Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193691 8.8 重要
Network 		Piwigo - Piwigo におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2017-10678 2017-07-14 11:53 2017-06-29 Show GitHub Exploit DB Packet Storm
193692 7.8 重要
Local 		Lenovo - Lenovo XClarity Administrator における認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2017-3745 2017-07-13 18:46 2017-06-8 Show GitHub Exploit DB Packet Storm
193693 7.5 重要
Network 		Lenovo - Lenovo ToolsCenter 製品における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2017-3743 2017-07-13 18:45 2017-06-8 Show GitHub Exploit DB Packet Storm
193694 7.5 重要
Network 		Exiv2 project
レッドハット		 - Exiv2 における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2017-9953 2017-07-13 18:18 2017-06-26 Show GitHub Exploit DB Packet Storm
193695 8.8 重要
Network 		Dolibarr ERP & CRM - Dolibarr ERP/CRM における危険なファイルをアップロードされる脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード 		CVE-2017-9840 2017-07-13 18:08 2017-06-7 Show GitHub Exploit DB Packet Storm
193696 8.8 重要
Network 		Magic Winmail - Winmail Server におけるリモートでコードを実行される脆弱性 CWE-22
パス・トラバーサル 		CVE-2017-9846 2017-07-13 18:01 2017-06-23 Show GitHub Exploit DB Packet Storm
193697 5.3 警告
Local 		オラクル - Oracle Sun Systems Products Suite の Solaris コンポーネントにおける認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-3630 2017-07-13 17:47 2017-06-19 Show GitHub Exploit DB Packet Storm
193698 7.8 重要
Local 		オラクル - Oracle Sun Systems Products Suite の Solaris コンポーネントにおける認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-3629 2017-07-13 17:47 2017-06-19 Show GitHub Exploit DB Packet Storm
193699 9.8 緊急
Network 		IdeaBlade - IdeaBlade Breeze Breeze.Server.NET における任意のコードを実行される脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2017-9424 2017-07-13 17:17 2017-06-1 Show GitHub Exploit DB Packet Storm
193700 5.3 警告
Network 		Belden Inc. - Belden Hirschmann GECKO Lite Managed スイッチにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2017-6040 2017-07-13 17:12 2017-01-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2601 7.8 HIGH
Local 		- - An origin validation error vulnerability in the Trend Micro Apex One (mac) agent iCore service could allow a local attacker to escalate privileges on affected installations. Please note: an attack… CWE-346
 Origin Validation Error 		CVE-2025-71214 2026-05-22 00:16 2026-05-21 Show GitHub Exploit DB Packet Storm
2602 7.8 HIGH
Local 		- - MediaArea MediaInfoLib LXF element parsing heap-based buffer overflow vulnerability CWE-823
 Use of Out-of-range Pointer Offset 		CVE-2026-28764 2026-05-22 00:05 2026-05-21 Show GitHub Exploit DB Packet Storm
2603 7.5 HIGH
Network 		- - In Splunk Enterprise versions below 10.2.2 and 10.0.5, and Splunk Cloud Platform versions below 10.3.2512.8, 10.2.2510.11, 10.1.2507.21, and 10.0.2503.13, a user with a role that has access to the `_… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2026-20239 2026-05-22 00:00 2026-05-21 Show GitHub Exploit DB Packet Storm
2604 6.5 MEDIUM
Network 		- - In Splunk Enterprise versions below 10.2.2, 10.0.5, 9.4.11, and 9.3.12, and Splunk Cloud Platform versions below 10.4.2603.1, 10.3.2512.9, 10.2.2510.11, 10.1.2507.21, 10.0.2503.13, and 9.3.2411.129, … CWE-20
 Improper Input Validation  		CVE-2026-20240 2026-05-22 00:00 2026-05-21 Show GitHub Exploit DB Packet Storm
2605 7.1 HIGH
Local 		- - In the Linux kernel, the following vulnerability has been resolved: ptrace: slightly saner 'get_dumpable()' logic The 'dumpability' of a task is fundamentally about the memory image of the task - t… CWE-269
 Improper Privilege Management 		CVE-2026-46333 2026-05-21 23:16 2026-05-15 Show GitHub Exploit DB Packet Storm
2606 8.8 HIGH
Network 		struktur libheif libheif is a HEIF and AVIF file format decoder and encoder. Versions 1.21.2 and prior contain a heap-buffer-overflow (write) vulnerability in the grid tile compositing, allowing an attacker to write … CWE-787
 Out-of-bounds Write 		CVE-2026-32740 2026-05-21 23:16 2026-05-20 Show GitHub Exploit DB Packet Storm
2607 9.1 CRITICAL
Network 		eclipse glassfish An authenticated Remote Code Execution (RCE) vulnerability was identified in GlassFish's Administration Console. A user with access to the panel can send crafted requests that allow the execution of … CWE-94
CWE-917
Code Injection
 Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection') 		CVE-2026-2586 2026-05-21 22:18 2026-05-20 Show GitHub Exploit DB Packet Storm
2608 9.6 CRITICAL
Network 		eclipse glassfish A critical Remote Code Execution (RCE) vulnerability was identified in the server-side template rendering mechanism used by the Glassfish gadget handler. The application processes .xml files and eval… CWE-917
 Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection') 		CVE-2026-2587 2026-05-21 22:18 2026-05-20 Show GitHub Exploit DB Packet Storm
2609 7.5 HIGH
Network 		nvidia tensorrt_llm NVIDIA TRT-LLM for any platform contains a vulnerability where an attacker could cause an unchecked return value to a null pointer dereference. A successful exploit of this vulnerability might lead … CWE-690
 Unchecked Return Value to NULL Pointer Dereference 		CVE-2026-24160 2026-05-21 22:09 2026-05-20 Show GitHub Exploit DB Packet Storm
2610 9.8 CRITICAL
Network 		nvidia tensorrt_llm NVIDIA TRT-LLM for any platform contains a vulnerability in MPI server, where an attacker could cause an unsafe deserialization. A successful exploit of this vulnerability might lead to code executio… CWE-502
 Deserialization of Untrusted Data 		CVE-2025-33255 2026-05-21 09:06 2026-05-20 Show GitHub Exploit DB Packet Storm