Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
200061	5.8	警告	Apache Software Foundation オラクル	-	Apache Tomcat におけるリクエスト長の誤った識別を誘発される脆弱性	CWE-20 不適切な入力確認	CVE-2013-4286	2016-11-22 16:00	2013-09-23	Show	GitHub Exploit DB Packet Storm

200062	6.8	警告	日本電気 Apache Software Foundation オラクル	-	Apache Tomcat のフォーム認証機能におけるセッションにリクエストを挿入される脆弱性	CWE-287 不適切な認証	CVE-2013-2067	2016-11-22 16:00	2013-05-3	Show	GitHub Exploit DB Packet Storm

200063	5	警告	アップル OpenSSL Project ヒューレット・パッカードオラクル	-	OpenSSL におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2014-3571	2016-11-22 15:58	2014-05-14	Show	GitHub Exploit DB Packet Storm

200064	5.8	警告	アップルオラクル OpenBSD	-	OpenSSH の sshd における環境による制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-2532	2016-11-22 15:58	2014-03-16	Show	GitHub Exploit DB Packet Storm

200065	6.4	警告	Apache Software Foundation オラクル	-	Apache Tomcat の java/org/apache/coyote/http11/filters/ChunkedInputFilter.java における HTTP リクエストスマグリング攻撃を実行される脆弱性	CWE-Other その他	CVE-2014-0227	2016-11-22 15:58	2014-06-24	Show	GitHub Exploit DB Packet Storm

200066	4	警告	オラクル	-	Oracle MySQL の MySQL Server における Server : Optimizer に関する脆弱性	CWE-noinfo 情報不足	CVE-2015-0409	2016-11-22 15:57	2015-01-20	Show	GitHub Exploit DB Packet Storm

200067	5	警告	アップル日本電気 OpenSSL Project ヒューレット・パッカードオラクル	-	OpenSSL の crypto/asn1/a_type.c の ASN1_TYPE_cmp 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2015-0286	2016-11-22 15:56	2015-03-19	Show	GitHub Exploit DB Packet Storm

200068	10	危険	日本電気アップルサイバートラスト株式会社ヒューレット・パッカードオラクル GNU Project 日立	-	glibc ライブラリにバッファオーバーフローの脆弱性	CWE-119 CWE-Other	CVE-2015-0235	2016-11-22 15:56	2015-01-28	Show	GitHub Exploit DB Packet Storm

200069	5	警告	ヒューレット・パッカード日本電気日立オラクル NTP Project	-	NTP の ntpd の ntp_proto.c の receive 関数における意図しない関連付けの変更を誘発される脆弱性	CWE-Other その他	CVE-2014-9296	2016-11-22 15:56	2014-11-3	Show	GitHub Exploit DB Packet Storm

200070	7.5	危険	MySQL AB オラクル	-	Oracle MySQL の MySQL Server における Server : Security : Encryption に関する脆弱性	CWE-noinfo 情報不足	CVE-2015-0411	2016-11-22 15:55	2015-01-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1601	-		-	-	Uncontrolled search path for some Intel(R) Connectivity Performance Suite software installers before version 50.25.1121.193 within Ring 3: User Applications may allow an escalation of privilege. Unpr…	CWE-427 Uncontrolled Search Path Element	CVE-2026-20772	2026-05-14 00:52	2026-05-13	Show	GitHub Exploit DB Packet Storm

1602	-		-	-	Buffer overflow for the Intel(R) Data Center Graphics Driver for VMware ESXi software before version 2.0.2 within Ring 1: Device Drivers may allow an escalation of privilege. System software adversar…	CWE-120 Classic Buffer Overflow	CVE-2026-20794	2026-05-14 00:52	2026-05-13	Show	GitHub Exploit DB Packet Storm

1603	-		-	-	Out-of-bounds write for the Intel(R) Data Center Graphics Driver for VMware ESXi software before version 2.0.2 within Ring 1: Device Drivers may allow a denial of service. System software adversary w…	CWE-787 Out-of-bounds Write	CVE-2026-20879	2026-05-14 00:52	2026-05-13	Show	GitHub Exploit DB Packet Storm

1604	-		-	-	Improper access control for some Intel Vision software for all versions within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an unauthenticated user co…	CWE-284 Improper Access Control	CVE-2026-20887	2026-05-14 00:52	2026-05-13	Show	GitHub Exploit DB Packet Storm

1605	5.5	MEDIUM Adjacent	-	-	PowerSYSTEM Center email notification service is affected by a CRLF injection vulnerability when using SMTPS communication.	CWE-93 CRLF Injection	CVE-2026-35504	2026-05-14 00:52	2026-05-13	Show	GitHub Exploit DB Packet Storm

1606	8.2	HIGH Adjacent	-	-	PowerSYSTEM Center REST API endpoint for device account export allows an authenticated user with limited permissions to expose sensitive information normally restricted to administrative permissions …	CWE-863 Incorrect Authorization	CVE-2026-26289	2026-05-14 00:52	2026-05-13	Show	GitHub Exploit DB Packet Storm

1607	5.7	MEDIUM Adjacent	-	-	PowerSYSTEM Center REST API endpoint for devices allows a low privilege authenticated user to access information normally limited by operational permissions.	CWE-863 Incorrect Authorization	CVE-2026-33570	2026-05-14 00:52	2026-05-13	Show	GitHub Exploit DB Packet Storm

1608	6.3	MEDIUM Adjacent	-	-	PowerSYSTEM Center feature for device project groups allows an authenticated user with limited permissions to perform an unauthorized deletion of project groups.	CWE-863 Incorrect Authorization	CVE-2026-35555	2026-05-14 00:52	2026-05-13	Show	GitHub Exploit DB Packet Storm

1609	7.8	HIGH Local	-	-	The installation of Fuji Tellus adds a driver to the kernel which grants all users read and write permissions.	CWE-749 Exposed Dangerous Method or Function	CVE-2026-8108	2026-05-14 00:52	2026-05-13	Show	GitHub Exploit DB Packet Storm

1610	9.1	CRITICAL Network	-	-	The nexent v1.7.5.2 backend service contains an unauthorized arbitrary file deletion vulnerability in its ElasticSearch service interface. The DELETE /{index_name}/documents endpoint lacks proper aut…	CWE-552 Files or Directories Accessible to External Parties	CVE-2026-31215	2026-05-14 00:52	2026-05-13	Show	GitHub Exploit DB Packet Storm