Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201521 5.5 警告
Local 		libarchive - libarchive の archive_read_support_format_zip.c の trad_enc_decrypt_update 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2015-8927 2016-09-23 16:33 2015-04-12 Show GitHub Exploit DB Packet Storm
201522 5.5 警告
Local 		SUSE
libarchive
Canonical		 - libarchive の archive_read_support_format_rar.c の archive_read_format_rar_read_data 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2015-8926 2016-09-23 16:33 2015-04-12 Show GitHub Exploit DB Packet Storm
201523 5.5 警告
Local 		SUSE
libarchive
Canonical		 - libarchive の archive_read_support_format_mtree.c の readline 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2015-8925 2016-09-23 16:33 2015-04-12 Show GitHub Exploit DB Packet Storm
201524 5.5 警告
Local 		SUSE
libarchive
Canonical		 - libarchive の archive_read_support_format_tar.c の archive_read_format_tar_read_header 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2015-8924 2016-09-23 16:33 2015-04-12 Show GitHub Exploit DB Packet Storm
201525 6.5 警告
Network 		SUSE
libarchive
Canonical		 - libarchive の process_extra 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2015-8923 2016-09-23 16:33 2015-04-12 Show GitHub Exploit DB Packet Storm
201526 5.5 警告
Local 		SUSE
libarchive
Canonical		 - libarchive の archive_read_support_format_7zip.c の read_CodersInfo 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2015-8922 2016-09-23 16:33 2015-04-12 Show GitHub Exploit DB Packet Storm
201527 7.5 重要
Network 		SUSE
libarchive
Canonical		 - libarchive の archive_entry.c の ae_strtofflags 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2015-8921 2016-09-23 16:33 2015-04-12 Show GitHub Exploit DB Packet Storm
201528 5.5 警告
Local 		SUSE
libarchive
Canonical		 - libarchive の archive_read_support_format_ar.c の _ar_read_header 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2015-8920 2016-09-23 16:31 2015-04-12 Show GitHub Exploit DB Packet Storm
201529 7.5 重要
Network 		SUSE
libarchive
Canonical		 - libarchive の archive_read_support_format_lha.c の lha_read_file_extended_header 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2015-8919 2016-09-23 16:31 2015-04-12 Show GitHub Exploit DB Packet Storm
201530 7.5 重要
Network 		libarchive
SUSE		 - libarchive の archive_string.c の archive_string_append 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2015-8918 2016-09-23 16:31 2015-04-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1501 7.8 HIGH
Local 		- - The installation of Fuji Tellus adds a driver to the kernel which grants all users read and write permissions. CWE-749
 Exposed Dangerous Method or Function 		CVE-2026-8108 2026-05-14 00:52 2026-05-13 Show GitHub Exploit DB Packet Storm
1502 9.1 CRITICAL
Network 		- - The nexent v1.7.5.2 backend service contains an unauthorized arbitrary file deletion vulnerability in its ElasticSearch service interface. The DELETE /{index_name}/documents endpoint lacks proper aut… CWE-552
 Files or Directories Accessible to External Parties 		CVE-2026-31215 2026-05-14 00:52 2026-05-13 Show GitHub Exploit DB Packet Storm
1503 9.1 CRITICAL
Network 		- - The nexent v1.7.5.2 backend service contains an unauthorized arbitrary storage file deletion vulnerability in its file management API. The DELETE /storage/{object_name:path} endpoint lacks authentica… CWE-552
 Files or Directories Accessible to External Parties 		CVE-2026-31216 2026-05-14 00:52 2026-05-13 Show GitHub Exploit DB Packet Storm
1504 9.8 CRITICAL
Network 		- - The _load_model() function in the neural_magic_training.py script of the optimate project in commit a6d302f912b481c94370811af6b11402f51d377f (2024-07-21) allows arbitrary code execution. When a user … CWE-94
Code Injection 		CVE-2026-31217 2026-05-14 00:52 2026-05-13 Show GitHub Exploit DB Packet Storm
1505 8.8 HIGH
Network 		- - The superduper project thru v0.10.0 contains a critical remote code execution vulnerability in its query parsing component. The _parse_op_part() function in query.py uses the unsafe eval() function t… CWE-94
Code Injection 		CVE-2026-31225 2026-05-14 00:52 2026-05-13 Show GitHub Exploit DB Packet Storm
1506 9.8 CRITICAL
Network 		- - The TinyZero project thru commit 6652a63c57fa7e5ccde3fc9c598c7176ff15b839 (2025-58-24) contains a critical command injection vulnerability (CWE-78) in its HDFS file operation utilities. The vulnerabi… CWE-78
OS Command  		CVE-2026-31226 2026-05-14 00:52 2026-05-13 Show GitHub Exploit DB Packet Storm
1507 9.8 CRITICAL
Network 		- - The Adversarial Robustness Toolbox (ART) thru 1.20.1 contains a remote code execution vulnerability in its Kubeflow component. The robustness evaluation function for PyTorch models uses the unsafe ev… CWE-94
Code Injection 		CVE-2026-31228 2026-05-14 00:52 2026-05-13 Show GitHub Exploit DB Packet Storm
1508 9.8 CRITICAL
Network 		- - Exim before 4.99.3, in certain GnuTLS configurations, has a remotely reachable use-after-free in the BDAT body parsing path. It is triggered when a client sends a TLS close_notify mid-body during a C… CWE-416
 Use After Free 		CVE-2026-45185 2026-05-14 00:52 2026-05-13 Show GitHub Exploit DB Packet Storm
1509 9.8 CRITICAL
Network 		- - The torch-checkpoint-shrink.py script in the ml-engineering project in commit 0099885db36a8f06556efe1faf552518852cb1e0 (2025-20-27) contains an insecure deserialization vulnerability (CWE-502). The s… CWE-502
 Deserialization of Untrusted Data 		CVE-2026-31214 2026-05-14 00:51 2026-05-13 Show GitHub Exploit DB Packet Storm
1510 8.0 HIGH
Network 		- - An arbitrary file upload vulnerability in MK-Auth 23.01K4.9 allows attackers to execute arbitrary code via uploading a crafted PHP file. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2023-27753 2026-05-14 00:48 2026-05-13 Show GitHub Exploit DB Packet Storm