Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
209431	3.5	注意	IBM	-	IBM Leads におけるフィッシング攻撃を実行される脆弱性	CWE-Other その他	CVE-2015-0127	2015-06-30 15:59	2015-06-18	Show	GitHub Exploit DB Packet Storm

209432	6.5	警告	IBM	-	IBM Leads におけるファイルアップロードの制限を回避される脆弱性	CWE-Other その他	CVE-2015-0126	2015-06-30 15:59	2015-06-18	Show	GitHub Exploit DB Packet Storm

209433	3.5	注意	IBM	-	IBM Leads におけるクロスサイトリクエストフォージェリの脆弱性	CWE-Other その他	CVE-2015-0116	2015-06-30 15:59	2015-06-18	Show	GitHub Exploit DB Packet Storm

209434	6	警告	IBM	-	IBM Leads におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2015-0115	2015-06-30 15:59	2015-06-18	Show	GitHub Exploit DB Packet Storm

209435	6.8	警告	IBM	-	IBM Security Network Protection におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-6198	2015-06-30 15:56	2014-09-2	Show	GitHub Exploit DB Packet Storm

209436	8.5	危険	DELL EMC (旧 EMC Corporation)	-	EMC Documentum Thumbnail Server におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2015-0550	2015-06-30 14:54	2015-06-23	Show	GitHub Exploit DB Packet Storm

209437	3.5	注意	DELL EMC (旧 EMC Corporation)	-	EMC Documentum D2 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-0549	2015-06-30 14:54	2015-06-23	Show	GitHub Exploit DB Packet Storm

209438	10	危険	DELL EMC (旧 EMC Corporation)	-	VMAX 用 EMC Unisphere における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2015-0545	2015-06-30 14:54	2015-06-25	Show	GitHub Exploit DB Packet Storm

209439	6.5	警告	LimeSurvey	-	LimeSurvey の application/controllers/admin/dataentry.php の insert 関数における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2015-5078	2015-06-30 14:37	2015-06-26	Show	GitHub Exploit DB Packet Storm

209440	4.3	警告	シーメンス	-	Siemens Climatix BACnet/IP communication モジュールのファームウェア上で稼働する統合 Web サーバにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-4174	2015-06-30 14:26	2015-06-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1421	4.7	MEDIUM Local	-	-	The consul-template library before version 0.42.0 is vulnerable to a sandbox path bypass in the file template helper that may allow reading an out-of-sandbox file. This vulnerability (CVE-2026-5061) … Update	CWE-59 Link Following	CVE-2026-5061	2026-05-14 00:53	2026-05-13	Show	GitHub Exploit DB Packet Storm

1422	6.0	MEDIUM Local	-	-	HashiCorp Nomad and Nomad Enterprise prior to 2.0.1 are vulnerable to arbitrary file read and write on the client host as the Nomad process user through a symlink attack. This vulnerability (CVE-2026… New	CWE-59 Link Following	CVE-2026-6959	2026-05-14 00:53	2026-05-13	Show	GitHub Exploit DB Packet Storm

1423	8.8	HIGH Network	-	-	HashiCorp Nomad and Nomad Enterprise prior to 2.0.1 are vulnerable to code execution on the client host through a path traversal attack. This vulnerability (CVE-2026-7474) is fixed in Nomad 2.0.1, 1.… New	CWE-22 Path Traversal	CVE-2026-7474	2026-05-14 00:53	2026-05-13	Show	GitHub Exploit DB Packet Storm

1424	6.0	MEDIUM Local	-	-	HashiCorp Nomad’s exec2 task driver prior to 0.1.2 is vulnerable to arbitrary file read and write on the client host as the Nomad process user through a symlink attack. This vulnerability (CVE-2026-8… New	CWE-59 Link Following	CVE-2026-8052	2026-05-14 00:53	2026-05-13	Show	GitHub Exploit DB Packet Storm

1425	-		-	-	Use after free for some Linux kernel driver for the Intel(R) Ethernet 800 series before version 2.3.14 within Ring 0: Kernel may allow a denial of service. Unprivileged software adversary with an aut… Update	CWE-416 Use After Free	CVE-2025-27723	2026-05-14 00:52	2026-05-13	Show	GitHub Exploit DB Packet Storm

1426	-		-	-	Uncontrolled search path for some Intel(R) Server Firmware Update Utility Software before version 16.0.12. within Ring 3: User Applications may allow an escalation of privilege. System software adver… Update	CWE-427 Uncontrolled Search Path Element	CVE-2025-35969	2026-05-14 00:52	2026-05-13	Show	GitHub Exploit DB Packet Storm

1427	-		-	-	Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some Intel(R) Processors within VMX non-root (guest) operation may allow … Update	-	CVE-2025-35979	2026-05-14 00:52	2026-05-13	Show	GitHub Exploit DB Packet Storm

1428	-		-	-	Improper input validation for some Intel Endpoint Management Assistant (EMA) software before version 1.14.5 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged softwar… Update	CWE-20 Improper Input Validation	CVE-2025-35990	2026-05-14 00:52	2026-05-13	Show	GitHub Exploit DB Packet Storm

1429	-		-	-	Improper initialization in the UEFI firmware for some Intel platforms within Ring 0: Bare Metal OS may allow an information disclosure. System software adversary with a privileged user combined with … Update	CWE-665 Improper Initialization	CVE-2025-35991	2026-05-14 00:52	2026-05-13	Show	GitHub Exploit DB Packet Storm

1430	-		-	-	Improper buffer restrictions for some Display Virtualization for Windows OS driver software within Ring 2: Device Drivers may allow a denial of service. Unprivileged software adversary with an authen… Update	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2025-36510	2026-05-14 00:52	2026-05-13	Show	GitHub Exploit DB Packet Storm