Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198351 7 重要
Local 		Google
Linux		 - Qualcomm Secure Execution Environment Communicator ドライバにおける権限を昇格される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-8480 2017-02-23 18:24 2016-09-28 Show GitHub Exploit DB Packet Storm
198352 7 重要
Local 		Google
Linux		 - Qualcomm Wi-Fi ドライバにおける権限を昇格される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-8476 2017-02-23 18:24 2016-11-14 Show GitHub Exploit DB Packet Storm
198353 7 重要
Local 		Google
Linux		 - Qualcomm Wi-Fi ドライバにおける権限を昇格される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-8421 2017-02-23 18:24 2016-10-26 Show GitHub Exploit DB Packet Storm
198354 7 重要
Local 		Google
Linux		 - Qualcomm Wi-Fi ドライバにおける権限を昇格される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-8420 2017-02-23 18:24 2016-10-26 Show GitHub Exploit DB Packet Storm
198355 7 重要
Local 		Google
Linux		 - Qualcomm Wi-Fi ドライバにおける権限を昇格される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-8419 2017-02-23 18:23 2016-10-26 Show GitHub Exploit DB Packet Storm
198356 9.8 緊急
Network 		Google - Qualcomm crypto ドライバにおけるリモートでコードを実行される脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-8418 2017-02-23 18:23 2016-10-10 Show GitHub Exploit DB Packet Storm
198357 4.7 警告
Local 		Google
Linux		 - Qualcomm Secure Execution Environment Communicator における情報を公開される脆弱性 CWE-200
情報漏えい 		CVE-2016-8414 2017-02-23 18:23 2016-09-23 Show GitHub Exploit DB Packet Storm
198358 7 重要
Local 		Google
Linux		 - Qualcomm サウンドドライバにおける権限を昇格される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-0436 2017-02-23 18:09 2017-02-6 Show GitHub Exploit DB Packet Storm
198359 7 重要
Local 		Google
Linux		 - Qualcomm サウンドドライバにおける権限を昇格される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-0435 2017-02-23 18:09 2017-02-6 Show GitHub Exploit DB Packet Storm
198360 7 重要
Local 		Google
Linux		 - Synaptics タッチスクリーンドライバにおける権限を昇格される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-0434 2017-02-23 18:09 2017-02-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2051 7.1 HIGH
Network 		- - The Salesforce module before 1.x-1.0.1 for Backdrop CMS does not properly use a random state parameter to protect the authorization flow against CSRF attacks. CWE-352
 Origin Validation Error 		CVE-2026-45430 2026-05-14 00:43 2026-05-12 Show GitHub Exploit DB Packet Storm
2052 5.4 MEDIUM
Network 		- - A Stored Cross-Site Scripting (XSS) vulnerability was discovered in the File Management module of FluentCMS 1.2.3. The flaw allows an authenticated administrator to upload crafted SVG files containin… CWE-79
Cross-site Scripting 		CVE-2025-70842 2026-05-14 00:43 2026-05-13 Show GitHub Exploit DB Packet Storm
2053 7.7 HIGH
Network 		- - Xibo is an open source digital signage platform with a web content management system and Windows display player software. Prior to 4.4.1, an authenticated Server-Side Request Forgery (SSRF) vulnerabi… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-42141 2026-05-14 00:43 2026-05-13 Show GitHub Exploit DB Packet Storm
2054 5.3 MEDIUM
Network 		- - Statamic is a Laravel and Git powered content management system (CMS). Prior to 5.73.21 and 6.15.0, responses from the forgot password forms hinted at whether an account existed for a given email add… CWE-204
 Response Discrepancy Information Exposure 		CVE-2026-44306 2026-05-14 00:43 2026-05-13 Show GitHub Exploit DB Packet Storm
2055 - - - Net::IMAP implements Internet Message Access Protocol (IMAP) client functionality in Ruby. Prior to versions 0.4.24, 0.5.14, and 0.6.4, Net::IMAP::ResponseReader has quadratic time complexity when re… CWE-407
 Inefficient Algorithmic Complexity 		CVE-2026-42245 2026-05-14 00:39 2026-05-10 Show GitHub Exploit DB Packet Storm
2056 - - - Net::IMAP implements Internet Message Access Protocol (IMAP) client functionality in Ruby. Prior to versions 0.3.10, 0.4.24, 0.5.14, and 0.6.4, a man-in-the-middle attacker can cause Net::IMAP#startt… CWE-392
CWE-393
CWE-636
CWE-754
CWE-841
 Missing Report of Error Condition
 Return of Wrong Status Code
 Not Failing Securely ('Failing Open')
 Improper Check for Unusual or Exceptional Conditions
 Improper Enforcement of Behavioral Workflow 		CVE-2026-42246 2026-05-14 00:39 2026-05-10 Show GitHub Exploit DB Packet Storm
2057 - - - Net::IMAP implements Internet Message Access Protocol (IMAP) client functionality in Ruby. From versions 0.4.0 to before 0.4.24, 0.5.0 to before 0.5.14, and 0.6.0 to before 0.6.4, when authenticating… CWE-770
CWE-1322
 Allocation of Resources Without Limits or Throttling
 Use of Blocking Code in Single-threaded, Non-blocking Context 		CVE-2026-42256 2026-05-14 00:39 2026-05-10 Show GitHub Exploit DB Packet Storm
2058 - - - Net::IMAP implements Internet Message Access Protocol (IMAP) client functionality in Ruby. Prior to versions 0.4.24, 0.5.14, and 0.6.4, several Net::IMAP commands accept a raw string argument that is… CWE-77
CWE-93
Command Injection
CRLF Injection 		CVE-2026-42257 2026-05-14 00:39 2026-05-10 Show GitHub Exploit DB Packet Storm
2059 - - - Net::IMAP implements Internet Message Access Protocol (IMAP) client functionality in Ruby. Prior to versions 0.4.24, 0.5.14, and 0.6.4, symbol arguments to commands are vulnerable to a CRLF Injection… CWE-77
CWE-93
Command Injection
CRLF Injection 		CVE-2026-42258 2026-05-14 00:39 2026-05-10 Show GitHub Exploit DB Packet Storm
2060 8.0 HIGH
Network 		- - Zen is a firefox-based browser. Prior to 1.19.9b, Zen Browser ships a Mozilla Application Resource (MAR) updater (org.mozilla.updater) that has had all MAR signature verification stripped from the Fi… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2026-41431 2026-05-14 00:37 2026-05-12 Show GitHub Exploit DB Packet Storm