Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 14, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
641 8.8 重要
Network 		HCL Technologies Limited HCL BigFix Service Management (SM) HCL Technologies LimitedのHCL BigFix Service Management (SM)における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2025-52613 2026-05-11 11:01 2026-05-6 Show GitHub Exploit DB Packet Storm
642 9.8 緊急
Network 		Palo Alto Networks PAN-OS Palo Alto NetworksのPAN-OSにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-0300 2026-05-11 11:01 2026-05-6 Show GitHub Exploit DB Packet Storm
643 3.3
Local 		HCL Technologies Limited sametime HCL Technologies Limitedのsametimeにおけるログファイルからの情報漏えいに関する脆弱性 CWE-532
ログファイルからの情報漏えい 		CVE-2026-21791 2026-05-11 11:01 2026-03-10 Show GitHub Exploit DB Packet Storm
644 7.5 重要
Network 		マイクロソフト Microsoft .NET Framework .NET Framework のサービス拒否の脆弱性 CWE-755
例外的な状態における不適切な処理 		CVE-2026-23666 2026-05-11 11:01 2026-04-14 Show GitHub Exploit DB Packet Storm
645 5.1 警告
Local 		The GIFLIB project giflib The GIFLIB projectのgiflibにおける二重解放に関する脆弱性 CWE-415
二重解放 		CVE-2026-23868 2026-05-11 11:01 2026-03-10 Show GitHub Exploit DB Packet Storm
646 9 緊急
Network 		マイクロソフト Microsoft Power Apps Microsoft Power Apps のセキュリティ機能のバイパス CWE-150
エスケープ、メタ、またはコントロールシーケンスの不適切な無効化 		CVE-2026-26149 2026-05-11 11:01 2026-04-14 Show GitHub Exploit DB Packet Storm
647 7.5 重要
Network 		マイクロソフト .NET
PowerShell 		.NET のサービス拒否の脆弱性 CWE-400
CWE-611
CVE-2026-26171 2026-05-11 11:01 2026-04-14 Show GitHub Exploit DB Packet Storm
648 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2026-31440 2026-05-11 11:01 2026-04-22 Show GitHub Exploit DB Packet Storm
649 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2026-31441 2026-05-11 11:01 2026-04-22 Show GitHub Exploit DB Packet Storm
650 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-31442 2026-05-11 11:01 2026-04-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312371 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: smb/client: avoid dereferencing rdata=NULL in smb2_new_read_req() This happens when called from SMB2_read() while using rdma and … CWE-476
 NULL Pointer Dereference 		CVE-2024-46686 2024-09-15 01:16 2024-09-13 Show GitHub Exploit DB Packet Storm
312372 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: pinctrl: single: fix potential NULL dereference in pcs_get_function() pinmux_generic_get_function() can return NULL and the point… CWE-476
 NULL Pointer Dereference 		CVE-2024-46685 2024-09-15 01:00 2024-09-13 Show GitHub Exploit DB Packet Storm
312373 9.8 CRITICAL
Network 		code-projects crud_operation_system A vulnerability was found in code-projects Crud Operation System 1.0. It has been classified as critical. This affects an unknown part of the file /updatedata.php. The manipulation of the argument si… CWE-89
SQL Injection 		CVE-2024-8762 2024-09-15 00:54 2024-09-13 Show GitHub Exploit DB Packet Storm
312374 8.1 HIGH
Network 		gitlab gitlab An issue has been discovered in GitLab EE/CE affecting all versions from 16.9.7 prior to 17.1.7, 17.2 prior to 17.2.5, and 17.3 prior to 17.3.2. An improper input validation error allows attacker to … NVD-CWE-noinfo
CVE-2024-8754 2024-09-15 00:40 2024-09-13 Show GitHub Exploit DB Packet Storm
312375 7.2 HIGH
Network 		- - An input validation weakness was discovered in XCC that could allow a valid, authenticated XCC user with elevated privileges to perform command injection through specially crafted command line input … - CVE-2024-8281 2024-09-14 20:47 2024-09-14 Show GitHub Exploit DB Packet Storm
312376 7.2 HIGH
Network 		- - An input validation weakness was discovered in XCC that could allow a valid, authenticated XCC user with elevated privileges to perform command injection or cause a recoverable denial of service usin… - CVE-2024-8280 2024-09-14 20:47 2024-09-14 Show GitHub Exploit DB Packet Storm
312377 7.2 HIGH
Network 		- - A privilege escalation vulnerability was discovered in XCC that could allow a valid, authenticated XCC user with elevated privileges to perform command injection via specially crafted file uploads. - CVE-2024-8279 2024-09-14 20:47 2024-09-14 Show GitHub Exploit DB Packet Storm
312378 7.2 HIGH
Network 		- - A privilege escalation vulnerability was discovered in XCC that could allow a valid, authenticated XCC user with elevated privileges to perform command injection via specially crafted IPMI commands. - CVE-2024-8278 2024-09-14 20:47 2024-09-14 Show GitHub Exploit DB Packet Storm
312379 4.3 MEDIUM
Network 		- - IPMI credentials may be captured in XCC audit log entries when the account username length is 16 characters. - CVE-2024-8059 2024-09-14 20:47 2024-09-14 Show GitHub Exploit DB Packet Storm
312380 6.8 MEDIUM
Physics 		- - A potential vulnerability was reported in the ThinkPad L390 Yoga and 10w Notebook that could allow a local attacker to escalate privileges by accessing an embedded UEFI shell. - CVE-2024-7756 2024-09-14 20:47 2024-09-14 Show GitHub Exploit DB Packet Storm