Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
191321 6.5 警告
Network 		ImageMagick - ImageMagick の coders/screenshot.c の ReadSCREENSHOTImage 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2017-11447 2017-08-7 15:52 2017-06-20 Show GitHub Exploit DB Packet Storm
191322 6.5 警告
Network 		ImageMagick - ImageMagick の coders\pes.c の ReadPESImage 関数における無限ループを引き起こされる脆弱性 CWE-399
リソース管理の問題 		CVE-2017-11446 2017-08-7 15:52 2017-07-5 Show GitHub Exploit DB Packet Storm
191323 8.8 重要
Network 		マイクロソフト
日立		 - 複数の Microsoft Windows 製品の Windows Shell における任意のコードを実行される脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-8464 2017-08-7 15:00 2017-06-13 Show GitHub Exploit DB Packet Storm
191324 6.5 警告
Network 		ImageMagick - ImageMagick の coders\rle.c の ReadRLEImage 関数における大きなループに関する脆弱性 CWE-20
不適切な入力確認 		CVE-2017-11360 2017-08-7 14:38 2017-06-23 Show GitHub Exploit DB Packet Storm
191325 6.5 警告
Network 		ImageMagick - ImageMagick におけるクラッシュが誘発される脆弱性 CWE-20
不適切な入力確認 		CVE-2017-11352 2017-08-7 14:38 2017-05-31 Show GitHub Exploit DB Packet Storm
191326 7 重要
Local 		Google - Android の NVIDIA サウンドドライバにおける権限を昇格される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-6249 2017-08-7 14:05 2017-06-5 Show GitHub Exploit DB Packet Storm
191327 7.5 重要
Network 		The phpMyAdmin Project - phpMyAdmin におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2017-1000018 2017-08-7 13:58 2017-01-24 Show GitHub Exploit DB Packet Storm
191328 8.8 重要
Network 		The phpMyAdmin Project - phpMyAdmin における任意の MySQL サーバに接続される脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2017-1000017 2017-08-7 13:58 2017-01-24 Show GitHub Exploit DB Packet Storm
191329 6.1 警告
Network 		The phpMyAdmin Project - phpMyAdmin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-1000015 2017-08-7 13:58 2017-01-24 Show GitHub Exploit DB Packet Storm
191330 7.5 重要
Network 		The phpMyAdmin Project - phpMyAdmin のテーブル編集機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2017-1000014 2017-08-7 13:58 2017-01-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
921 7.8 HIGH
Local 		ashlar argon
cobalt
cobalt_share
lithium
xenon 		An Out-of-Bounds Read vulnerability is present in Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions 12.6.1204.216 and prior that could allow an attacker to disclose information o… CWE-125
Out-of-bounds Read 		CVE-2025-65087 2026-05-14 23:57 2026-05-13 Show GitHub Exploit DB Packet Storm
922 7.8 HIGH
Local 		ashlar argon
cobalt
cobalt_share
lithium
xenon 		An Out-of-Bounds Read vulnerability is present in Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions 12.6.1204.216 and prior that could allow an attacker to disclose information o… CWE-125
Out-of-bounds Read 		CVE-2025-65088 2026-05-14 23:57 2026-05-13 Show GitHub Exploit DB Packet Storm
923 8.8 HIGH
Network 		requarks wiki.js Wiki.js is an open source wiki app built on Node.js. Prior to 2.5.313, the users.update GraphQL mutation accepts an arbitrary groups array and applies it directly to the database with no validation o… CWE-269
NVD-CWE-noinfo
 Improper Privilege Management 		CVE-2026-44224 2026-05-14 23:56 2026-05-13 Show GitHub Exploit DB Packet Storm
924 6.7 MEDIUM
Local 		microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_server_2016
w… 		Double free in Windows Rich Text Edit allows an authorized attacker to elevate privileges locally. CWE-415
 Double Free 		CVE-2026-21530 2026-05-14 23:56 2026-05-13 Show GitHub Exploit DB Packet Storm
925 7.5 HIGH
Adjacent 		microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_server_2016
w… 		Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Native WiFi Miniport Driver allows an unauthorized attacker to execute code over an adjacent net… CWE-362
CWE-416
Race Condition
 Use After Free 		CVE-2026-32161 2026-05-14 23:54 2026-05-13 Show GitHub Exploit DB Packet Storm
926 6.7 MEDIUM
Local 		microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_server_2016
w… 		Double free in Windows Rich Text Edit Control allows an authorized attacker to elevate privileges locally. CWE-415
 Double Free 		CVE-2026-32170 2026-05-14 23:52 2026-05-13 Show GitHub Exploit DB Packet Storm
927 4.4 MEDIUM
Local 		microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_server_2016
w… 		Improper access control in Windows Filtering Platform (WFP) allows an authorized attacker to bypass a security feature locally. CWE-284
Improper Access Control 		CVE-2026-32209 2026-05-14 23:51 2026-05-13 Show GitHub Exploit DB Packet Storm
928 7.2 HIGH
Network 		wftpserver wing_ftp_server Wing FTP Server before 8.1.3 contains an authenticated remote code execution vulnerability in the session serialization mechanism that allows authenticated administrators to inject arbitrary Lua code… CWE-94
Code Injection 		CVE-2026-44403 2026-05-14 23:50 2026-05-13 Show GitHub Exploit DB Packet Storm
929 7.5 HIGH
Network 		phpoffice phpspreadsheet PhpSpreadsheet is a pure PHP library for reading and writing spreadsheet files. Prior to 1.30.4, 2.1.16, 2.4.5, 3.10.5, and 5.7.0, the XLSX reader's ColumnAndRowAttributes::readRowAttributes() method… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2026-40902 2026-05-14 23:50 2026-05-13 Show GitHub Exploit DB Packet Storm
930 7.5 HIGH
Network 		owasp modsecurity ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. From 3.0.0 to before 3.0.15, there is an unhandled exception (std::out_of_range) caused … CWE-191
CWE-248
 Integer Underflow (Wrap or Wraparound)
 Uncaught Exception 		CVE-2026-42268 2026-05-14 23:49 2026-05-13 Show GitHub Exploit DB Packet Storm