Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
199751 8.8 重要
Network 		アップル
Debian
Canonical		 - 複数の Apple 製品で使用される libxml2 の htmlCurrentChar 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-1833 2016-11-16 16:04 2016-05-16 Show GitHub Exploit DB Packet Storm
199752 8.8 重要
Network 		アップル
Debian
Canonical		 - 複数の Apple 製品で使用される libxml2 の xmlFAParsePosCharGroup 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-1840 2016-11-16 16:04 2016-05-16 Show GitHub Exploit DB Packet Storm
199753 8.8 重要
Network 		アップル
Debian
Canonical		 - 複数の Apple 製品で使用される libxml2 の xmlDictAddString 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-1839 2016-11-16 16:04 2016-05-16 Show GitHub Exploit DB Packet Storm
199754 8.8 重要
Network 		アップル
Debian
Canonical		 - 複数の Apple 製品で使用される libxml2 の xmlPArserPrintFileContextInternal 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-1838 2016-11-16 16:04 2016-05-16 Show GitHub Exploit DB Packet Storm
199755 8.8 重要
Network 		アップル
Debian
Canonical		 - 複数の Apple 製品で使用される libxml2 の htmlPArsePubidLiteral および htmlParseSystemiteral 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-1837 2016-11-16 16:04 2016-05-16 Show GitHub Exploit DB Packet Storm
199756 8.8 重要
Network 		アップル
Debian
Canonical		 - 複数の Apple 製品で使用される libxml2 の xmlDictComputeFastKey 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-1836 2016-11-16 16:04 2016-05-16 Show GitHub Exploit DB Packet Storm
199757 8.8 重要
Network 		アップル
Debian
Canonical		 - Apple iOS および OS X で使用される libxml2 の xmlSAX2AttributeNs 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-1835 2016-11-16 16:04 2016-05-16 Show GitHub Exploit DB Packet Storm
199758 8.4 重要
Local 		Objective Development Software GmbH - Little Snitch におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-8661 2016-11-16 14:53 2016-08-6 Show GitHub Exploit DB Packet Storm
199759 8.4 重要
Local 		DELL EMC (旧 EMC Corporation) - EMC Avamar Data Store および Avamar Virtual Edition における Avamar のサーバを侵害される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-0909 2016-11-16 14:46 2016-10-20 Show GitHub Exploit DB Packet Storm
199760 8.8 重要
Network 		dotCMS - dotCMS の "Site Browser > HTML pages" スクリーンにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2016-8908 2016-11-16 14:11 2016-01-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1391 7.5 HIGH
Network 		apple ipados
iphone_os
macos
tvos
watchos 		A logging issue was addressed with improved data redaction. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5,… New CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2026-28987 2026-05-13 02:16 2026-05-12 Show GitHub Exploit DB Packet Storm
1392 7.5 HIGH
Network 		apple ipados
iphone_os
macos
tvos
watchos 		A race condition was addressed with additional validation. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, … New CWE-362
Race Condition 		CVE-2026-28986 2026-05-13 02:16 2026-05-12 Show GitHub Exploit DB Packet Storm
1393 - - - Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error and is not a valid vulnerability. Notes: All references and descriptions in this candidate h… New - CVE-2026-8278 2026-05-13 02:16 2026-05-13 Show GitHub Exploit DB Packet Storm
1394 7.5 HIGH
Network 		apple ipados
iphone_os
macos
tvos
visionos
watchos 		A use after free issue was addressed with improved memory management. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS T… New CWE-416
 Use After Free 		CVE-2026-28969 2026-05-13 02:15 2026-05-12 Show GitHub Exploit DB Packet Storm
1395 7.5 HIGH
Network 		apple macos A denial of service issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may be able to modify protected par… New CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-28908 2026-05-13 02:10 2026-05-12 Show GitHub Exploit DB Packet Storm
1396 7.8 HIGH
Local 		apple macos A consistency issue was addressed with improved state handling. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may be able to gain root privileges. New CWE-269
 Improper Privilege Management 		CVE-2026-28919 2026-05-13 02:10 2026-05-12 Show GitHub Exploit DB Packet Storm
1397 4.4 MEDIUM
Local 		vmware spring_cloud_config When enabling trace logging in Spring Cloud Config Server sensitive information was placed in plain text in the logs. Spring Cloud Config 3.1.x: affected from 3.1.0 through 3.1.13 (inclusive); upgrad… Update CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2026-41004 2026-05-13 01:52 2026-05-7 Show GitHub Exploit DB Packet Storm
1398 8.8 HIGH
Network 		nocobase nocobase NocoBase is an AI-powered no-code/low-code platform for building business applications and enterprise solutions. Prior to version 2.0.39, the queryParentSQL() function in the core database package co… Update CWE-89
SQL Injection 		CVE-2026-41640 2026-05-13 01:51 2026-05-7 Show GitHub Exploit DB Packet Storm
1399 5.3 MEDIUM
Network 		- - Plack::Middleware::Statsd versions before 0.9.0 for Perl may leak user IP addresses. If the communication channel to the statsd daemon is not secured (for example, by sending UDP packets to a host o… Update CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2026-45179 2026-05-13 01:48 2026-05-11 Show GitHub Exploit DB Packet Storm
1400 7.5 HIGH
Network 		- - Catalyst::Plugin::Statsd versions through 0.10.0 for Perl may leak session ids. If the communication channel to the statsd daemon is not secured (for example, by sending UDP packets to a host on ano… Update CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2026-45180 2026-05-13 01:48 2026-05-11 Show GitHub Exploit DB Packet Storm