Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
721	5.3	警告 Network	sandboxie-plus	Sandboxie	sandboxie-plusのSandboxieにおける弱いハッシュの使用に関する脆弱性	CWE-328 脆弱なハッシュの使用	CVE-2026-34527	2026-05-11 11:10	2026-05-5	Show	GitHub Exploit DB Packet Storm

722	6.7	警告 Local	デル	data domain operating system PowerProtect DP Series Appliance	デルのdata domain operating system等の複数製品におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-35072	2026-05-11 11:10	2026-04-17	Show	GitHub Exploit DB Packet Storm

723	6.7	警告 Local	デル	data domain operating system	デルのdata domain operating systemにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-35073	2026-05-11 11:10	2026-04-17	Show	GitHub Exploit DB Packet Storm

724	6.7	警告 Local	デル	data domain operating system PowerProtect DP Series Appliance	デルのdata domain operating system等の複数製品におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-35074	2026-05-11 11:10	2026-04-17	Show	GitHub Exploit DB Packet Storm

725	6.7	警告 Local	デル	data domain operating system PowerProtect DP Series Appliance	デルのdata domain operating system等の複数製品における引数の挿入または変更に関する脆弱性	CWE-88 引数の挿入または変更	CVE-2026-35153	2026-05-11 11:10	2026-04-17	Show	GitHub Exploit DB Packet Storm

726	8.8	重要 Network	Project Jupyter	Jupyter Server	Project JupyterのJupyter Serverにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-35397	2026-05-11 11:10	2026-05-5	Show	GitHub Exploit DB Packet Storm

727	9.6	緊急 Network	マイクロソフト	Azure Cloud Shell	Azure Cloud Shell Spoofing Vulnerability	CWE-77 コマンドインジェクション	CVE-2026-35428	2026-05-11 11:10	2026-05-7	Show	GitHub Exploit DB Packet Storm

728	10	緊急 Network	マイクロソフト	Azure AI Foundry	Azure AI Foundry の特権昇格の脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-35435	2026-05-11 11:10	2026-05-7	Show	GitHub Exploit DB Packet Storm

729	9.8	緊急 Network	coredns.io	CoreDNS	The CoreDNS AuthorsのCoreDNSにおける認証に関する脆弱性	CWE-287 不適切な認証	CVE-2026-35579	2026-05-11 11:10	2026-05-5	Show	GitHub Exploit DB Packet Storm

730	9.8	緊急 Network	Kestra	Kestra	KestraにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-38428	2026-05-11 11:10	2026-05-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312401	8.8	HIGH Network	microsoft	sql_2016_azure_connect_feature_pack sql_server_2016 sql_server_2017 sql_server_2019 sql_server_2022	Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-37340	2024-09-24 02:08	2024-09-11	Show	GitHub Exploit DB Packet Storm

312402	8.8	HIGH Network	microsoft	sql_2016_azure_connect_feature_pack sql_server_2016 sql_server_2017 sql_server_2019 sql_server_2022	Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-37338	2024-09-24 02:04	2024-09-11	Show	GitHub Exploit DB Packet Storm

312403	4.3	MEDIUM Network	microsoft	sql_2016_azure_connect_feature_pack sql_server_2016 sql_server_2017 sql_server_2019 sql_server_2022	Microsoft SQL Server Native Scoring Information Disclosure Vulnerability	NVD-CWE-noinfo	CVE-2024-37337	2024-09-24 02:00	2024-09-11	Show	GitHub Exploit DB Packet Storm

312404	8.8	HIGH Network	microsoft	sql_2016_azure_connect_feature_pack sql_server_2016 sql_server_2017 sql_server_2019 sql_server_2022	Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-37335	2024-09-24 01:58	2024-09-11	Show	GitHub Exploit DB Packet Storm

312405	9.8	CRITICAL Network	fabianros	hospital_management_system	A vulnerability, which was classified as critical, was found in code-projects Hospital Management System 1.0. This affects an unknown part of the file check_availability.php. The manipulation of the …	CWE-89 SQL Injection	CVE-2024-8944	2024-09-24 01:56	2024-09-18	Show	GitHub Exploit DB Packet Storm

312406	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check denominator crb_pipes before used [WHAT & HOW] A denominator cannot be 0, and is checked before used. Thi…	CWE-369 Divide By Zero	CVE-2024-46772	2024-09-24 01:52	2024-09-18	Show	GitHub Exploit DB Packet Storm

312407	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check denominator pbn_div before used [WHAT & HOW] A denominator cannot be 0, and is checked before used. This …	CWE-369 Divide By Zero	CVE-2024-46773	2024-09-24 01:51	2024-09-18	Show	GitHub Exploit DB Packet Storm

312408	8.8	HIGH Network	microsoft	sql_2016_azure_connect_feature_pack sql_server_2016 sql_server_2017 sql_server_2019 sql_server_2022	Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-26191	2024-09-24 01:51	2024-09-11	Show	GitHub Exploit DB Packet Storm

312409	8.8	HIGH Network	microsoft	sql_2016_azure_connect_feature_pack sql_server_2016 sql_server_2017 sql_server_2019 sql_server_2022	Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-26186	2024-09-24 01:48	2024-09-11	Show	GitHub Exploit DB Packet Storm

312410	9.8	CRITICAL Network	microsoft	sql_server_2016 sql_server_2017 sql_server_2019 sql_server_2022 sql_2016_azure_connect_feature_pack	Microsoft SQL Server Elevation of Privilege Vulnerability	NVD-CWE-noinfo	CVE-2024-37341	2024-09-24 01:38	2024-09-11	Show	GitHub Exploit DB Packet Storm