Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
207421	7.8	危険	DELL EMC (旧 EMC Corporation)	-	EMC RSA Certificate Manager および RSA Registration Manager などの製品で使用される EMC RSA OneStep におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2015-4546	2015-10-5 14:17	2015-09-29	Show	GitHub Exploit DB Packet Storm

207422	6.8	警告	マカフィー	-	McAfee Vulnerability Manager の Enterprise Manager の Organizations ページにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2015-7612	2015-10-5 11:56	2015-09-21	Show	GitHub Exploit DB Packet Storm

207423	3.6	注意	Xen プロジェクト	-	Xen における読み取り専用のディスクイメージに書き込まれる脆弱性	CWE-Other その他	CVE-2015-7311	2015-10-5 11:54	2015-09-22	Show	GitHub Exploit DB Packet Storm

207424	7.2	危険	Canonical Apport project	-	Apport の kernel_crashdump におけるサービス運用妨害 (DoS) の脆弱性	CWE-59 リンク解釈の問題	CVE-2015-1338	2015-10-5 11:53	2015-09-24	Show	GitHub Exploit DB Packet Storm

207425	7.2	危険	Canonical Linux Containers	-	lxc の lxc-start における AppArmor の閉じ込めを回避される脆弱性	CWE-59 リンク解釈の問題	CVE-2015-1335	2015-10-5 11:22	2015-09-29	Show	GitHub Exploit DB Packet Storm

207426	9.3	危険	Google	-	Android の libstagefright における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2015-3876	2015-10-5 11:14	2015-10-1	Show	GitHub Exploit DB Packet Storm

207427	9.3	危険	Google	-	Android の libutils における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2015-6602	2015-10-5 11:14	2015-10-1	Show	GitHub Exploit DB Packet Storm

207428	7.5	危険	Datalex	-	Datalex のエアライン予約ソフトウェアに認証回避の脆弱性	-	CVE-2015-2858	2015-10-5 10:58	2015-09-30	Show	GitHub Exploit DB Packet Storm

207429	6.8	警告	株式会社ニューフォリア	-	MEGAPHONE MUSIC におけるアクセス制限不備の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-5634	2015-10-2 17:20	2015-09-16	Show	GitHub Exploit DB Packet Storm

207430	6.8	警告	株式会社ニューフォリア	-	こりトレにおけるアクセス制限不備の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-5635	2015-10-2 17:19	2015-09-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1371	9.1	CRITICAL Network	vmware	spring_cloud_config	Spring Cloud Config allows applications to serve arbitrary text and binary files through the spring-cloud-config-server module. A malicious user, or attacker, can send a request using a specially cra…	CWE-22 Path Traversal	CVE-2026-40982	2026-05-13 02:30	2026-05-7	Show	GitHub Exploit DB Packet Storm

1372	8.1	HIGH Network	vmware	spring_cloud_config	The base directory (`spring.cloud.config.server.git.basedir`) used by the Spring Cloud Config Server to clone Git repositories to is susceptible to time-of-check-time-of-use (TOCTOU) attacks. Spring …	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2026-41002	2026-05-13 02:29	2026-05-7	Show	GitHub Exploit DB Packet Storm

1373	6.2	MEDIUM Local	apple	ipados iphone_os macos tvos visionos watchos	A buffer overflow was addressed with improved input validation. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 2…	CWE-121 Stack-based Buffer Overflow	CVE-2026-28897	2026-05-13 02:27	2026-05-12	Show	GitHub Exploit DB Packet Storm

1374	8.8	HIGH Local	apple	macos	A logging issue was addressed with improved data redaction. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. A malicious app may be able to break out of its sandbox.	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2026-28923	2026-05-13 02:24	2026-05-12	Show	GitHub Exploit DB Packet Storm

1375	7.5	HIGH Network	apple	macos	A race condition was addressed with improved handling of symbolic links. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may be able to access Contacts with…	CWE-362 Race Condition	CVE-2026-28924	2026-05-13 02:24	2026-05-12	Show	GitHub Exploit DB Packet Storm

1376	7.5	HIGH Network	apple	macos	A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may be able to cause unexpected system termin…	CWE-120 Classic Buffer Overflow	CVE-2026-28925	2026-05-13 02:24	2026-05-12	Show	GitHub Exploit DB Packet Storm

1377	7.5	HIGH Network	apple	ipados iphone_os macos	A logic issue was addressed with improved checks. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. Replying to an email could display …	CWE-1254 Incorrect Comparison Logic Granularity	CVE-2026-28929	2026-05-13 02:24	2026-05-12	Show	GitHub Exploit DB Packet Storm

1378	7.8	HIGH Local	apple	ipados iphone_os macos	An authorization issue was addressed with improved state management. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Ta…	CWE-863 Incorrect Authorization	CVE-2026-28951	2026-05-13 02:23	2026-05-12	Show	GitHub Exploit DB Packet Storm

1379	7.5	HIGH Network	apple	ipados iphone_os macos	A file quarantine bypass was addressed with additional checks. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. A maliciously crafted …	CWE-290 Authentication Bypass by Spoofing	CVE-2026-28954	2026-05-13 02:21	2026-05-12	Show	GitHub Exploit DB Packet Storm

1380	6.5	MEDIUM Network	open5gs	open5gs	A vulnerability was detected in Open5GS up to 2.7.7. This affects the function gsm_build_pdu_session_establishment_accept of the file /src/smf/gsm-build.c of the component SMF. The manipulation resul…	CWE-404 Improper Resource Shutdown or Release	CVE-2026-8266	2026-05-13 02:20	2026-05-11	Show	GitHub Exploit DB Packet Storm