Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
191441	8.8	重要 Network	ZyXEL	-	ZyXEL PK5001Z デバイスにおける証明書・パスワードの管理に関する脆弱性	CWE-255 証明書・パスワード管理	CVE-2016-10401	2017-09-5 16:12	2017-07-25	Show	GitHub Exploit DB Packet Storm

191442	6.5	警告 Local	SAP	-	SAP NetWeaver AS JAVA における XML 外部エンティティの脆弱性	CWE-611 XML 外部エンティティ参照の不適切な制限	CVE-2017-11457	2017-09-5 16:01	2017-04-12	Show	GitHub Exploit DB Packet Storm

191443	6.5	警告 Network	NetApp	-	NetApp OnCommand API Services におけアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-8919	2017-09-5 15:42	2017-07-18	Show	GitHub Exploit DB Packet Storm

191444	7.5	重要 Network	シスコシステムズ	-	Cisco ASR 5000 シリーズのアグリゲーションサービスルータにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-6672	2017-09-5 15:35	2017-07-19	Show	GitHub Exploit DB Packet Storm

191445	8.6	重要 Network	シスコシステムズ	-	Cisco ASR 5000 シリーズのアグリゲーションサービスルータにおけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2017-6612	2017-09-5 15:34	2017-07-19	Show	GitHub Exploit DB Packet Storm

191446	8.1	重要 Network	IBM	-	IBM AppScan Enterprise Edition におけるセッションの固定化の脆弱性	CWE-384 セッションの固定化	CVE-2016-9981	2017-09-5 15:23	2016-12-16	Show	GitHub Exploit DB Packet Storm

191447	6.5	警告 Network	IBM	-	IBM Sterling B2B Integrator および IBM Sterling File Gateway における XML 外部エンティティの脆弱性	CWE-611 XML 外部エンティティ参照の不適切な制限	CVE-2015-0194	2017-09-5 15:23	2015-03-23	Show	GitHub Exploit DB Packet Storm

191448	8.8	重要 Network	IBM	-	IBM Curam Social Program Management におけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2014-8903	2017-09-5 15:23	2014-11-14	Show	GitHub Exploit DB Packet Storm

191449	7.8	重要 Local	The PHP Group	-	PHP におけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2017-11628	2017-09-5 15:23	2017-07-5	Show	GitHub Exploit DB Packet Storm

191450	7	重要 Local	Waves Audio Ltd.	-	Waves MaxxAudio における認可・権限・アクセス制御に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2017-6005	2017-09-5 15:18	2017-07-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1811	7.2	HIGH Network	arubanetworks	arubaos sd-wan	Command injection vulnerabilities exist in the web-based management interface of AOS-8 and AOS-10 Operating Systems. Successful exploitation could allow an authenticated remote attacker to upload arb…	CWE-77 Command Injection	CVE-2026-44854	2026-05-15 00:12	2026-05-13	Show	GitHub Exploit DB Packet Storm

1812	7.2	HIGH Network	arubanetworks	arubaos sd-wan	Command injection vulnerabilities exist in the web-based management interface of AOS-8 and AOS-10 Operating Systems. Successful exploitation could allow an authenticated remote attacker to upload arb…	CWE-77 Command Injection	CVE-2026-44853	2026-05-15 00:05	2026-05-13	Show	GitHub Exploit DB Packet Storm

1813	7.0	HIGH Local	microsoft	windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_11_23h2 windows_11_24h2 windows_11_25h2 windows_11_26h1 windows_server_2012 windows_server_2016 w…	Double free in Windows Link-Layer Discovery Protocol (LLDP) allows an authorized attacker to elevate privileges locally.	CWE-415 Double Free	CVE-2026-34341	2026-05-15 00:00	2026-05-13	Show	GitHub Exploit DB Packet Storm

1814	7.0	HIGH Local	microsoft	windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_11_23h2 windows_11_24h2 windows_11_25h2 windows_11_26h1 windows_server_2012 windows_server_2016 w…	Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Print Spooler Components allows an authorized attacker to elevate privileges locally.	CWE-362 Race Condition	CVE-2026-34342	2026-05-14 23:59	2026-05-13	Show	GitHub Exploit DB Packet Storm

1815	7.8	HIGH Local	microsoft	windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_11_23h2 windows_11_24h2 windows_11_25h2 windows_11_26h1 windows_server_2012 windows_server_2016 w…	Heap-based buffer overflow in Windows Application Identity (AppID) Subsystem allows an authorized attacker to elevate privileges locally.	CWE-122 Heap-based Buffer Overflow	CVE-2026-34343	2026-05-14 23:58	2026-05-13	Show	GitHub Exploit DB Packet Storm

1816	7.8	HIGH Local	ashlar	argon cobalt cobalt_share lithium xenon	An Out-of-Bounds Write vulnerability is present in Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions 12.6.1204.216 and prior that could allow an attacker to execute arbitrary cod…	CWE-787 Out-of-bounds Write	CVE-2025-65086	2026-05-14 23:57	2026-05-13	Show	GitHub Exploit DB Packet Storm

1817	7.8	HIGH Local	ashlar	argon cobalt cobalt_share lithium xenon	An Out-of-Bounds Read vulnerability is present in Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions 12.6.1204.216 and prior that could allow an attacker to disclose information o…	CWE-125 Out-of-bounds Read	CVE-2025-65087	2026-05-14 23:57	2026-05-13	Show	GitHub Exploit DB Packet Storm

1818	7.8	HIGH Local	ashlar	argon cobalt cobalt_share lithium xenon	An Out-of-Bounds Read vulnerability is present in Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions 12.6.1204.216 and prior that could allow an attacker to disclose information o…	CWE-125 Out-of-bounds Read	CVE-2025-65088	2026-05-14 23:57	2026-05-13	Show	GitHub Exploit DB Packet Storm

1819	8.8	HIGH Network	requarks	wiki.js	Wiki.js is an open source wiki app built on Node.js. Prior to 2.5.313, the users.update GraphQL mutation accepts an arbitrary groups array and applies it directly to the database with no validation o…	CWE-269 NVD-CWE-noinfo Improper Privilege Management	CVE-2026-44224	2026-05-14 23:56	2026-05-13	Show	GitHub Exploit DB Packet Storm

1820	6.7	MEDIUM Local	microsoft	windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_11_23h2 windows_11_24h2 windows_11_25h2 windows_11_26h1 windows_server_2012 windows_server_2016 w…	Double free in Windows Rich Text Edit allows an authorized attacker to elevate privileges locally.	CWE-415 Double Free	CVE-2026-21530	2026-05-14 23:56	2026-05-13	Show	GitHub Exploit DB Packet Storm