Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 14, 2026, 12:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
206941 4.3 警告 アップル - Apple OS X の X.509 証明書の信頼性評価の実装におけるエンドポイントを偽装される脆弱性 CWE-Other
その他 		CVE-2015-5894 2015-10-13 16:58 2015-09-30 Show GitHub Exploit DB Packet Storm
206942 2.1 注意 アップル - Apple OS X の SMB の SMBClient における重要なカーネルメモリのレイアウト情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2015-5893 2015-10-13 16:58 2015-09-30 Show GitHub Exploit DB Packet Storm
206943 7.2 危険 アップル - Apple OS X のカーネルの SMB の実装における権限を取得される脆弱性 CWE-119
バッファエラー 		CVE-2015-5891 2015-10-13 16:58 2015-09-30 Show GitHub Exploit DB Packet Storm
206944 7.2 危険 アップル - Apple OS X の IOGraphics における権限を取得される脆弱性 CWE-119
バッファエラー 		CVE-2015-5890 2015-10-13 16:58 2015-09-30 Show GitHub Exploit DB Packet Storm
206945 7.2 危険 アップル - Apple OS X の remote_cmds コンポーネントの rsh における root 権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2015-5889 2015-10-13 16:58 2015-09-30 Show GitHub Exploit DB Packet Storm
206946 7.2 危険 アップル - Apple OS X の Install Framework Legacy コンポーネントにおける root 権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2015-5888 2015-10-13 16:58 2015-09-30 Show GitHub Exploit DB Packet Storm
206947 10 危険 アップル - Apple OS X の Secure Transport の TLS Handshake Protocol の実装における脆弱性 CWE-Other
その他 		CVE-2015-5887 2015-10-13 16:58 2015-09-30 Show GitHub Exploit DB Packet Storm
206948 3.3 注意 アップル - Apple OS X のメールの Mail Drop 機能における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2015-5884 2015-10-13 16:58 2015-09-30 Show GitHub Exploit DB Packet Storm
206949 5 警告 アップル - Apple OS X のターミナルの双方向テキストの表示および選択の実装におけるテキスト文書のコンテンツを偽造される脆弱性 CWE-20
不適切な入力確認 		CVE-2015-5883 2015-10-13 16:58 2015-09-30 Show GitHub Exploit DB Packet Storm
206950 2.1 注意 アップル - Apple OS X のメモアプリケーションにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2015-5878 2015-10-13 16:58 2015-09-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
391 6.3 MEDIUM
Network 		- - FastGPT is an AI Agent building platform. Prior to version 4.14.17, FastGPT had an inconsistent SSRF protection gap in MCP tool URL handling. The direct MCP preview/run endpoints already rejected int… Update CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-44284 2026-05-13 01:40 2026-05-9 Show GitHub Exploit DB Packet Storm
392 - - - Linkwarden is a self-hosted, open-source collaborative bookmark manager to collect, organize and archive webpages. In versions 2.14.0 and prior, the archive upload endpoint (POST /api/v1/archives/[li… Update CWE-79
Cross-site Scripting 		CVE-2026-42455 2026-05-13 01:39 2026-05-9 Show GitHub Exploit DB Packet Storm
393 9.1 CRITICAL
Network 		- - Linkwarden is a self-hosted, open-source collaborative bookmark manager to collect, organize and archive webpages. Prior to version 2.13.0, a Server-Side Request Forgery (SSRF) vulnerability in the f… Update CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-44313 2026-05-13 01:39 2026-05-9 Show GitHub Exploit DB Packet Storm
394 7.3 HIGH
Network 		- - A vulnerability was detected in inkeep agents 0.58.14. This vulnerability affects the function createDevContext of the file agents-api/src/middleware/runAuth.ts of the component runAuth Middleware. P… New CWE-287
CWE-288
Improper Authentication
Authentication Bypass Using an Alternate Path or Channel 		CVE-2026-8321 2026-05-13 01:38 2026-05-12 Show GitHub Exploit DB Packet Storm
395 5.3 MEDIUM
Network 		- - A weakness has been identified in aiwaves-cn agents up to e8c4e3c2d19739d3dff59e577d1c97090cc15f59. Affected by this issue is the function recall_relevant_memories_to_working_memory of the file core/… New CWE-400
CWE-404
 Uncontrolled Resource Consumption
 Improper Resource Shutdown or Release 		CVE-2026-8319 2026-05-13 01:38 2026-05-12 Show GitHub Exploit DB Packet Storm
396 4.7 MEDIUM
Network 		- - A security vulnerability has been detected in jishenghua jshERP up to 3.6. This affects the function getUserByWeixinCode of the file jshERP-boot/src/main/java/com/jsh/erp/service/UserService.java of … New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-8320 2026-05-13 01:38 2026-05-12 Show GitHub Exploit DB Packet Storm
397 8.8 HIGH
Local 		- - Pi-hole is a DNS sinkhole that protects devices from unwanted content without installing any client-side software. From 6.0 to before Core 6.4.2 and FTL 6.6.1, two shell scripts executed as root by s… New CWE-15
CWE-269
CWE-732
 External Control of System or Configuration Setting
 Improper Privilege Management
 Incorrect Permission Assignment for Critical Resource 		CVE-2026-41489 2026-05-13 01:38 2026-05-12 Show GitHub Exploit DB Packet Storm
398 - - - CWE-1188 Initialization of a Resource with an Insecure Default vulnerability exists that could cause unauthorized disclosure of sensitive information when credentials revert to initial settings in ra… New CWE-1188
 Insecure Default Initialization of Resource 		CVE-2026-6866 2026-05-13 01:38 2026-05-13 Show GitHub Exploit DB Packet Storm
399 4.4 MEDIUM
Local 		- - An incorrect permission assignment for critical resource of Ivanti Secure Access Client   before 22.8R6 allows a local authenticated user to read or modify sensitive log data via write access to a sh… New CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2026-7431 2026-05-13 01:38 2026-05-13 Show GitHub Exploit DB Packet Storm
400 7.8 HIGH
Local 		- - A race condition in Ivanti Secure Access Client before 22.8R6 allows a locally authenticated user to escalate privileges to SYSTEM New CWE-362
Race Condition 		CVE-2026-7432 2026-05-13 01:38 2026-05-13 Show GitHub Exploit DB Packet Storm