Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
197601 7.8 重要
Local 		OSIsoft - OSIsoft PI Coresight および PI Web API における情報を公開される脆弱性 CWE-532
ログファイルからの情報漏えい 		CVE-2017-5153 2017-04-6 20:25 2017-01-10 Show GitHub Exploit DB Packet Storm
197602 5.3 警告
Network 		Eaton - 特定の Eaton ePDUs のレガシー製品におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2016-9357 2017-04-6 20:21 2016-11-16 Show GitHub Exploit DB Packet Storm
197603 6.5 警告
Local 		virglrenderer project - virglrenderer の vrend_renderer.c の vrend_create_vertex_elements_state 関数 におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2017-6386 2017-04-6 20:11 2017-02-28 Show GitHub Exploit DB Packet Storm
197604 6.5 警告
Local 		virglrenderer project - virglrenderer の vrend_renderer.c の add_shader_program 関数 におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2017-6317 2017-04-6 20:11 2017-02-7 Show GitHub Exploit DB Packet Storm
197605 6.5 警告
Local 		virglrenderer project - virglrenderer の vrend_decode.c の vrend_decode_reset 関数 におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2017-6210 2017-04-6 20:11 2017-02-10 Show GitHub Exploit DB Packet Storm
197606 6.5 警告
Local 		virglrenderer project - virglrenderer の Gallium ドライバの TGSI auxiliary モジュール内の tgsi_text.c におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2017-6209 2017-04-6 20:11 2017-01-23 Show GitHub Exploit DB Packet Storm
197607 5.5 警告
Local 		virglrenderer project - virglrenderer の vrend_renderer.c の vrend_create_vertex_elements_state 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2017-5994 2017-04-6 20:11 2017-02-7 Show GitHub Exploit DB Packet Storm
197608 6.5 警告
Local 		virglrenderer project - virglrenderer の vrend_blitter.c の vrend_renderer_init_blit_ctx 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2017-5993 2017-04-6 20:11 2017-02-15 Show GitHub Exploit DB Packet Storm
197609 6 警告
Local 		Fabrice Bellard - QEMU の hw/watchdog/wdt_i6300esb.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2016-10155 2017-04-6 20:06 2016-12-23 Show GitHub Exploit DB Packet Storm
197610 7.8 重要
Local 		LibGD project - GD Graphics Library の gd_io.c における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2016-10168 2017-04-6 20:04 2016-12-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2181 7.1 HIGH
Network 		devolutions devolutions_server Improper authorization in the Active Directory browsing feature in Devolutions Server allows a low-privileged authenticated user to obtain authentication material associated with a stored PAM provide… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-7325 2026-05-23 03:45 2026-05-23 Show GitHub Exploit DB Packet Storm
2182 4.3 MEDIUM
Network 		devolutions devolutions_server Improper access control in the entry activity log feature in Devolutions Server allows an authenticated user with access to an entry but without the required permission to retrieve that entry's activ… CWE-284
Improper Access Control 		CVE-2026-5171 2026-05-23 03:36 2026-05-23 Show GitHub Exploit DB Packet Storm
2183 5.4 MEDIUM
Network 		devolutions devolutions_server Missing authorization in the entry status management feature in Devolutions Server allows a non-administrator authenticated user to bypass the administrator-enforced Pending Approval flow and gain ac… CWE-862
 Missing Authorization 		CVE-2026-9251 2026-05-23 03:31 2026-05-23 Show GitHub Exploit DB Packet Storm
2184 6.1 MEDIUM
Network 		- - Cross Site Scripting vulnerability in Advantech WebAccess/SCADA 8.0-2015.08.16 allows a remote attacker to obtain sensitive information via the decryption field in the Create New Project User compone… CWE-79
Cross-site Scripting 		CVE-2026-36226 2026-05-23 03:28 2026-05-23 Show GitHub Exploit DB Packet Storm
2185 7.8 HIGH
Local 		- - Missing input source validation in the tool authorization prompt in Kiro CLI before 1.28.0 allows a local attacker to execute arbitrary tools, including shell commands, without user approval by craft… CWE-862
 Missing Authorization 		CVE-2026-9255 2026-05-23 03:28 2026-05-23 Show GitHub Exploit DB Packet Storm
2186 5.9 MEDIUM
Local 		- - HP ENVY 5000 series printers VERBASPP1N003.2237A.00 do not properly manage concurrent TCP connections to port 9100 (JetDirect/RAW printing). An unauthenticated remote attacker on the same network can… CWE-400
CWE-770
 Uncontrolled Resource Consumption
 Allocation of Resources Without Limits or Throttling 		CVE-2026-42626 2026-05-23 03:28 2026-05-23 Show GitHub Exploit DB Packet Storm
2187 6.5 MEDIUM
Network 		- - Typebot is a chatbot builder tool. In versions 3.15.2 and prior, the getResultLogs API endpoint authorizes the caller against the provided typebotId but fetches logs solely by resultId without verify… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-28444 2026-05-23 03:27 2026-05-23 Show GitHub Exploit DB Packet Storm
2188 8.7 HIGH
Network 		- - Typebot is a chatbot builder tool. In versions 3.15.2 and prior, the RatingButton component in the embed package renders the user-controlled customIcon.svg field directly via Solid's innerHTML direct… CWE-79
Cross-site Scripting 		CVE-2026-28445 2026-05-23 03:27 2026-05-23 Show GitHub Exploit DB Packet Storm
2189 10.0 CRITICAL
Network 		- - Typebot is a chatbot builder tool. In versions 3.15.2 and prior, the preview chat endpoint (POST /api/v1/typebots/{typebotId}/preview/startChat) allows unauthenticated users to achieve Server-Side Re… CWE-862
CWE-918
 Missing Authorization
Server-Side Request Forgery (SSRF)  		CVE-2026-33712 2026-05-23 03:27 2026-05-23 Show GitHub Exploit DB Packet Storm
2190 6.5 MEDIUM
Network 		- - Directory Traversal vulnerability in Easy Chat Server 3.1 allows a remote attacker to obtain sensitive information and execute arbitrary code via the UserName parameter CWE-22
Path Traversal 		CVE-2026-36227 2026-05-23 03:27 2026-05-23 Show GitHub Exploit DB Packet Storm