Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
199661	7.5	重要 Network	Squid-cache.org Canonical オラクル	-	Squid の Esi.cc におけるメモリ二重解放の脆弱性	CWE-20 不適切な入力確認	CVE-2016-4556	2016-11-17 17:57	2016-05-6	Show	GitHub Exploit DB Packet Storm

199662	7.5	重要 Network	Squid-cache.org Canonical オラクル	-	Squid の client_side_request.cc におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2016-4555	2016-11-17 17:57	2016-05-6	Show	GitHub Exploit DB Packet Storm

199663	8.6	重要 Network	Squid-cache.org Canonical	-	Squid の mime_header.cc における同一生成元の制限を回避される脆弱性	CWE-Other その他	CVE-2016-4554	2016-11-17 17:57	2016-05-6	Show	GitHub Exploit DB Packet Storm

199664	8.6	重要 Network	Squid-cache.org Canonical オラクル	-	Squid の client_side.cc におけるキャッシュポイズニング攻撃を実行される脆弱性	CWE-Other その他	CVE-2016-4553	2016-11-17 17:56	2016-05-6	Show	GitHub Exploit DB Packet Storm

199665	9.8	緊急 Network	Haxx Debian openSUSE project	-	libcurl における使用される接続を制御される脆弱性	CWE-Other その他	CVE-2016-5421	2016-11-17 17:39	2016-08-3	Show	GitHub Exploit DB Packet Storm

199666	7.5	重要 Network	Haxx Debian openSUSE project	-	cURL および libcurl における接続認証をハイジャックされる脆弱性	CWE-Other その他	CVE-2016-5420	2016-11-17 17:38	2016-08-3	Show	GitHub Exploit DB Packet Storm

199667	7.5	重要 Network	Haxx Debian openSUSE project	-	cURL および libcurl における制限を回避される脆弱性	CWE-310 暗号の問題	CVE-2016-5419	2016-11-17 17:38	2016-08-3	Show	GitHub Exploit DB Packet Storm

199668	7.8	重要 Local	libarchive	-	libarchive の archive_read_support_format_mtree.c の parse_device 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-4301	2016-11-17 17:21	2016-06-10	Show	GitHub Exploit DB Packet Storm

199669	7.8	重要 Local	libarchive レッドハット	-	libarchive の archive_read_support_format_7zip.c の read_SubStreamsInfo 関数における整数オーバーフローの脆弱性	CWE-Other その他	CVE-2016-4300	2016-11-17 17:21	2016-06-20	Show	GitHub Exploit DB Packet Storm

199670	7.8	重要 Local	libarchive レッドハット	-	libarchive の archive_read_support_format_rar.c の parse_codes 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-4302	2016-11-17 17:20	2015-06-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1781	8.8	HIGH Network	wavlink	wl-nu516u1_firmware	A vulnerability was detected in Wavlink NU516U1 240425. The affected element is the function WifiBasic of the file /cgi-bin/wireless.cgi. Performing a manipulation of the argument AuthMethod/EncrypTy…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-8229	2026-05-13 02:37	2026-05-10	Show	GitHub Exploit DB Packet Storm

1782	8.8	HIGH Network	wavlink	wl-nu516u1_firmware	A flaw has been found in Wavlink NU516U1 240425. The impacted element is the function sys_login1 of the file /cgi-bin/login.cgi. Executing a manipulation of the argument ipaddr can lead to os command…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-8230	2026-05-13 02:37	2026-05-10	Show	GitHub Exploit DB Packet Storm

1783	9.1	CRITICAL Network	php	php	In PHP versions 8.4.* before 8.4.21 and 8.5.* before 8.5.6, when an encoding name containing an embedded NUL byte is passed to mb_convert_encoding() or related mbstring functions, the code incorrectl…	CWE-125 Out-of-bounds Read	CVE-2026-6104	2026-05-13 02:35	2026-05-10	Show	GitHub Exploit DB Packet Storm

1784	7.5	HIGH Network	php	php	In PHP versions 8.4.* before 8.4.21 and 8.5.* before 8.5.6, DOMNode::C14N() method may process the XML data incorrectly, causing a circular linked list in the data structure representing the XML docu…	CWE-404 CWE-835 Improper Resource Shutdown or Release Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2026-7263	2026-05-13 02:35	2026-05-10	Show	GitHub Exploit DB Packet Storm

1785	6.5	MEDIUM Network	open5gs	open5gs	A vulnerability was detected in Open5GS up to 2.7.7. The affected element is the function update_authorized_pcc_rule_and_qos of the file /src/smf/npcf-handler.c of the component SMF. The manipulation…	CWE-404 Improper Resource Shutdown or Release	CVE-2026-8248	2026-05-13 02:35	2026-05-11	Show	GitHub Exploit DB Packet Storm

1786	6.5	MEDIUM Network	open5gs	open5gs	A vulnerability has been found in Open5GS up to 2.7.7. This affects the function smf_n4_build_qos_flow_to_modify_list of the file /src/smf/n4-build.c of the component SMF. Such manipulation leads to …	CWE-404 Improper Resource Shutdown or Release	CVE-2026-8250	2026-05-13 02:35	2026-05-11	Show	GitHub Exploit DB Packet Storm

1787	6.5	MEDIUM Network	open5gs	open5gs	A vulnerability was found in Open5GS up to 2.7.7. This impacts the function update_authorized_pcc_rule_and_qos of the file /src/smf/npcf-handler.c of the component SMF. Performing a manipulation resu…	CWE-404 Improper Resource Shutdown or Release	CVE-2026-8251	2026-05-13 02:35	2026-05-11	Show	GitHub Exploit DB Packet Storm

1788	6.5	MEDIUM Network	open5gs	open5gs	A vulnerability was determined in Open5GS up to 2.7.7. Affected is the function smf_nsmf_handle_create_data_in_hsmf of the component SMF. Executing a manipulation can lead to null pointer dereference…	CWE-404 CWE-476 Improper Resource Shutdown or Release NULL Pointer Dereference	CVE-2026-8252	2026-05-13 02:34	2026-05-11	Show	GitHub Exploit DB Packet Storm

1789	9.1	CRITICAL Network	vmware	spring_cloud_config	Spring Cloud Config allows applications to serve arbitrary text and binary files through the spring-cloud-config-server module. A malicious user, or attacker, can send a request using a specially cra…	CWE-22 Path Traversal	CVE-2026-40982	2026-05-13 02:30	2026-05-7	Show	GitHub Exploit DB Packet Storm

1790	8.1	HIGH Network	vmware	spring_cloud_config	The base directory (`spring.cloud.config.server.git.basedir`) used by the Spring Cloud Config Server to clone Git repositories to is susceptible to time-of-check-time-of-use (TOCTOU) attacks. Spring …	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2026-41002	2026-05-13 02:29	2026-05-7	Show	GitHub Exploit DB Packet Storm