Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1341 6.5 警告
Network 		マイクロソフト Microsoft Visual Studio Code CoPilot Chat Extension GitHub Copilot と Visual Studio Code の情報漏えいの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-23653 2026-05-8 12:08 2026-04-14 Show GitHub Exploit DB Packet Storm
1342 8.1 重要
Network 		フォーティネット FortiSOAR フォーティネットのFortiSOARにおける複数の脆弱性 CWE-287
CWE-862
CVE-2026-23708 2026-05-8 12:08 2026-04-14 Show GitHub Exploit DB Packet Storm
1343 8.8 重要
Network 		redis Redis Redis Ltd.のRedisにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-25243 2026-05-8 12:08 2026-05-5 Show GitHub Exploit DB Packet Storm
1344 7.8 重要
Local 		クアルコム X2000094 ファームウェア
XG101002 ファームウェア
Snapdragon AR1 Gen 1 ファームウェア
WSA8835 ファームウェア
XG101032 ファームウェア
WSA8830 ファームウェア
fastconnect 7800&nb… 		クアルコムのCologne ファームウェア等の複数製品における複数の脆弱性 CWE-749
CWE-787
CVE-2026-25266 2026-05-8 12:08 2026-05-4 Show GitHub Exploit DB Packet Storm
1345 9.8 緊急
Network 		クアルコム QCA7005 ファームウェア クアルコムのQCA7005 ファームウェアにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-25293 2026-05-8 12:08 2026-05-4 Show GitHub Exploit DB Packet Storm
1346 10 緊急
Network 		vm2 project vm2 vm2 projectのvm2における複数の脆弱性 CWE-693
CWE-94
CVE-2026-26332 2026-05-8 12:08 2026-05-4 Show GitHub Exploit DB Packet Storm
1347 9.8 緊急
Network 		OpenClaw OpenClaw OpenClawにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-28474 2026-05-8 12:08 2026-03-5 Show GitHub Exploit DB Packet Storm
1348 9.8 緊急
Network 		Apache Software Foundation Apache HTTP Server Apache Software FoundationのApache HTTP Serverにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-28780 2026-05-8 12:08 2026-05-5 Show GitHub Exploit DB Packet Storm
1349 7.3 重要
Network 		Apache Software Foundation Apache HTTP Server Apache Software FoundationのApache HTTP Serverにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-29168 2026-05-8 12:08 2026-05-5 Show GitHub Exploit DB Packet Storm
1350 4.3 警告
Network 		Mozilla Foundation Mozilla Firefox Focus Mozilla FoundationのMozilla Firefox Focusにおけるユーザインターフェースにおける重要情報の誤った表示に関する脆弱性 CWE-451
ユーザインターフェースにおける重要情報の誤った表示 		CVE-2026-2919 2026-05-8 12:08 2026-03-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1311 5.3 MEDIUM
Network 		- - A use of potentially dangerous function vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.4, FortiAnalyzer 7.4.0 through 7.4.8, FortiAnalyzer 7.2 all versions, FortiAnalyzer 7.0 all versions,… New CWE-676
 Use of Potentially Dangerous Function 		CVE-2025-67604 2026-05-13 03:57 2026-05-13 Show GitHub Exploit DB Packet Storm
1312 5.4 MEDIUM
Network 		- - An improper neutralization of special elements used in an sql command ('sql injection') vulnerability in Fortinet FortiNDR 7.6.0 through 7.6.2, FortiNDR 7.4.0 through 7.4.9, FortiNDR 7.2 all versions… New CWE-89
SQL Injection 		CVE-2026-25088 2026-05-13 03:57 2026-05-13 Show GitHub Exploit DB Packet Storm
1313 4.3 MEDIUM
Network 		- - An improper neutralization of argument delimiters in a command ('argument injection') vulnerability in Fortinet FortiDeceptor 6.0.0 through 6.0.2, FortiDeceptor 5.3.0 through 5.3.3, FortiDeceptor 5.2… New CWE-88
Argument Injection 		CVE-2026-25690 2026-05-13 03:57 2026-05-13 Show GitHub Exploit DB Packet Storm
1314 9.8 CRITICAL
Network 		- - A missing authorization vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.1, FortiSandbox 4.4.0 through 4.4.8, FortiSandbox Cloud 5.0.2 through 5.0.5, FortiSandbox PaaS 23.4 all versions, Fort… New CWE-862
 Missing Authorization 		CVE-2026-26083 2026-05-13 03:57 2026-05-13 Show GitHub Exploit DB Packet Storm
1315 9.8 CRITICAL
Network 		- - A improper access control vulnerability in Fortinet FortiAuthenticator 8.0.2, FortiAuthenticator 8.0.0, FortiAuthenticator 6.6.0 through 6.6.8, FortiAuthenticator 6.5.0 through 6.5.6 may allow attack… New CWE-284
Improper Access Control 		CVE-2026-44277 2026-05-13 03:57 2026-05-13 Show GitHub Exploit DB Packet Storm
1316 2.3 LOW
Local 		- - A use of hard-coded cryptographic key vulnerability in Fortinet FortiClientWindows 7.4.0 through 7.4.2, FortiClientWindows 7.2 all versions may allow attacker to information disclosure via <insert at… New CWE-321
 Use of Hard-coded Cryptographic Key 		CVE-2026-44278 2026-05-13 03:57 2026-05-13 Show GitHub Exploit DB Packet Storm
1317 5.5 MEDIUM
Local 		- - A improper export of android application components vulnerability in Fortinet FortiTokenAndroid 6.2 all versions, FortiTokenAndroid 6.1 all versions, FortiTokenAndroid 5.2 all versions may allow atta… New CWE-926
 Improper Export of Android Application Components 		CVE-2026-44279 2026-05-13 03:57 2026-05-13 Show GitHub Exploit DB Packet Storm
1318 - - - Corteza contains a SQL injection vulnerability in its Microsoft SQL Server (MSSQL) backend when filtering Compose records by the meta field.This issue affects corteza: 2024.9.8. Update CWE-89
SQL Injection 		CVE-2026-6093 2026-05-13 03:56 2026-05-12 Show GitHub Exploit DB Packet Storm
1319 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Refactor amdgpu_gem_va_ioctl for Handling Last Fence Update and Timeline Management v4 This commit simplifies the amd… Update CWE-416
 Use After Free 		CVE-2026-43237 2026-05-13 03:55 2026-05-6 Show GitHub Exploit DB Packet Storm
1320 - - - An inconsistent user interface issue was addressed with improved state management. This issue is fixed in iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2. An app may be able to access sensitiv… New - CVE-2025-46311 2026-05-13 03:55 2026-05-13 Show GitHub Exploit DB Packet Storm