Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
202901 9.8 緊急
Network 		General Electric Company - General Electric Multilink スイッチのファームウェアにおける構成設定を変更される脆弱性 CWE-Other
その他 		CVE-2016-2310 2016-06-13 17:07 2016-06-7 Show GitHub Exploit DB Packet Storm
202902 9.8 緊急
Network 		VideoLAN
Debian		 - VideoLAN VLC media player の modules/codec/adpcm.c の DecodeAdpcmImaQT 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-5108 2016-06-13 16:52 2016-06-7 Show GitHub Exploit DB Packet Storm
202903 8.8 重要
Network 		- HPE Project and Portfolio Management Center における任意のコマンドを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2016-4370 2016-06-13 16:29 2016-06-8 Show GitHub Exploit DB Packet Storm
202904 8.8 重要
Network 		ヒューレット・パッカード・エンタープライズ - HPE Discovery and Dependency Mapping Inventory における任意のコマンドを実行される脆弱性 CWE-Other
その他 		CVE-2016-4369 2016-06-13 16:29 2016-06-6 Show GitHub Exploit DB Packet Storm
202905 9.8 緊急
Network 		ヒューレット・パッカード・エンタープライズ - HPE Universal CMDB などの製品における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-4368 2016-06-13 16:29 2016-06-6 Show GitHub Exploit DB Packet Storm
202906 7.5 重要
Network 		ヒューレット・パッカード・エンタープライズ - HPE Universal CMDB の Universal Discovery コンポーネントにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-4367 2016-06-13 16:29 2016-06-6 Show GitHub Exploit DB Packet Storm
202907 7.5 重要
Network 		- HPE LoadRunner および Performance Center におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2016-4361 2016-06-13 16:29 2016-05-31 Show GitHub Exploit DB Packet Storm
202908 9.1 緊急
Network 		- HPE LoadRunner および Performance Center におけるデータを変更される脆弱性 CWE-noinfo
情報不足 		CVE-2016-4360 2016-06-13 16:29 2016-05-31 Show GitHub Exploit DB Packet Storm
202909 9.1 緊急
Network 		Trihedral Engineering Ltd. - Trihedral VTScada の WAP インターフェースにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2016-4532 2016-06-13 16:12 2016-06-6 Show GitHub Exploit DB Packet Storm
202910 9.1 緊急
Network 		Trihedral Engineering Ltd. - Trihedral VTScada の WAP インターフェースにおける認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2016-4510 2016-06-13 16:12 2016-06-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1531 6.5 MEDIUM
Network 		- - Exposure of sensitive information to an unauthorized actor in Power Automate allows an authorized attacker to disclose information over a network. CWE-200
Information Exposure 		CVE-2026-40374 2026-05-14 00:34 2026-05-13 Show GitHub Exploit DB Packet Storm
1532 9.3 CRITICAL
Network 		- - Exposure of sensitive information to an unauthorized actor in Azure Entra ID allows an unauthorized attacker to perform spoofing over a network. CWE-200
Information Exposure 		CVE-2026-40379 2026-05-14 00:34 2026-05-13 Show GitHub Exploit DB Packet Storm
1533 7.8 HIGH
Local 		- - Improper access control in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally. CWE-284
Improper Access Control 		CVE-2026-40381 2026-05-14 00:34 2026-05-13 Show GitHub Exploit DB Packet Storm
1534 4.3 MEDIUM
Network 		- - User interface (ui) misrepresentation of critical information in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network. CWE-451
 User Interface (UI) Misrepresentation of Critical Information 		CVE-2026-40416 2026-05-14 00:34 2026-05-13 Show GitHub Exploit DB Packet Storm
1535 7.8 HIGH
Local 		- - Weak authentication in Dynamics Business Central allows an authorized attacker to elevate privileges locally. CWE-1390
 Weak Authentication 		CVE-2026-40417 2026-05-14 00:34 2026-05-13 Show GitHub Exploit DB Packet Storm
1536 7.8 HIGH
Local 		- - Use after free in Microsoft Office Click-To-Run allows an authorized attacker to elevate privileges locally. CWE-416
 Use After Free 		CVE-2026-40418 2026-05-14 00:34 2026-05-13 Show GitHub Exploit DB Packet Storm
1537 7.8 HIGH
Local 		- - Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally. CWE-416
 Use After Free 		CVE-2026-40419 2026-05-14 00:34 2026-05-13 Show GitHub Exploit DB Packet Storm
1538 8.8 HIGH
Local 		- - Improper access control in Microsoft Office Click-To-Run allows an authorized attacker to elevate privileges locally. CWE-284
Improper Access Control 		CVE-2026-40420 2026-05-14 00:34 2026-05-13 Show GitHub Exploit DB Packet Storm
1539 7.2 HIGH
Network 		- - An administrative user with access to configure webhooks can execute arbitrary commands by configuring and then triggering webhooks containing specific FreeMarker template syntax.  This issue affe… CWE-77
Command Injection 		CVE-2026-8431 2026-05-14 00:34 2026-05-13 Show GitHub Exploit DB Packet Storm
1540 8.8 HIGH
Network 		- - An issue in MongoDB Server's time-series collection implementation allows an authenticated user with database write privileges to trigger an out-of-bounds memory write in the mongod process. The issu… CWE-787
 Out-of-bounds Write 		CVE-2026-8053 2026-05-14 00:34 2026-05-13 Show GitHub Exploit DB Packet Storm