Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
41	7.5	重要 Network	MediaWiki	MediaWiki	MediaWikiにおける情報漏えいに関する脆弱性 New	CWE-200 CWE-noinfo	CVE-2026-34088	2026-05-18 12:17	2026-05-11	Show	GitHub Exploit DB Packet Storm

42	7.5	重要 Network	MediaWiki	Checkuser	MediaWikiのCheckuserにおける情報漏えいに関する脆弱性 New	CWE-200 情報漏えい	CVE-2026-34090	2026-05-18 12:17	2026-05-11	Show	GitHub Exploit DB Packet Storm

43	7.5	重要 Network	MediaWiki	MediaWiki	MediaWikiにおける情報漏えいに関する脆弱性 New	CWE-200 CWE-noinfo	CVE-2026-34091	2026-05-18 12:17	2026-05-11	Show	GitHub Exploit DB Packet Storm

44	7.5	重要 Network	MediaWiki	MediaWiki	MediaWikiにおける情報漏えいに関する脆弱性 New	CWE-200 CWE-noinfo	CVE-2026-34092	2026-05-18 12:17	2026-05-11	Show	GitHub Exploit DB Packet Storm

45	8.8	重要 Adjacent	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Microsoft Message Queuing (MSMQ) のリモートでコードが実行される脆弱性 New	CWE-122 ヒープオーバーフロー	CVE-2026-34329	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

46	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Win32k の特権の昇格の脆弱性 New	CWE-190 CWE-416	CVE-2026-34330	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

47	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Win32k の特権の昇格の脆弱性 New	CWE-362 CWE-416	CVE-2026-34331	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

48	8	重要 Network	マイクロソフト	Microsoft Windows Server 2025	Windows カーネルモードドライバーのリモートでコードが実行される脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2026-34332	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

49	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows Win32k の特権の昇格の脆弱性 New	CWE-190 CWE-416	CVE-2026-34333	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

50	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows TCP/IP の特権昇格の脆弱性 New	CWE-362 競合状態	CVE-2026-34334	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311861	7.2	HIGH Network	cisco	unified_computing_system	A vulnerability in the Redfish API of Cisco UCS B-Series, Cisco UCS Managed C-Series, and Cisco UCS X-Series Servers could allow an authenticated, remote attacker with administrative privileges to pe…	CWE-77 Command Injection	CVE-2024-20365	2024-10-8 23:28	2024-10-3	Show	GitHub Exploit DB Packet Storm

311862	6.1	MEDIUM Network	sulu	sulu	Sulu is a PHP content management system. This vulnerability allows an attacker to inject arbitrary HTML/JavaScript code through the media download URL in Sulu CMS. It affects the SuluMediaBundle comp…	CWE-79 Cross-site Scripting	CVE-2024-47617	2024-10-8 23:23	2024-10-4	Show	GitHub Exploit DB Packet Storm

311863	5.9	MEDIUM Network	cisco	nexus_dashboard_orchestrator	A vulnerability in the SSL/TLS implementation of Cisco Nexus Dashboard Orchestrator (NDO) could allow an unauthenticated, remote attacker to intercept sensitive information from an affected device.&n…	CWE-295 Improper Certificate Validation	CVE-2024-20385	2024-10-8 23:22	2024-10-3	Show	GitHub Exploit DB Packet Storm

311864	7.5	HIGH Network	hypestudio	social_web_suite	The Social Web Suite – Social Media Auto Post, Social Media Auto Publish plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 4.1.11 via the download_log fu…	CWE-22 Path Traversal	CVE-2024-8352	2024-10-8 23:17	2024-10-3	Show	GitHub Exploit DB Packet Storm

311865	8.8	HIGH Network	cisco	nexus_dashboard_fabric_controller	A vulnerability in the REST API and web UI of Cisco Nexus Dashboard Fabric Controller (NDFC) could allow an authenticated, low-privileged, remote attacker to perform a command injection attack agains…	CWE-77 Command Injection	CVE-2024-20432	2024-10-8 23:10	2024-10-3	Show	GitHub Exploit DB Packet Storm

311866	5.4	MEDIUM Network	cisco	nexus_dashboard nexus_dashboard_fabric_controller	A vulnerability in the REST API endpoints of Cisco NDFC could allow an authenticated, low-privileged, remote attacker to read or write files on an affected device. This vulnerability exists becaus…	CWE-862 Missing Authorization	CVE-2024-20438	2024-10-8 22:54	2024-10-3	Show	GitHub Exploit DB Packet Storm

311867	9.1	CRITICAL Network	cisco	rv042_firmware rv042g_firmware rv320_firmware rv325_firmware	A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to execute arb…	CWE-787 Out-of-bounds Write	CVE-2024-20521	2024-10-8 22:50	2024-10-3	Show	GitHub Exploit DB Packet Storm

311868	9.1	CRITICAL Network	cisco	rv042_firmware rv042g_firmware rv320_firmware rv325_firmware	A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to execute arb…	CWE-787 Out-of-bounds Write	CVE-2024-20520	2024-10-8 22:50	2024-10-3	Show	GitHub Exploit DB Packet Storm

311869	9.1	CRITICAL Network	cisco	rv042_firmware rv042g_firmware rv320_firmware rv325_firmware	A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to execute arb…	CWE-787 Out-of-bounds Write	CVE-2024-20519	2024-10-8 22:50	2024-10-3	Show	GitHub Exploit DB Packet Storm

311870	9.1	CRITICAL Network	cisco	rv042_firmware rv042g_firmware rv320_firmware rv325_firmware	A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to execute arb…	CWE-787 Out-of-bounds Write	CVE-2024-20518	2024-10-8 22:50	2024-10-3	Show	GitHub Exploit DB Packet Storm