Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
199271 6.8 警告 日本電気
NTP Project		 - Linux および OS X 上で稼動する NTP の ntpd の ntp_io.c の read_network_packet 関数における制限されたパケットを偽装される脆弱性 CWE-Other
その他 		CVE-2014-9751 2016-11-9 16:51 2014-11-3 Show GitHub Exploit DB Packet Storm
199272 5.8 警告 日本電気
NTP Project		 - NTP の ntpd の ntp_io.c におけるプロセスメモリから重要な情報を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-9750 2016-11-9 16:51 2014-11-3 Show GitHub Exploit DB Packet Storm
199273 5 警告 日本電気
日立
NTP Project		 - NTP の ntp-keygen の util/ntp-keygen.c における暗号保護メカニズムを破られる脆弱性 CWE-Other
その他 		CVE-2014-9294 2016-11-9 16:47 2014-11-3 Show GitHub Exploit DB Packet Storm
199274 5.9 警告
Network 		日立
オラクル		 - Oracle Java SE および Java SE Embedded における Networking に関する脆弱性 CWE-200
情報漏えい 		CVE-2016-5597 2016-11-9 16:41 2016-10-18 Show GitHub Exploit DB Packet Storm
199275 9.6 緊急
Network 		日立
オラクル		 - Oracle Java SE および Java SE Embedded における Hotspot に関する脆弱性 CWE-Other
その他 		CVE-2016-5582 2016-11-9 16:41 2016-10-18 Show GitHub Exploit DB Packet Storm
199276 8.3 重要
Network 		日立
オラクル		 - Oracle Java SE および Java SE Embedded における Hotspot に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-5573 2016-11-9 16:41 2016-10-18 Show GitHub Exploit DB Packet Storm
199277 9.6 緊急
Network 		日立
オラクル		 - Oracle Java SE における AWT に関する脆弱性 CWE-Other
その他 		CVE-2016-5568 2016-11-9 16:41 2016-10-18 Show GitHub Exploit DB Packet Storm
199278 9.6 緊急
Network 		日立
オラクル		 - Oracle Java SE における 2D に関する脆弱性 CWE-Other
その他 		CVE-2016-5556 2016-11-9 16:41 2016-10-18 Show GitHub Exploit DB Packet Storm
199279 4.3 警告
Network 		日立
オラクル		 - Oracle Java SE および Java SE Embedded における JMX に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-5554 2016-11-9 16:41 2016-10-18 Show GitHub Exploit DB Packet Storm
199280 3.1
Network 		日立
オラクル		 - Oracle Java SE および Java SE Embedded における Libraries に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-5542 2016-11-9 16:40 2016-10-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1471 7.8 HIGH
Local 		qualcomm fastconnect_6900_firmware
fastconnect_7800_firmware
iqx5121_firmware
iqx7181_firmware
qca0000_firmware
sc8380xp_firmware
sd865_5g_firmware
snapdragon_xr2_5g_firmware
snapdrago… 		Memory corruption when processing camera sensor input/output control codes with invalid output buffers. CWE-822
CWE-119
 Untrusted Pointer Dereference
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2025-47405 2026-05-7 03:03 2026-05-5 Show GitHub Exploit DB Packet Storm
1472 7.8 HIGH
Local 		qualcomm fastconnect_6200_firmware
fastconnect_6900_firmware
fastconnect_7800_firmware
iqx5121_firmware
iqx7181_firmware
qca0000_firmware
sc8380xp_firmware
sd865_5g_firmware
sm6250_fir… 		Memory corruption when another driver calls an IOCTL with invalid input/output buffer. CWE-822
CWE-119
 Untrusted Pointer Dereference
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2025-47408 2026-05-7 03:03 2026-05-5 Show GitHub Exploit DB Packet Storm
1473 5.5 MEDIUM
Local 		qualcomm cologne_firmware
fastconnect_6700_firmware
fastconnect_6900_firmware
fastconnect_7800_firmware
iqx5121_firmware
iqx7181_firmware
qca0000_firmware
qcm5430_firmware
qcm6490_firm… 		Information Disclosure while processing IOCTL handler callbacks without verifying buffer size. CWE-126
CWE-125
 Buffer Over-read
Out-of-bounds Read 		CVE-2025-47406 2026-05-7 03:02 2026-05-5 Show GitHub Exploit DB Packet Storm
1474 7.0 HIGH
Local 		qualcomm cq7790_firmware
cq8725s_firmware
fastconnect_6200_firmware
fastconnect_6700_firmware
fastconnect_6900_firmware
fastconnect_7800_firmware
g2_gen_1_firmware
molokai_firmware
net… 		Memory corruption while creating a process on the digital signal processor due to allocation failure at the kernel level. CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2025-47407 2026-05-7 03:02 2026-05-5 Show GitHub Exploit DB Packet Storm
1475 7.8 HIGH
Local 		qualcomm qxm1096_firmware
robotics_rb2_firmware
robotics_rb5_firmware
sa4150p_firmware
sa4155p_firmware
sa6145p_firmware
sa6150p_firmware
sa6155p_firmware
sa7255p_firmware
sa7775p_f… 		Memory Corruption when copying data from a freed source while executing performance counter deselect operation. CWE-416
 Use After Free 		CVE-2026-24082 2026-05-7 03:02 2026-05-5 Show GitHub Exploit DB Packet Storm
1476 7.8 HIGH
Local 		qualcomm cologne_firmware
fastconnect_6900_firmware
fastconnect_7800_firmware
sc8380xp_firmware
snapdragon_ar1_gen_1_firmware
wcd9378c_firmware
wcd9380_firmware
wcd9385_firmware
wcn786… 		Memory corruption while processing IOCTL command when device is in power-save state. CWE-749
CWE-787
 Exposed Dangerous Method or Function
 Out-of-bounds Write 		CVE-2026-25266 2026-05-7 03:02 2026-05-5 Show GitHub Exploit DB Packet Storm
1477 9.8 CRITICAL
Network 		qualcomm qca7005_firmware Buffer overflow due to incorrect authorization in PLC FW CWE-863
 Incorrect Authorization 		CVE-2026-25293 2026-05-7 03:01 2026-05-5 Show GitHub Exploit DB Packet Storm
1478 9.1 CRITICAL
Network 		apache opennlp XML External Entity (XXE) via Unsanitized Dictionary Parsing in Apache OpenNLP DictionaryEntryPersistor Versions Affected: before 2.5.9, before 3.0.0-M3 Description: The DictionaryEntryPersistor … CWE-611
XXE 		CVE-2026-40682 2026-05-7 03:00 2026-05-5 Show GitHub Exploit DB Packet Storm
1479 9.8 CRITICAL
Network 		apache opennlp Arbitrary Class Instantiation via Model Manifest in Apache OpenNLP ExtensionLoader Versions Affected: before 2.5.9, before 3.0.0-M3 Description:  The ExtensionLoader.instantiateExtension(C… CWE-470
Unsafe Reflection 		CVE-2026-42027 2026-05-7 03:00 2026-05-5 Show GitHub Exploit DB Packet Storm
1480 9.8 CRITICAL
Network 		nginxui nginx_ui Nginx UI is a web user interface for the Nginx web server. In version 2.3.5, an unauthenticated bootstrap takeover exists in nginx-ui during the initial installation window exposed by POST /api/insta… CWE-284
CWE-306
Improper Access Control
Missing Authentication for Critical Function 		CVE-2026-42222 2026-05-7 02:47 2026-05-5 Show GitHub Exploit DB Packet Storm