Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
195671	9.8	緊急 Network	アドビシステムズ	-	Adobe Flash Player の internal スクリプトオブジェクトにおける任意のコードを実行される脆弱性	CWE-416 解放済みメモリの使用	CVE-2017-3059	2017-04-19 12:24	2017-04-11	Show	GitHub Exploit DB Packet Storm

195672	7.8	重要 Local	アドビシステムズ	-	Adobe Flash Player のサウンドクラスにおける任意のコードを実行される脆弱性	CWE-416 解放済みメモリの使用	CVE-2017-3058	2017-04-19 12:24	2017-04-11	Show	GitHub Exploit DB Packet Storm

195673	5.3	警告 Network	Palo Alto Networks	-	Palo Alto Networks Terminal Services Agent における重要なセッション情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2017-6356	2017-04-19 11:11	2017-03-15	Show	GitHub Exploit DB Packet Storm

195674	5.3	警告 Network	OpenDaylight Project	-	OpenDaylight l2switch の hosttracker におけるホストの位置情報を変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-1610	2017-04-19 10:33	2015-03-20	Show	GitHub Exploit DB Packet Storm

195675	8.8	重要 Network	マカフィー	-	McAfee ePO Deep Command の Client Management and Gateway コンポーネントにおける任意のコマンドを実行される脆弱性	CWE-77 コマンドインジェクション	CVE-2015-8988	2017-04-18 19:09	2015-04-24	Show	GitHub Exploit DB Packet Storm

195676	5.3	警告 Network	マカフィー	-	McAfee Agent における不適切なアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2015-8987	2017-04-18 19:09	2015-02-17	Show	GitHub Exploit DB Packet Storm

195677	5.5	警告 Local	マカフィー	-	McAfee Advanced Threat Defense のハードウェアアプライアンスにおけるマルウェアファイルが検出されない脆弱性	CWE-254 セキュリティ機能	CVE-2015-8986	2017-04-18 19:09	2017-03-14	Show	GitHub Exploit DB Packet Storm

195678	9.8	緊急 Network	マカフィー	-	McAfee Cloud Analysis and Deconstructive Services における認可・権限・アクセス制御に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-9921	2017-04-18 19:07	2014-09-10	Show	GitHub Exploit DB Packet Storm

195679	5.3	警告 Network	Mobatek	-	MobaXterm Personal Edition の TFTP サーバにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2017-6805	2017-04-18 18:20	2017-03-10	Show	GitHub Exploit DB Packet Storm

195680	7.5	重要 Network	CA Technologies	-	CA Unified Infrastructure Management および CA Unified Infrastructure Management Snap におけるアクティブなセッション ID を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-9165	2017-04-18 18:16	2016-11-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1781	8.8	HIGH Network	wavlink	wl-nu516u1_firmware	A vulnerability was detected in Wavlink NU516U1 240425. The affected element is the function WifiBasic of the file /cgi-bin/wireless.cgi. Performing a manipulation of the argument AuthMethod/EncrypTy…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-8229	2026-05-13 02:37	2026-05-10	Show	GitHub Exploit DB Packet Storm

1782	8.8	HIGH Network	wavlink	wl-nu516u1_firmware	A flaw has been found in Wavlink NU516U1 240425. The impacted element is the function sys_login1 of the file /cgi-bin/login.cgi. Executing a manipulation of the argument ipaddr can lead to os command…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-8230	2026-05-13 02:37	2026-05-10	Show	GitHub Exploit DB Packet Storm

1783	9.1	CRITICAL Network	php	php	In PHP versions 8.4.* before 8.4.21 and 8.5.* before 8.5.6, when an encoding name containing an embedded NUL byte is passed to mb_convert_encoding() or related mbstring functions, the code incorrectl…	CWE-125 Out-of-bounds Read	CVE-2026-6104	2026-05-13 02:35	2026-05-10	Show	GitHub Exploit DB Packet Storm

1784	7.5	HIGH Network	php	php	In PHP versions 8.4.* before 8.4.21 and 8.5.* before 8.5.6, DOMNode::C14N() method may process the XML data incorrectly, causing a circular linked list in the data structure representing the XML docu…	CWE-404 CWE-835 Improper Resource Shutdown or Release Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2026-7263	2026-05-13 02:35	2026-05-10	Show	GitHub Exploit DB Packet Storm

1785	6.5	MEDIUM Network	open5gs	open5gs	A vulnerability was detected in Open5GS up to 2.7.7. The affected element is the function update_authorized_pcc_rule_and_qos of the file /src/smf/npcf-handler.c of the component SMF. The manipulation…	CWE-404 Improper Resource Shutdown or Release	CVE-2026-8248	2026-05-13 02:35	2026-05-11	Show	GitHub Exploit DB Packet Storm

1786	6.5	MEDIUM Network	open5gs	open5gs	A vulnerability has been found in Open5GS up to 2.7.7. This affects the function smf_n4_build_qos_flow_to_modify_list of the file /src/smf/n4-build.c of the component SMF. Such manipulation leads to …	CWE-404 Improper Resource Shutdown or Release	CVE-2026-8250	2026-05-13 02:35	2026-05-11	Show	GitHub Exploit DB Packet Storm

1787	6.5	MEDIUM Network	open5gs	open5gs	A vulnerability was found in Open5GS up to 2.7.7. This impacts the function update_authorized_pcc_rule_and_qos of the file /src/smf/npcf-handler.c of the component SMF. Performing a manipulation resu…	CWE-404 Improper Resource Shutdown or Release	CVE-2026-8251	2026-05-13 02:35	2026-05-11	Show	GitHub Exploit DB Packet Storm

1788	6.5	MEDIUM Network	open5gs	open5gs	A vulnerability was determined in Open5GS up to 2.7.7. Affected is the function smf_nsmf_handle_create_data_in_hsmf of the component SMF. Executing a manipulation can lead to null pointer dereference…	CWE-404 CWE-476 Improper Resource Shutdown or Release NULL Pointer Dereference	CVE-2026-8252	2026-05-13 02:34	2026-05-11	Show	GitHub Exploit DB Packet Storm

1789	9.1	CRITICAL Network	vmware	spring_cloud_config	Spring Cloud Config allows applications to serve arbitrary text and binary files through the spring-cloud-config-server module. A malicious user, or attacker, can send a request using a specially cra…	CWE-22 Path Traversal	CVE-2026-40982	2026-05-13 02:30	2026-05-7	Show	GitHub Exploit DB Packet Storm

1790	8.1	HIGH Network	vmware	spring_cloud_config	The base directory (`spring.cloud.config.server.git.basedir`) used by the Spring Cloud Config Server to clone Git repositories to is susceptible to time-of-check-time-of-use (TOCTOU) attacks. Spring …	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2026-41002	2026-05-13 02:29	2026-05-7	Show	GitHub Exploit DB Packet Storm