Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1921 9.8 緊急
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-5264 2026-05-1 10:45 2026-04-9 Show GitHub Exploit DB Packet Storm
1922 4.3 警告
Network 		LibRaw LibRaw LibRawにおける複数の脆弱性 CWE-119
CWE-787
CVE-2026-5318 2026-05-1 10:45 2026-04-2 Show GitHub Exploit DB Packet Storm
1923 5.3 警告
Network 		LibRaw LibRaw LibRawにおける複数の脆弱性 CWE-119
CWE-125
CVE-2026-5342 2026-05-1 10:45 2026-04-2 Show GitHub Exploit DB Packet Storm
1924 3.7
Network 		free5gc free5gc free5GCにおける型の取り違えに関する脆弱性 CWE-843
型の取り違え 		CVE-2026-5360 2026-05-1 10:44 2026-04-2 Show GitHub Exploit DB Packet Storm
1925 6.5 警告
Network 		Canonical Juju CanonicalのJujuにおける認可に関する脆弱性 CWE-285
不適切な認可 		CVE-2026-5412 2026-05-1 10:44 2026-04-10 Show GitHub Exploit DB Packet Storm
1926 7.1 重要
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける暗号化処理のナンスおよび鍵ペアの再利用に関する脆弱性 CWE-323
暗号化処理のナンスおよび鍵ペアの再利用 		CVE-2026-5446 2026-05-1 10:44 2026-04-9 Show GitHub Exploit DB Packet Storm
1927 7.5 重要
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-5447 2026-05-1 10:44 2026-04-9 Show GitHub Exploit DB Packet Storm
1928 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. AC10 ファームウェア Shenzhen Tenda Technology Co.,Ltd.のAC10 ファームウェアにおける複数の脆弱性 CWE-77
CWE-78
CVE-2026-5547 2026-05-1 10:44 2026-04-5 Show GitHub Exploit DB Packet Storm
1929 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. AC10 ファームウェア Shenzhen Tenda Technology Co.,Ltd.のAC10 ファームウェアにおける複数の脆弱性 CWE-119
CWE-121
CVE-2026-5548 2026-05-1 10:44 2026-04-5 Show GitHub Exploit DB Packet Storm
1930 7.5 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. AC10 ファームウェア Shenzhen Tenda Technology Co.,Ltd.のAC10 ファームウェアにおける複数の脆弱性 CWE-320
CWE-321
CVE-2026-5549 2026-05-1 10:44 2026-04-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1751 8.8 HIGH
Network 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: smb: client: prevent races in ->query_interfaces() It was possible for two query interface works to be concurrently trying to upd… NVD-CWE-noinfo
CVE-2026-43239 2026-05-13 03:53 2026-05-6 Show GitHub Exploit DB Packet Storm
1752 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: usb: chipidea: udc: fix DMA and SG cleanup in _ep_nuke() The ChipIdea UDC driver can encounter "not page aligned sg buffer" error… CWE-787
 Out-of-bounds Write 		CVE-2026-43250 2026-05-13 03:51 2026-05-6 Show GitHub Exploit DB Packet Storm
1753 9.8 CRITICAL
Network 		paloaltonetworks
siemens 		pan-os
ruggedcom_ape1808_firmware 		A buffer overflow vulnerability in the User-ID™ Authentication Portal (aka Captive Portal) service of Palo Alto Networks PAN-OS software allows an unauthenticated attacker to execute arbitrary code w… CWE-787
 Out-of-bounds Write 		CVE-2026-0300 2026-05-13 03:47 2026-05-7 Show GitHub Exploit DB Packet Storm
1754 7.5 HIGH
Network 		apple ipados
iphone_os
macos
tvos
visionos
watchos 		The issue was addressed with improved memory handling. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2026-28990 2026-05-13 03:46 2026-05-12 Show GitHub Exploit DB Packet Storm
1755 7.5 HIGH
Network 		apple ipados
iphone_os
macos
tvos
visionos
watchos 		This issue was addressed with improved checks to prevent unauthorized actions. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watch… CWE-284
Improper Access Control 		CVE-2026-28974 2026-05-13 03:46 2026-05-12 Show GitHub Exploit DB Packet Storm
1756 7.5 HIGH
Network 		apple ipados
iphone_os 		A privacy issue was addressed with improved checks. This issue is fixed in iOS 26.5 and iPadOS 26.5. A user may be able to view restricted content from the lock screen. CWE-284
Improper Access Control 		CVE-2026-28965 2026-05-13 03:46 2026-05-12 Show GitHub Exploit DB Packet Storm
1757 7.5 HIGH
Network 		apple ipados
iphone_os
visionos 		An inconsistent user interface issue was addressed with improved state management. This issue is fixed in iOS 26.5 and iPadOS 26.5, visionOS 26.5. An app may be able to access sensitive user data. CWE-451
 User Interface (UI) Misrepresentation of Critical Information 		CVE-2026-28964 2026-05-13 03:46 2026-05-12 Show GitHub Exploit DB Packet Storm
1758 4.4 MEDIUM
Local 		anthropic claude_sdk_for_typescript Claude SDK for TypeScript provides access to the Claude API from server-side TypeScript or JavaScript applications. From version 0.79.0 to before version 0.91.1, the BetaLocalFilesystemMemoryTool in … CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2026-41686 2026-05-13 03:37 2026-05-5 Show GitHub Exploit DB Packet Storm
1759 - - - LWP::UserAgent versions before 6.83 for Perl leak Authorization and Proxy-Authorization headers on cross-origin redirects. On a 3xx response, the redirect handler strips only Host and Cookie before … CWE-522
 Insufficiently Protected Credentials 		CVE-2026-8368 2026-05-13 03:17 2026-05-13 Show GitHub Exploit DB Packet Storm
1760 4.2 MEDIUM
Network 		- - WWBN AVideo is an open source video platform. In versions up to and including 29.0, plugin/PayPalYPT/agreementCancel.json.php cancels a PayPal billing agreement using an attacker-supplied agreement p… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-43883 2026-05-13 03:17 2026-05-12 Show GitHub Exploit DB Packet Storm