Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
521 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-43285 2026-05-18 12:13 2026-05-8 Show GitHub Exploit DB Packet Storm
522 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-43290 2026-05-18 12:13 2026-05-8 Show GitHub Exploit DB Packet Storm
523 8.3 重要
Adjacent 		Linux Linux Kernel LinuxのLinux Kernelにおける初期化されていないリソースの使用に関する脆弱性 CWE-908
初期化されていないリソースの使用 		CVE-2026-43291 2026-05-18 12:13 2026-05-8 Show GitHub Exploit DB Packet Storm
524 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-43292 2026-05-18 12:13 2026-05-8 Show GitHub Exploit DB Packet Storm
525 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-43293 2026-05-18 12:13 2026-05-8 Show GitHub Exploit DB Packet Storm
526 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-43294 2026-05-18 12:13 2026-05-8 Show GitHub Exploit DB Packet Storm
527 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-43295 2026-05-18 12:13 2026-05-8 Show GitHub Exploit DB Packet Storm
528 3.7
Network 		Apache Software Foundation Apache Tomcat Apache Software FoundationのApache Tomcatにおけるタイミングの違いに起因する情報漏えいに関する脆弱性 CWE-208
タイミングの違いに起因する情報漏えい 		CVE-2026-43514 2026-05-18 12:13 2026-05-12 Show GitHub Exploit DB Packet Storm
529 7.5 重要
Network 		- アップルのmacOSにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-43652 2026-05-18 12:13 2026-05-11 Show GitHub Exploit DB Packet Storm
530 7.5 重要
Network 		アップル visionos
watchOS
iOS
tvOS
iPadOS 		アップルのiPadOS等の複数製品における認可されていない制御領域への重要情報の漏えいに関する脆弱性 CWE-497
認可されていない制御領域への重要情報の漏えい 		CVE-2026-43654 2026-05-18 12:13 2026-05-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311811 5.5 MEDIUM
Local 		apple macos The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15. An application may be able to read restricted memory. NVD-CWE-noinfo
CVE-2024-27861 2024-10-10 22:13 2024-09-17 Show GitHub Exploit DB Packet Storm
311812 6.5 MEDIUM
Network 		zynith zynith Missing Authorization vulnerability in VIICTORY MEDIA LLC Z Y N I T H allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Z Y N I T H: from n/a through 7.4.9. CWE-862
 Missing Authorization 		CVE-2024-43940 2024-10-10 22:11 2024-08-30 Show GitHub Exploit DB Packet Storm
311813 6.5 MEDIUM
Network 		zynith zynith Missing Authorization vulnerability in VIICTORY MEDIA LLC Z Y N I T H allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Z Y N I T H: from n/a through 7.4.9. CWE-862
 Missing Authorization 		CVE-2024-43939 2024-10-10 22:09 2024-08-30 Show GitHub Exploit DB Packet Storm
311814 9.8 CRITICAL
Network 		woobewoo product_table Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WBW WBW Product Table PRO allows SQL Injection.This issue affects WBW Product Table PRO: from n/a… CWE-89
SQL Injection 		CVE-2024-43918 2024-10-10 22:01 2024-08-30 Show GitHub Exploit DB Packet Storm
311815 - - - Use of implicit intent for sensitive communication in Sound Assistant prior to version 6.1.0.9 allows local attackers to get sensitive information. - CVE-2024-34670 2024-10-10 21:57 2024-10-8 Show GitHub Exploit DB Packet Storm
311816 - - - Improper check for exception conditions in Knox Guard prior to SMR Oct-2024 Release 1 allows physical attackers to bypass Knox Guard in a multi-user environment. - CVE-2024-34664 2024-10-10 21:57 2024-10-8 Show GitHub Exploit DB Packet Storm
311817 - - - Integer overflow in libSEF.quram.so prior to SMR Oct-2024 Release 1 allows local attackers to write out-of-bounds memory. - CVE-2024-34663 2024-10-10 21:57 2024-10-8 Show GitHub Exploit DB Packet Storm
311818 - - - The Bridge Core plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'formforall' shortcode in versions up to, and including, 3.2.0 due to insufficient input sanitization and output … CWE-79
Cross-site Scripting 		CVE-2024-9292 2024-10-10 21:57 2024-10-8 Show GitHub Exploit DB Packet Storm
311819 - - - In the process of testing the Relevanssi WordPress plugin before 4.23.1, a vulnerability was found that allows you to implement Stored XSS on behalf of the Contributor+ by embedding malicious script… - CVE-2024-9021 2024-10-10 21:57 2024-10-8 Show GitHub Exploit DB Packet Storm
311820 - - - Custom Twitter Feeds WordPress plugin before 2.2.3 is not filtering some of its settings allowing high privilege users to inject scripts. - CVE-2024-8983 2024-10-10 21:57 2024-10-8 Show GitHub Exploit DB Packet Storm