Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2901	3.5	低 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるレンダリングされたユーザインターフェースレイヤまたはフレームの不適切な制限に関する脆弱性	CWE-1021 レンダリングされたユーザインターフェースレイヤまたはフレームの不適切な制限	CVE-2026-3254	2026-04-27 11:22	2026-04-22	Show	GitHub Exploit DB Packet Storm

2902	9.9	緊急 Network	Linux Foundation	Spinnaker	Linux FoundationのSpinnakerにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-32604	2026-04-27 11:22	2026-04-20	Show	GitHub Exploit DB Packet Storm

2903	9.9	緊急 Network	Linux Foundation	Spinnaker	Linux FoundationのSpinnakerにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-32613	2026-04-27 11:22	2026-04-20	Show	GitHub Exploit DB Packet Storm

2904	7.8	重要 Local	Podman project	podman	Podman projectのpodmanにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-33414	2026-04-27 11:22	2026-04-14	Show	GitHub Exploit DB Packet Storm

2905	6.1	警告 Network	オラクル	Oracle Identity Manager	オラクルのOracle Identity Managerにおける複数の脆弱性	CWE-284 CWE-601	CVE-2026-34283	2026-04-27 11:22	2026-04-21	Show	GitHub Exploit DB Packet Storm

2906	6.1	警告 Network	オラクル	Oracle Business Process Management Suite	オラクルのOracle Business Process Management Suiteにおける複数の脆弱性	CWE-284 CWE-601	CVE-2026-34284	2026-04-27 11:22	2026-04-21	Show	GitHub Exploit DB Packet Storm

2907	8.7	重要 Network	オラクル	Oracle HTTP Server	オラクルのOracle HTTP Serverにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-34291	2026-04-27 11:22	2026-04-21	Show	GitHub Exploit DB Packet Storm

2908	7.2	重要 Network	オラクル	Oracle WebLogic Server	オラクルのOracle WebLogic Serverにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-34292	2026-04-27 11:22	2026-04-21	Show	GitHub Exploit DB Packet Storm

2909	6.5	警告 Network	オラクル	PeopleSoft Enterprise SCM Purchasing	オラクルのPeopleSoft Enterprise SCM Purchasingにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-34295	2026-04-27 11:22	2026-04-21	Show	GitHub Exploit DB Packet Storm

2910	4.3	警告 Network	オラクル	Oracle Agile Product Lifecycle Management for Process	オラクルのOracle Agile Product Lifecycle Management for Processにおける情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2026-34296	2026-04-27 11:22	2026-04-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
451	-	-	-	An out-of-bounds read in power management firmware by a malicious local attacker with low privileges could potentially lead to a partial loss of confidentiality and availability. New	CWE-125 Out-of-bounds Read	CVE-2025-0044	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

452	-	-	-	An out of bounds write within the AMD Platform Management Framework (PMF) could allow an attacker to execute arbitrary code at an elevated privilege level potentially leading to loss of confidentiali… New	CWE-787 Out-of-bounds Write	CVE-2025-29935	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

453	-	-	-	Improper input validation within the AMD Platform Management Framework (PMF) could allow an attacker to unmap arbitrary memory pages potentially impacting integrity and availability, or allowing priv… New	CWE-20 Improper Input Validation	CVE-2025-29936	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

454	-	-	-	An out of bounds read within the AMD Platform Management Framework (PMF) could allow an attacker to trigger a read of an arbitrary memory location potentially resulting in loss of availability or con… New	CWE-125 Out-of-bounds Read	CVE-2025-29937	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

455	-	-	-	An unchecked return value within the AMD Platform Management Framework (PMF) could allow an attacker to write to an arbitrary memory address resulting in denial of service or arbitrary code execution. New	CWE-252 Unchecked Return Value	CVE-2025-29938	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

456	-	-	-	A buffer overflow vulnerability within AMD Sensor Fusion Hub Driver can allow a local attacker to write out of bounds, potentially resulting in denial of service or crash New	CWE-120 Classic Buffer Overflow	CVE-2025-29944	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

457	-	-	-	Use of uninitialized resource within the AMD Platform Management Framework (PMF) could allow an attacker to read a uninitialized kernel memory resulting in loss of confidentiality or availability. New	CWE-908 Use of Uninitialized Resource	CVE-2025-48513	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

458	-	-	-	Insecure default configuration state of DDR5 memory module by AGESA Bootloader Firmware could allow an attacker with local user privilege to abuse the unprotected PMIC interface to create a permanent… New	CWE-276 Incorrect Default Permissions	CVE-2025-48516	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

459	-	-	-	Improper handling of insufficient privileges in the AMD Secure Processor (ASP) could allow an attacker to provide an input value to a function without sufficient privileges and successfully write dat… New	CWE-274 Improper Handling of Insufficient Privileges	CVE-2025-54511	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

460	-	-	-	Out of bounds write in AMD AMDGV_CMD_GET_DIAG_DATA ioctl handler could allow a local user to escalate privileges via remote code execution. New	CWE-787 Out-of-bounds Write	CVE-2025-54517	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm