Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
531 9.8 緊急
Network 		マイクロソフト Microsoft Entra ID Microsoft Azure Active Directory B2C Elevation of Privilege Vulnerability CWE-288
代替パスまたはチャネルを使用した認証回避 		CVE-2026-33843 2026-05-29 11:17 2026-05-22 Show GitHub Exploit DB Packet Storm
532 4.3 警告
Network 		Joomla! Joomla! Joomla!におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2026-35220 2026-05-29 11:17 2026-05-26 Show GitHub Exploit DB Packet Storm
533 9.8 緊急
Network 		Joomla! Joomla! Joomla!におけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-35221 2026-05-29 11:17 2026-05-26 Show GitHub Exploit DB Packet Storm
534 9.8 緊急
Network 		Joomla! Joomla! Joomla!におけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-35222 2026-05-29 11:17 2026-05-26 Show GitHub Exploit DB Packet Storm
535 8.8 重要
Network 		FreeRDP FreeRDP FreeRDPにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-40033 2026-05-29 11:17 2026-05-26 Show GitHub Exploit DB Packet Storm
536 9.8 緊急
Network 		Joomla! Joomla! Joomla!におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-40383 2026-05-29 11:17 2026-05-26 Show GitHub Exploit DB Packet Storm
537 7.2 重要
Network 		IBM Engineering Lifecycle Management IBMのEngineering Lifecycle Managementにおける危険なメソッドや機能の公開に関する脆弱性 CWE-749
危険なメソッドや機能の公開 		CVE-2026-4051 2026-05-29 11:17 2026-05-26 Show GitHub Exploit DB Packet Storm
538 6.5 警告
Network 		struktur AG libheif struktur AGのlibheifにおける複数の脆弱性 CWE-125
CWE-476
CVE-2026-41069 2026-05-29 11:17 2026-05-22 Show GitHub Exploit DB Packet Storm
539 8.1 重要
Network 		struktur AG libheif struktur AGのlibheifにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-41071 2026-05-29 11:17 2026-05-22 Show GitHub Exploit DB Packet Storm
540 9.3 緊急
Network 		マイクロソフト Microsoft 365 Copilot Microsoft Copilot Tampering Vulnerability CWE-77
コマンドインジェクション 		CVE-2026-41090 2026-05-29 11:17 2026-05-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
319281 5.5 MEDIUM
Local 		- - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. - CVE-2022-48936 2024-08-31 15:15 2024-08-22 Show GitHub Exploit DB Packet Storm
319282 6.6 MEDIUM
Local 		intel oneapi_base_toolkit
distribution_for_gdb 		Improper buffer restrictions in some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to potentially enable denial of service via local access. NVD-CWE-noinfo
CVE-2024-25562 2024-08-31 12:40 2024-08-14 Show GitHub Exploit DB Packet Storm
319283 3.3 LOW
Local 		intel oneapi_base_toolkit
distribution_for_gdb 		Improper input validation for some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to potentially enable denial of service via local access. NVD-CWE-noinfo
CVE-2024-24973 2024-08-31 12:39 2024-08-14 Show GitHub Exploit DB Packet Storm
319284 7.8 HIGH
Local 		intel oneapi_base_toolkit
distribution_for_gdb 		Incorrect default permissions in some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to potentially enable escalation of privilege via local access. CWE-276
Incorrect Default Permissions  		CVE-2024-23495 2024-08-31 12:38 2024-08-14 Show GitHub Exploit DB Packet Storm
319285 7.3 HIGH
Local 		intel oneapi_base_toolkit
distribution_for_gdb 		Uncontrolled search path in some Intel(R) Distribution for GDB software before version 2024.0.1 may allow an authenticated user to potentially enable escalation of privilege via local access. CWE-427
 Uncontrolled Search Path Element 		CVE-2024-23491 2024-08-31 12:37 2024-08-14 Show GitHub Exploit DB Packet Storm
319286 5.4 MEDIUM
Network 		yzncms yzncms A cross-site scripting (XSS) vulnerability in the component /index/index.html of YZNCMS v1.4.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the config… CWE-79
Cross-site Scripting 		CVE-2024-42939 2024-08-31 11:58 2024-08-21 Show GitHub Exploit DB Packet Storm
319287 - - - Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error and is not a valid vulnerability. Notes: All references and descriptions in this candidate h… - CVE-2022-4538 2024-08-31 06:15 2024-08-31 Show GitHub Exploit DB Packet Storm
319288 - - - Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error and is not a valid vulnerability. Notes: All references and descriptions in this candidate h… - CVE-2022-4528 2024-08-31 06:15 2024-08-31 Show GitHub Exploit DB Packet Storm
319289 - - - Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error and is not a valid vulnerability. Notes: All references and descriptions in this candidate h… - CVE-2022-4412 2024-08-31 06:15 2024-08-31 Show GitHub Exploit DB Packet Storm
319290 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. - CVE-2024-42379 2024-08-31 05:15 2024-08-31 Show GitHub Exploit DB Packet Storm