Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
201341	8.2	重要 Network	オラクル	-	Oracle PeopleSoft Products の PeopleSoft Enterprise PeopleTools における Integration Broker に関する脆弱性	CWE-Other その他	CVE-2016-8293	2016-10-31 11:56	2016-10-18	Show	GitHub Exploit DB Packet Storm

201342	4.2	警告 Network	オラクル	-	Oracle PeopleSoft Products の PeopleSoft Enterprise HCM における Talent Acquisition Manager に関する脆弱性	CWE-Other その他	CVE-2016-8292	2016-10-31 11:56	2016-10-18	Show	GitHub Exploit DB Packet Storm

201343	8.2	重要 Network	オラクル	-	Oracle PeopleSoft Products の PeopleSoft Enterprise PeopleTools における Mobile Application Platform に関する脆弱性	CWE-Other その他	CVE-2016-8291	2016-10-31 11:56	2016-10-18	Show	GitHub Exploit DB Packet Storm

201344	4.8	警告 Network	オラクル	-	Oracle PeopleSoft Products の PeopleSoft Enterprise HCM における Candidate Gateway に関する脆弱性	CWE-Other その他	CVE-2016-8285	2016-10-31 11:56	2016-10-18	Show	GitHub Exploit DB Packet Storm

201345	3.3	低 Local	オラクル	-	Oracle Sun Systems Products Suite の Solaris における Lynx に関する脆弱性	CWE-Other その他	CVE-2016-5615	2016-10-31 11:54	2016-10-18	Show	GitHub Exploit DB Packet Storm

201346	4.3	警告 Local	オラクル	-	Oracle Virtualization の Oracle VM VirtualBox における Core に関する脆弱性	CWE-Other その他	CVE-2016-5613	2016-10-31 11:53	2016-10-18	Show	GitHub Exploit DB Packet Storm

201347	4.3	警告 Local	オラクル	-	Oracle Virtualization の Oracle VM VirtualBox における Core に関する脆弱性	CWE-200 情報漏えい	CVE-2016-5611	2016-10-31 11:53	2016-10-18	Show	GitHub Exploit DB Packet Storm

201348	5.4	警告 Network	オラクル	-	Oracle PeopleSoft Products の PeopleSoft Enterprise SCM Services Procurement における Security に関する脆弱性	CWE-Other その他	CVE-2016-5600	2016-10-31 11:52	2016-10-18	Show	GitHub Exploit DB Packet Storm

201349	9.1	緊急 Network	オラクル	-	Oracle Supply Chain Products Suite の Oracle Advanced Supply Chain Planning における MscObieeSrvlt に関する脆弱性	CWE-Other その他	CVE-2016-5599	2016-10-31 11:52	2016-10-18	Show	GitHub Exploit DB Packet Storm

201350	4.3	警告 Network	オラクル	-	Oracle E-Business Suite の Oracle CRM Technical Foundation における Default Responsibility に関する脆弱性	CWE-200 情報漏えい	CVE-2016-5596	2016-10-31 11:51	2016-10-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2231	7.8	HIGH Local	microsoft	windows_11_24h2 windows_11_25h2 windows_11_26h1 windows_server_2025	Untrusted pointer dereference in Windows Kernel allows an authorized attacker to elevate privileges locally.	CWE-822 Untrusted Pointer Dereference	CVE-2026-40369	2026-05-15 02:52	2026-05-13	Show	GitHub Exploit DB Packet Storm

2232	7.8	HIGH Local	microsoft	windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_11_23h2 windows_11_24h2 windows_11_25h2 windows_11_26h1 windows_server_2012 windows_server_2016 w…	Heap-based buffer overflow in Windows Cryptographic Services allows an authorized attacker to elevate privileges locally.	CWE-122 Heap-based Buffer Overflow	CVE-2026-40377	2026-05-15 02:52	2026-05-13	Show	GitHub Exploit DB Packet Storm

2233	9.8	CRITICAL Network	yarbo	lawn_mower_firmware lawn_mower_pro_firmware	The MQTT broker embedded in Yarbo firmware v2.3.9 is configured to allow anonymous connections with no topic-level read or write ACLs. Any host on the same network can subscribe to sensitive telemetr…	CWE-306 Missing Authentication for Critical Function	CVE-2026-7415	2026-05-15 02:50	2026-05-8	Show	GitHub Exploit DB Packet Storm

2234	6.2	MEDIUM Physics	microsoft	windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_11_23h2 windows_11_24h2 windows_11_25h2 windows_11_26h1 windows_server_2012 windows_server_2016 w…	Heap-based buffer overflow in Volume Manager Extension Driver allows an authorized attacker to execute code with a physical attack.	CWE-122 CWE-125 CWE-197 Heap-based Buffer Overflow Out-of-bounds Read Numeric Truncation Error	CVE-2026-40380	2026-05-15 02:49	2026-05-13	Show	GitHub Exploit DB Packet Storm

2235	7.8	HIGH Local	microsoft	windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_11_23h2 windows_11_24h2 windows_11_25h2 windows_11_26h1 windows_server_2012 windows_server_2016 w…	Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.	CWE-843 Type Confusion	CVE-2026-34344	2026-05-15 02:48	2026-05-13	Show	GitHub Exploit DB Packet Storm

2236	7.0	HIGH Local	microsoft	windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_11_23h2 windows_11_24h2 windows_11_25h2 windows_11_26h1 windows_server_2016 windows_server_2019 w…	Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locall…	CWE-362 CWE-416 Race Condition Use After Free	CVE-2026-34345	2026-05-15 02:46	2026-05-13	Show	GitHub Exploit DB Packet Storm

2237	7.0	HIGH Local	microsoft	windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_11_23h2 windows_11_24h2 windows_11_25h2 windows_11_26h1 windows_server_2012 windows_server_2016 w…	Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.	CWE-416 Use After Free	CVE-2026-34347	2026-05-15 02:45	2026-05-13	Show	GitHub Exploit DB Packet Storm

2238	6.5	MEDIUM Network	microsoft	windows_server_2025	Null pointer dereference in Windows Storport Miniport Driver allows an unauthorized attacker to deny service over a network.	CWE-476 NULL Pointer Dereference	CVE-2026-34350	2026-05-15 02:44	2026-05-13	Show	GitHub Exploit DB Packet Storm

2239	7.0	HIGH Local	microsoft	windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_11_23h2 windows_11_24h2 windows_11_25h2 windows_11_26h1 windows_server_2012 windows_server_2016 w…	Concurrent execution using shared resource with improper synchronization ('race condition') in Windows TCP/IP allows an authorized attacker to elevate privileges locally.	CWE-362 Race Condition	CVE-2026-34351	2026-05-15 02:44	2026-05-13	Show	GitHub Exploit DB Packet Storm

2240	6.1	MEDIUM Network	postorius_project	postorius	Postorius through 1.3.13 does not escape HTML in the message subject when rendering it in the Held messages pop-up, as exploited in the wild in May 2026.	CWE-79 Cross-site Scripting	CVE-2026-44742	2026-05-15 02:42	2026-05-8	Show	GitHub Exploit DB Packet Storm