Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
206601 5.8 警告 Elitecore Technologies - Cyberoam UTM アプライアンスのデフォルト設定における SSL サーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2012-3372 2015-12-2 13:44 2012-07-5 Show GitHub Exploit DB Packet Storm
206602 5 警告 WHMCS Limited - WHMCS の submitticket.php におけるサブジェクト領域へ任意のコードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-0693 2015-12-2 13:44 2012-01-14 Show GitHub Exploit DB Packet Storm
206603 5 警告 シスコシステムズ - Cisco Web セキュリティ アプライアンスデバイスのソフトウェア上で稼動するパススルー FTP 機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2015-6386 2015-12-2 12:03 2015-11-30 Show GitHub Exploit DB Packet Storm
206604 7.2 危険 シスコシステムズ - Cisco Cloud Services Router 1000V 上で稼動する Cisco IOS における root 権限で任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2015-6385 2015-12-2 12:03 2015-11-30 Show GitHub Exploit DB Packet Storm
206605 9.4 危険 デル - Dell System Detect (DSD) がルート証明書と秘密鍵 (DSDTestProvider) をインストールする問題 - - 2015-11-30 17:50 2015-11-24 Show GitHub Exploit DB Packet Storm
206606 9.4 危険 デル - Dell Foundation Services (DFS) がルート証明書と秘密鍵 (eDellRoot) をインストールする問題 - - 2015-11-30 17:45 2015-11-24 Show GitHub Exploit DB Packet Storm
206607 6.8 警告 OpenStack - OpenStack Ironic Inspector における Flask コンソールにアクセスされる脆弱性 CWE-Other
その他 		CVE-2015-5306 2015-11-30 17:09 2015-10-15 Show GitHub Exploit DB Packet Storm
206608 6 警告 レッドハット - OpenStack Swift-on-File における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2015-5242 2015-11-30 17:08 2015-10-20 Show GitHub Exploit DB Packet Storm
206609 6.8 警告 CloudBees - CloudBees Jenkins におけるマスター上で任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-3665 2015-11-30 16:03 2014-10-30 Show GitHub Exploit DB Packet Storm
206610 6.8 警告 FFmpeg - FFmpeg の libavcodec/smacker.c の smka_decode_frame 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2015-8365 2015-11-30 11:34 2015-11-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
541 4.3 MEDIUM
Network 		- - Insufficient policy enforcement in IFrame Sandbox in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium se… CWE-693
 Protection Mechanism Failure 		CVE-2026-8563 2026-05-16 01:16 2026-05-15 Show GitHub Exploit DB Packet Storm
542 4.3 MEDIUM
Network 		- - Insufficient validation of untrusted input in SiteIsolation in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to bypass Site Isolation via a … CWE-20
 Improper Input Validation  		CVE-2026-8528 2026-05-16 01:16 2026-05-15 Show GitHub Exploit DB Packet Storm
543 7.5 HIGH
Network 		- - An issue in Nodemailer smtp_server before v.3.18.3 allows a remote attacker to cause a denial of service via the SMTPStream._write, lib/smtp-stream.js components CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-38728 2026-05-16 01:16 2026-05-16 Show GitHub Exploit DB Packet Storm
544 8.2 HIGH
Network 		- - A buffer underflow vulnerability has been identified in the ogg123 utility from the vorbis-tools 1.4.3 package in function remotethread in remote.c. This vulnerability occurs in the remote control fu… CWE-124
Buffer Underflow 		CVE-2026-34253 2026-05-16 01:16 2026-05-16 Show GitHub Exploit DB Packet Storm
545 - - - An Improper Access Control vulnerability in several internal API endpoints for Google Cloud Application Integration prior to 2026-01-23 allows a remote, unauthenticated attacker to disclose sensitive… CWE-862
 Missing Authorization 		CVE-2026-2031 2026-05-16 01:16 2026-05-16 Show GitHub Exploit DB Packet Storm
546 6.5 MEDIUM
Network 		opnsense opnsense OPNsense is a FreeBSD based firewall and routing platform. Prior to 26.1.7, a logic flaw in the OPNsense lockout_handler allows an unauthenticated attacker to continuously reset the authentication fa… CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2026-44195 2026-05-16 01:06 2026-05-14 Show GitHub Exploit DB Packet Storm
547 9.8 CRITICAL
Network 		apache tomcat Improper Input Validation vulnerability in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.21, from 10.1.0-M1 through 10.1.54, from 9.0.0.M1 through 9.0.117, from 10.0.0… CWE-20
 Improper Input Validation  		CVE-2026-41293 2026-05-16 00:57 2026-05-13 Show GitHub Exploit DB Packet Storm
548 9.8 CRITICAL
Network 		apache tomcat DEPRECATED: Authentication Bypass Issues vulnerability in digest authentication in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.21, from 10.1.0-M1 through 10.1.54, fr… CWE-592
 DEPRECATED: Authentication Bypass Issues 		CVE-2026-43512 2026-05-16 00:54 2026-05-13 Show GitHub Exploit DB Packet Storm
549 7.5 HIGH
Network 		espressif arduino-esp32 arduino-esp32 is an Arduino core for the ESP32, ESP32-S2, ESP32-S3, ESP32-C3, ESP32-C6 and ESP32-H2 microcontrollers. Prior to 3.3.8, the WebServer Digest authentication implementation in arduino-esp… CWE-287
NVD-CWE-noinfo
Improper Authentication 		CVE-2026-42855 2026-05-16 00:54 2026-05-13 Show GitHub Exploit DB Packet Storm
550 7.5 HIGH
Network 		apache tomcat Improper Handling of Case Sensitivity vulnerability in LockOutRealm in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.21, from 10.1.0-M1 through 10.1.54, from 9.0.0.M1 … CWE-178
 Improper Handling of Case Sensitivity 		CVE-2026-43513 2026-05-16 00:53 2026-05-13 Show GitHub Exploit DB Packet Storm