Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
204761 7.5 重要
Network 		アップル - Apple OS X のメッセージコンポーネントにおける重要な情報を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-1843 2016-05-23 18:26 2016-05-16 Show GitHub Exploit DB Packet Storm
204762 7.5 重要
Network 		アップル - 複数の Apple 製品の MapKit における重要な情報を取得される脆弱性 CWE-Other
その他 		CVE-2016-1842 2016-05-23 18:26 2016-05-16 Show GitHub Exploit DB Packet Storm
204763 7.8 重要
Local 		アップル - Apple OS X のカーネルの dtrace の実装における整数オーバーフローの脆弱性 CWE-Other
その他 		CVE-2016-1826 2016-05-23 18:26 2016-05-16 Show GitHub Exploit DB Packet Storm
204764 7.8 重要
Local 		アップル - Apple OS X の IOHIDFamily における特権付きコンテキスト内で任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2016-1825 2016-05-23 18:26 2016-05-16 Show GitHub Exploit DB Packet Storm
204765 7.8 重要
Local 		アップル - Apple OS X の IOFireWireFamily における特権付きコンテキスト内で任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2016-1822 2016-05-23 18:26 2016-05-16 Show GitHub Exploit DB Packet Storm
204766 7.8 重要
Local 		アップル - Apple OS X の IOAudioFamily における特権付きコンテキスト内で任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2016-1821 2016-05-23 18:26 2016-05-16 Show GitHub Exploit DB Packet Storm
204767 7.8 重要
Local 		アップル - Apple OS X の IOAudioFamily におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-1820 2016-05-23 18:26 2016-05-16 Show GitHub Exploit DB Packet Storm
204768 7.8 重要
Local 		アップル - Apple OS X の IOAcceleratorFamily における特権付きコンテキスト内で任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2016-1816 2016-05-23 18:26 2016-05-16 Show GitHub Exploit DB Packet Storm
204769 7.8 重要
Local 		アップル - Apple OS X の IOAcceleratorFamily における特権付きコンテキスト内で任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2016-1815 2016-05-23 18:26 2016-05-16 Show GitHub Exploit DB Packet Storm
204770 7.8 重要
Local 		アップル - Apple OS X の Intel Graphics Driver におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-1812 2016-05-23 18:26 2016-05-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
171 9.6 CRITICAL
Network 		- - CodeWhale is a DeepSeek + MiMo coding agent in terminal. Prior to 0.8.26, the task_create tool spawns durable sub-agents that inherit two insecure defaults, allow_shell defaults to true (config.rs:14… New CWE-94
Code Injection 		CVE-2026-45374 2026-05-30 13:17 2026-05-29 Show GitHub Exploit DB Packet Storm
172 7.4 HIGH
Network 		- - CodeWhale is a DeepSeek + MiMo coding agent in terminal. Prior to 0.8.26, although SSRF is validated against hostnames that resolve to private IPv6 addresses, when providing the IPV6 in‌‌ URL‌ as htt… New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-45373 2026-05-30 13:17 2026-05-29 Show GitHub Exploit DB Packet Storm
173 - - - LinkAce is a self-hosted archive to collect website links. Prior to 2.5.6, LinkAce contains a stored cross-site scripting vulnerability that allows a low-privilege user to execute arbitrary JavaScrip… New CWE-79
Cross-site Scripting 		CVE-2026-45343 2026-05-30 13:17 2026-05-29 Show GitHub Exploit DB Packet Storm
174 7.5 HIGH
Network 		- - Automad is a flat-file content management system and template engine. From 2.0.0-alpha.1 to 2.0.0-beta.27, a Broken Access Control vulnerability allows an unauthenticated attacker to retrieve the bcr… New CWE-200
CWE-306
Information Exposure
Missing Authentication for Critical Function 		CVE-2026-45332 2026-05-30 13:17 2026-05-29 Show GitHub Exploit DB Packet Storm
175 7.4 HIGH
Network 		- - CodeWhale is a DeepSeek + MiMo coding agent in terminal. Prior to 0.8.22, the fetch_url tool validates the initial URL's resolved IP address against a restricted-IP blocklist (is_restricted_ip()) to … New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-45310 2026-05-30 13:17 2026-05-29 Show GitHub Exploit DB Packet Storm
176 7.5 HIGH
Network 		- - Usagi-org ai-goofish-monitor contains an unauthenticated arbitrary file read vulnerability in the GET /api/prompts/{filename} endpoint on Windows deployments that allows unauthenticated remote attack… New CWE-36
 Absolute Path Traversal 		CVE-2026-10044 2026-05-30 13:17 2026-05-29 Show GitHub Exploit DB Packet Storm
177 8.1 HIGH
Network 		- - Microsoft UFO open-source framework for intelligent automation across devices and platforms. In 3.0.1-4-ge2626659, Microsoft UFO uses the user-controlled task_name value directly when constructing se… New CWE-22
CWE-73
Path Traversal
 External Control of File Name or Path 		CVE-2026-46402 2026-05-30 11:16 2026-05-28 Show GitHub Exploit DB Packet Storm
178 9.9 CRITICAL
Network 		- - OneUptime is an open-source monitoring and observability platform. Prior to 10.0.98, OneUptime uses the Node.js' vm module as an isolation primitive. This API was not designed for that and can be esc… New CWE-693
 Protection Mechanism Failure 		CVE-2026-45102 2026-05-30 11:16 2026-05-28 Show GitHub Exploit DB Packet Storm
179 7.8 HIGH
Local 		- - systeminformation is a System and OS information library for node.js. From 4.17.0 to 5.31.5, on Linux, systeminformation is vulnerable to command injection in networkInterfaces() when an active Netwo… New CWE-78
OS Command  		CVE-2026-44724 2026-05-30 11:16 2026-05-28 Show GitHub Exploit DB Packet Storm
180 - - - UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+. Prior to 5.12.1, when ujson.dump() writes to a file-like object and the write operation raises an excepti… New CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2026-44660 2026-05-30 11:16 2026-05-28 Show GitHub Exploit DB Packet Storm