Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
210061 5 警告 オラクル - Oracle E-Business Suite の Oracle Marketing における Web Management に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-2652 2015-07-17 18:06 2015-07-14 Show GitHub Exploit DB Packet Storm
210062 3.5 注意 オラクル - Oracle E-Business Suite の Oracle Web Applications Desktop Integrator における Create document に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-2645 2015-07-17 18:06 2015-07-14 Show GitHub Exploit DB Packet Storm
210063 4.3 警告 オラクル - Oracle E-Business Suite の Technology stack における Applet startup に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-2630 2015-07-17 18:06 2015-07-14 Show GitHub Exploit DB Packet Storm
210064 2.1 注意 オラクル - Oracle E-Business Suite の Oracle Application Object Library における Input validation に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-2618 2015-07-17 18:06 2015-07-14 Show GitHub Exploit DB Packet Storm
210065 5 警告 オラクル - Oracle E-Business Suite の Oracle Applications Framework における Portal に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-2615 2015-07-17 18:06 2015-07-14 Show GitHub Exploit DB Packet Storm
210066 4.3 警告 オラクル - Oracle E-Business Suite の Oracle Applications Framework における Popup windows に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-2610 2015-07-17 18:06 2015-07-14 Show GitHub Exploit DB Packet Storm
210067 5.5 警告 オラクル - Oracle Fusion Middleware の Oracle WebCenter Portal および Oracle E-Business Suite の Oracle Applications Framework における Portal に関する脆弱性 CWE-noinfo
情報不足 		CVE-2015-1926 2015-07-17 18:06 2015-07-14 Show GitHub Exploit DB Packet Storm
210068 6.9 警告 オラクル - Oracle Berkeley DB の Data Store における脆弱性 CWE-noinfo
情報不足 		CVE-2015-4790 2015-07-17 17:07 2015-07-14 Show GitHub Exploit DB Packet Storm
210069 6.9 警告 オラクル - Oracle Berkeley DB の Data Store における脆弱性 CWE-noinfo
情報不足 		CVE-2015-4789 2015-07-17 17:07 2015-07-14 Show GitHub Exploit DB Packet Storm
210070 3.3 注意 オラクル - Oracle Berkeley DB の Data Store における脆弱性 CWE-noinfo
情報不足 		CVE-2015-4788 2015-07-17 17:07 2015-07-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1261 6.7 MEDIUM
Local 		microsoft windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2019
windows_server_2022
windows_server_2022_… 		Reliance on a component that is not updateable in Windows Secure Boot allows an authorized attacker to bypass a security feature locally. CWE-1329
 Reliance on Component That is Not Updateable 		CVE-2026-41097 2026-05-16 00:36 2026-05-13 Show GitHub Exploit DB Packet Storm
1262 7.8 HIGH
Local 		microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_server_2016
w… 		Use after free in Windows Telephony Service allows an authorized attacker to elevate privileges locally. CWE-416
 Use After Free 		CVE-2026-40382 2026-05-16 00:32 2026-05-13 Show GitHub Exploit DB Packet Storm
1263 7.8 HIGH
Local 		microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_server_2016
w… 		Integer underflow (wrap or wraparound) in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally. CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2026-40397 2026-05-16 00:28 2026-05-13 Show GitHub Exploit DB Packet Storm
1264 7.4 HIGH
Network 		microsoft edge_chromium External control of file name or path in Microsoft Edge (Chromium-based) allows an unauthorized attacker to disclose information over a network. CWE-73
CWE-610
 External Control of File Name or Path
Externally Controlled Reference to a Resource in Another Sphere 		CVE-2026-41107 2026-05-16 00:28 2026-05-13 Show GitHub Exploit DB Packet Storm
1265 7.8 HIGH
Local 		microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_server_2016
w… 		Heap-based buffer overflow in Windows Remote Desktop allows an authorized attacker to elevate privileges locally. CWE-122
Heap-based Buffer Overflow 		CVE-2026-40398 2026-05-16 00:27 2026-05-13 Show GitHub Exploit DB Packet Storm
1266 8.8 HIGH
Network 		microsoft visual_studio_code Improper neutralization of special elements in output used by a downstream component ('injection') in GitHub Copilot and Visual Studio allows an unauthorized attacker to bypass a security feature ove… CWE-74
Injection 		CVE-2026-41109 2026-05-16 00:27 2026-05-13 Show GitHub Exploit DB Packet Storm
1267 7.8 HIGH
Local 		microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2016
windows_server_2019
w… 		Stack-based buffer overflow in Windows TCP/IP allows an authorized attacker to elevate privileges locally. CWE-121
Stack-based Buffer Overflow 		CVE-2026-40399 2026-05-16 00:26 2026-05-13 Show GitHub Exploit DB Packet Storm
1268 7.1 HIGH
Local 		microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_server_2016
w… 		Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service locally. CWE-476
 NULL Pointer Dereference 		CVE-2026-40401 2026-05-16 00:25 2026-05-13 Show GitHub Exploit DB Packet Storm
1269 9.3 CRITICAL
Local 		microsoft windows_11_23h2
windows_server_2022 		Use after free in Windows Hyper-V allows an unauthorized attacker to elevate privileges locally. CWE-416
 Use After Free 		CVE-2026-40402 2026-05-16 00:23 2026-05-13 Show GitHub Exploit DB Packet Storm
1270 8.8 HIGH
Local 		microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_server_2016
w… 		Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to execute code locally. CWE-122
Heap-based Buffer Overflow 		CVE-2026-40403 2026-05-16 00:22 2026-05-13 Show GitHub Exploit DB Packet Storm