Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
194211	6.5	警告 Local	Fabrice Bellard	-	QEMU の hw/9pfs/9p-xattr.c の v9fs_list_xattr 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2017-8086	2017-06-2 16:43	2017-04-10	Show	GitHub Exploit DB Packet Storm

194212	8.8	重要 Local	NVIDIA	-	NVIDIA GeForce Experience の NVIDIA Web Helper.exe におけるアプリケーション実行ポリシーを侵害される脆弱性	CWE-254 セキュリティ機能	CVE-2017-6250	2017-06-2 16:36	2017-04-27	Show	GitHub Exploit DB Packet Storm

194213	9.8	緊急 Network	Linux	-	Linux Kernel の NFSv2/NFSv3 サーバの実装におけるポインタ演算エラーを誘発される脆弱性	CWE-189 数値処理の問題	CVE-2017-7895	2017-06-2 16:31	2017-04-22	Show	GitHub Exploit DB Packet Storm

194214	9.1	緊急 Network	Technicolor	-	Technicolor DPC3928SL のファームウェアにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-5135	2017-06-2 16:17	2017-04-4	Show	GitHub Exploit DB Packet Storm

194215	7.5	重要 Network	NetIQ Novell	-	複数の Novell および NetIQ 製品における暗号に関する脆弱性	CWE-310 暗号の問題	CVE-2017-5186	2017-06-2 16:12	2017-04-27	Show	GitHub Exploit DB Packet Storm

194216	7.5	重要 Network	GNU Project	-	GNU Binutils の dwarf.c におけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2017-8398	2017-06-2 16:03	2017-04-28	Show	GitHub Exploit DB Packet Storm

194217	7.5	重要 Network	GNU Project	-	GNU Binutils の Binary File Descriptor ライブラリにおけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2017-8397	2017-06-2 16:03	2017-04-26	Show	GitHub Exploit DB Packet Storm

194218	7.5	重要 Network	GNU Project	-	GNU Binutils の Binary File Descriptor ライブラリにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2017-8396	2017-06-2 16:03	2017-04-29	Show	GitHub Exploit DB Packet Storm

194219	7.5	重要 Network	GNU Project	-	GNU Binutils の Binary File Descriptor ライブラリにおける NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2017-8395	2017-06-2 16:03	2017-04-26	Show	GitHub Exploit DB Packet Storm

194220	7.5	重要 Network	GNU Project	-	GNU Binutils の Binary File Descriptor ライブラリにおける NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2017-8394	2017-06-2 16:03	2017-04-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1381	6.5	MEDIUM Network	-	-	A vulnerability exists in the ngx_http_scgi_module and ngx_http_uwsgi_module modules that may result in excessive memory allocation or an over-read of data. When scgi_pass or uwsgi_pass is configured…	CWE-789 CWE-823 Memory Allocation with Excessive Size Value Use of Out-of-range Pointer Offset	CVE-2026-42946	2026-05-14 01:27	2026-05-14	Show	GitHub Exploit DB Packet Storm

1382	8.8	HIGH Network	-	-	A potential vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow a remote authenticated user on the local network to execute arbitrary commands on the device.	CWE-78 OS Command	CVE-2026-6281	2026-05-14 01:27	2026-05-14	Show	GitHub Exploit DB Packet Storm

1383	8.1	HIGH Network	-	-	A potential improper file path validation vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow a remote authenticated user to move or access files belonging to ot…	CWE-22 Path Traversal	CVE-2026-6282	2026-05-14 01:27	2026-05-14	Show	GitHub Exploit DB Packet Storm

1384	4.8	MEDIUM Network	-	-	aria2c accepts a server certificate with incorrect Extended Key Usage (EKU). If the attackers compromise a certificate (with the associated private key) issued for a different purpose, they may be ab…	CWE-295 Improper Certificate Validation	CVE-2026-8367	2026-05-14 01:27	2026-05-14	Show	GitHub Exploit DB Packet Storm

1385	3.3	LOW Local	-	-	NanaZip is an open source file archive. From 5.0.1252.0 to before 6.0.1698.0, an uncontrolled recursion vulnerability exists in the Electron Archive (ASAR) parser in NanaZip. When opening a crafted .…	CWE-674 Uncontrolled Recursion	CVE-2026-42355	2026-05-14 01:26	2026-05-13	Show	GitHub Exploit DB Packet Storm

1386	3.3	LOW Local	-	-	NanaZip is an open source file archive. From 5.0.1252.0 to before 6.0.1698.0, a null-pointer dereference exists in the UFS/UFS2 filesystem image parser in NanaZip. The vulnerability is triggered when…	CWE-476 NULL Pointer Dereference	CVE-2026-42442	2026-05-14 01:26	2026-05-13	Show	GitHub Exploit DB Packet Storm

1387	3.3	LOW Local	-	-	NanaZip is an open source file archive. From 5.0.1252.0 to before 6.0.1698.0, an integer divide-by-zero exists in the UFS/UFS2 filesystem image parser in NanaZip. The vulnerability is triggered when …	CWE-369 Divide By Zero	CVE-2026-42443	2026-05-14 01:26	2026-05-13	Show	GitHub Exploit DB Packet Storm

1388	-		-	-	Rejected reason: This CVE ID has been rejected or withdrawn.	-	CVE-2026-8449	2026-05-14 01:17	2026-05-13	Show	GitHub Exploit DB Packet Storm

1389	4.3	MEDIUM Network	-	-	Missing authorization in the PAM module in Devolutions Server allows an authenticated user with a PAM license but no additional permissions to obtain OTP secret keys and recovery codes via crafted re…	CWE-862 Missing Authorization	CVE-2026-8407	2026-05-14 01:17	2026-05-13	Show	GitHub Exploit DB Packet Storm

1390	7.2	HIGH Network	-	-	Successful exploitation of the SQL injection vulnerability could allow a remote authenticated attacker to execute arbitrary commands via a specific interface, potentially enabling the attacker to acc…	CWE-89 SQL Injection	CVE-2026-6888	2026-05-14 01:17	2026-05-13	Show	GitHub Exploit DB Packet Storm