Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 12:10 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
341 8.1 重要
Network 		Linux Foundation dapr Linux Foundationのdaprにおける複数の脆弱性 New CWE-22
CWE-284
CWE-noinfo
CVE-2026-41491 2026-05-14 10:19 2026-05-8 Show GitHub Exploit DB Packet Storm
342 7.5 重要
Network 		Loren Segal YARD Loren SegalのYARDにおけるパストラバーサルの脆弱性 New CWE-22
パス・トラバーサル 		CVE-2026-41493 2026-05-14 10:19 2026-05-8 Show GitHub Exploit DB Packet Storm
343 3.3
Network 		Kimai project kimai Kimai projectのKimaiにおける認証の欠如に関する脆弱性 New CWE-862
認証の欠如 		CVE-2026-41498 2026-05-14 10:19 2026-05-8 Show GitHub Exploit DB Packet Storm
344 7.4 重要
Network 		go-git project go-git go-git projectのgo-gitにおける認証情報の不十分な保護に関する脆弱性 New CWE-522
認証情報の不十分な保護 		CVE-2026-41506 2026-05-14 10:19 2026-05-8 Show GitHub Exploit DB Packet Storm
345 8.1 重要
Network 		Andreas Kloeckner RELATE Andreas KloecknerのRELATEにおける複数の脆弱性 New CWE-203
CWE-208
CVE-2026-41588 2026-05-14 10:19 2026-05-8 Show GitHub Exploit DB Packet Storm
346 8.8 重要
Network 		NocoBase NocoBase NocoBaseにおけるSQL インジェクションの脆弱性 New CWE-89
SQLインジェクション 		CVE-2026-41640 2026-05-14 10:19 2026-05-7 Show GitHub Exploit DB Packet Storm
347 6.1 警告
Network 		fast-xml-parser project fast-xml-parser Natural Intelligenceのfast-xml-parserにおけるブラインド XPath インジェクションの脆弱性 New CWE-91
ブラインド XPath インジェクション 		CVE-2026-41650 2026-05-14 10:18 2026-05-7 Show GitHub Exploit DB Packet Storm
348 4.4 警告
Local 		Anthropic PBC Claude SDK for TypeScript (anthropic-ai/sdk) Anthropic PBCのClaude SDK for TypeScript (anthropic-ai/sdk)における重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性 New CWE-732
重要なリソースに対する不適切なパーミッションの割り当て 		CVE-2026-41686 2026-05-14 10:18 2026-05-4 Show GitHub Exploit DB Packet Storm
349 8.6 重要
Network 		VMware Spring AI VMwareのSpring AIにおける言語構文の表現に使用される特殊な要素の不適切な無効化に関する脆弱性 New CWE-917
言語構文の表現に使用される特殊な要素の不適切な無効化 		CVE-2026-41705 2026-05-14 10:18 2026-05-9 Show GitHub Exploit DB Packet Storm
350 7.5 重要
Network 		VMware Spring AI VMwareのSpring AIにおける不適切なデフォルトパーミッションに関する脆弱性 New CWE-276
不適切なデフォルトパーミッション 		CVE-2026-41712 2026-05-14 10:18 2026-05-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312311 7.5 HIGH
Network 		draytek vigor3910_firmware Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the sSrvName parameter at service.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted … CWE-120
Classic Buffer Overflow 		CVE-2024-46565 2024-09-25 01:41 2024-09-19 Show GitHub Exploit DB Packet Storm
312312 7.5 HIGH
Network 		draytek vigor3910_firmware Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the sProfileName parameter at fextobj.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a craf… CWE-120
Classic Buffer Overflow 		CVE-2024-46564 2024-09-25 01:41 2024-09-19 Show GitHub Exploit DB Packet Storm
312313 7.5 HIGH
Network 		draytek vigor3910_firmware Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the queryret parameter at v2x00.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted in… CWE-120
Classic Buffer Overflow 		CVE-2024-46561 2024-09-25 01:41 2024-09-19 Show GitHub Exploit DB Packet Storm
312314 7.5 HIGH
Network 		draytek vigor3910_firmware Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the pub_key parameter at v2x00.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted inp… CWE-120
Classic Buffer Overflow 		CVE-2024-46560 2024-09-25 01:41 2024-09-19 Show GitHub Exploit DB Packet Storm
312315 7.5 HIGH
Network 		draytek vigor3910_firmware Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the sBPA_UsrNme parameter at inet15.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafte… CWE-120
Classic Buffer Overflow 		CVE-2024-46559 2024-09-25 01:41 2024-09-19 Show GitHub Exploit DB Packet Storm
312316 7.5 HIGH
Network 		draytek vigor3910_firmware Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the newProname parameter at v2x00.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted … CWE-120
Classic Buffer Overflow 		CVE-2024-46558 2024-09-25 01:41 2024-09-19 Show GitHub Exploit DB Packet Storm
312317 7.5 HIGH
Network 		draytek vigor3910_firmware Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the sProfileName parameter at v2x00.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafte… CWE-120
Classic Buffer Overflow 		CVE-2024-46557 2024-09-25 01:41 2024-09-19 Show GitHub Exploit DB Packet Storm
312318 7.5 HIGH
Network 		draytek vigor3910_firmware Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the sInRCSecret0 parameter at v2x00.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafte… CWE-120
Classic Buffer Overflow 		CVE-2024-46556 2024-09-25 01:41 2024-09-19 Show GitHub Exploit DB Packet Storm
312319 7.5 HIGH
Network 		draytek vigor3910_firmware Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the pb parameter at v2x00.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input. CWE-120
Classic Buffer Overflow 		CVE-2024-46555 2024-09-25 01:41 2024-09-19 Show GitHub Exploit DB Packet Storm
312320 7.5 HIGH
Network 		draytek vigor3910_firmware Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the profname parameter at v2x00.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted in… CWE-120
Classic Buffer Overflow 		CVE-2024-46554 2024-09-25 01:41 2024-09-19 Show GitHub Exploit DB Packet Storm