	GitHub Exploit DB Packet Storm

313879	7.8	HIGH Local	adobe	acrobat acrobat_dc acrobat_reader acrobat_reader_dc	Acrobat Reader versions 24.002.21005, 24.001.30159, 20.005.30655, 24.003.20054 and earlier are affected by a Type Confusion vulnerability that could result in arbitrary code execution in the context …	CWE-843 Type Confusion	CVE-2024-45112	2024-09-19 23:56	2024-09-13	Show	GitHub Exploit DB Packet Storm

313880	7.5	HIGH Network	utarit	soliclub	Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Utarit Information SoliClub allows Retrieve Embedded Sensitive Data.This issue affects SoliClub: before 4.4.0 for iOS, befo…	NVD-CWE-noinfo	CVE-2024-3305	2024-09-19 23:44	2024-09-12	Show	GitHub Exploit DB Packet Storm