Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
851 6.3 警告
Network 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAIにおける複数の脆弱性 CWE-20
CWE-89
CVE-2026-44337 2026-05-11 11:04 2026-05-8 Show GitHub Exploit DB Packet Storm
852 7.3 重要
Network 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAIにおける複数の脆弱性 CWE-1188
CWE-306
CWE-668
CVE-2026-44338 2026-05-11 11:04 2026-05-8 Show GitHub Exploit DB Packet Storm
853 8.6 重要
Network 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAI等の複数製品におけるクラスまたはコードを選択する外部から制御された入力の使用に関する脆弱性 CWE-470
クラスまたはコードを選択する外部から制御された入力の使用 		CVE-2026-44339 2026-05-11 11:04 2026-05-8 Show GitHub Exploit DB Packet Storm
854 7.5 重要
Network 		Mervin Praison (MervinPraison) PraisonAI Mervin Praison (MervinPraison)のPraisonAIにおける複数の脆弱性 CWE-22
CWE-59
CVE-2026-44340 2026-05-11 11:04 2026-05-8 Show GitHub Exploit DB Packet Storm
855 7.8 重要
Local 		ZTE ZXCLOUD iRAI ZTEのZXCLOUD iRAIにおける制御されていない検索パスの要素に関する脆弱性 CWE-427
制御されていない検索パスの要素 		CVE-2026-44406 2026-05-11 11:04 2026-05-7 Show GitHub Exploit DB Packet Storm
856 7.5 重要
Network 		Zcash Foundation Zebrad Zcash FoundationのZebradにおける計算の誤りに関する脆弱性 CWE-682
計算の誤り 		CVE-2026-44498 2026-05-11 11:04 2026-05-8 Show GitHub Exploit DB Packet Storm
857 5.3 警告
Network 		Zcash Foundation zebra-network
Zebra-chain
Zebrad 		Zcash FoundationのZebra-chain等の複数製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-44500 2026-05-11 11:04 2026-05-8 Show GitHub Exploit DB Packet Storm
858 7.5 重要
Network 		The Tor Project Tor The Tor ProjectのTorにおける単一、固有のアクションの実施に関する脆弱性 CWE-837
単一、固有のアクションの不適切な実施 		CVE-2026-44601 2026-05-11 11:04 2026-05-7 Show GitHub Exploit DB Packet Storm
859 7.5 重要
Network 		The Tor Project Tor The Tor ProjectのTorにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-44602 2026-05-11 11:04 2026-05-7 Show GitHub Exploit DB Packet Storm
860 5.5 警告
Local 		Open Source Geospatial Foundation GDAL Open Source Geospatial FoundationのGDALにおける複数の脆弱性 CWE-119
CWE-125
CVE-2026-8084 2026-05-11 11:04 2026-05-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312201 - - - VONETS VAP11G-300 v3.3.23.6.9 was discovered to contain hardcoded credentials for several different privileged accounts, including root. - CVE-2024-46328 2024-09-30 21:46 2024-09-26 Show GitHub Exploit DB Packet Storm
312202 - - - An issue in the Http_handle object of VONETS VAP11G-300 v3.3.23.6.9 allows attackers to access sensitive files via a directory traversal. - CVE-2024-46327 2024-09-30 21:46 2024-09-26 Show GitHub Exploit DB Packet Storm
312203 - - - IBM Cognos Command Center 10.2.4.1 and 10.2.5 could disclose highly sensitive user information to an authenticated user with physical access to the device. CWE-256
Plaintext Storage of a Password  		CVE-2024-31899 2024-09-30 21:46 2024-09-26 Show GitHub Exploit DB Packet Storm
312204 4.4 MEDIUM
Network 		- - IBM Cloud Pak for Multicloud Management 2.3 through 2.3 FP8 stores user credentials in a log file plain clear text which can be read by a privileged user. - CVE-2023-46175 2024-09-30 21:46 2024-09-26 Show GitHub Exploit DB Packet Storm
312205 - - - A vulnerability, which was classified as critical, has been found in dingfanzu CMS up to 29d67d9044f6f93378e6eb6ff92272217ff7225c. Affected by this issue is some unknown functionality of the file sav… CWE-89
SQL Injection 		CVE-2024-9294 2024-09-30 21:45 2024-09-28 Show GitHub Exploit DB Packet Storm
312206 - - - EDK2 contains a vulnerability in the PeCoffLoaderRelocateImage(). An Attacker may cause memory corruption due to an overflow via an adjacent network. A successful exploit of this vulnerability may le… - CVE-2024-38796 2024-09-30 21:45 2024-09-28 Show GitHub Exploit DB Packet Storm
312207 - - - An input validation vulnerability exists in the Rockwell Automation Sequence Manager™ which could allow a malicious user to send malformed packets to the server and cause a denial-of-service conditio… - CVE-2024-6436 2024-09-30 21:45 2024-09-28 Show GitHub Exploit DB Packet Storm
312208 - - - In versions of the PEADM Forge Module prior to 3.24.0 a security misconfiguration was discovered. - CVE-2024-9160 2024-09-30 21:45 2024-09-28 Show GitHub Exploit DB Packet Storm
312209 - - - Directory Traversal vulnerability in Plasmoapp RPShare Fabric mod v.1.0.0 allows a remote attacker to execute arbitrary code via the getFileNameFromConnection method in DownloadTask - CVE-2024-33369 2024-09-30 21:45 2024-09-28 Show GitHub Exploit DB Packet Storm
312210 - - - An issue in Plasmoapp RPShare Fabric mod v.1.0.0 allows a remote attacker to execute arbitrary code via the build method in DonwloadPromptScreen - CVE-2024-33368 2024-09-30 21:45 2024-09-28 Show GitHub Exploit DB Packet Storm