Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
211711 - - アップル - ** 削除 ** Apple iOS の Secure Transport における EXPORT_RSA 暗号に対して暗号スイートのダウングレード攻撃を実行される脆弱性 - CVE-2015-2235 2015-03-10 13:59 2015-03-3 Show GitHub Exploit DB Packet Storm
211712 5.8 警告 アップル
VMware
Apache Software Foundation
ヒューレット・パッカード		 - Apache Tomcat における例外処理に関する情報漏えいの脆弱性 CWE-DesignError
CVE-2008-0002 2015-03-9 18:29 2008-02-11 Show GitHub Exploit DB Packet Storm
211713 9 危険 ヒューレット・パッカード - HP System Management Homepage に OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2013-3576 2015-03-9 18:07 2013-06-11 Show GitHub Exploit DB Packet Storm
211714 4.3 警告 オラクル - Oracle Java SE の Java Runtime Environment における Libraries に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-2449 2015-03-9 17:33 2013-06-18 Show GitHub Exploit DB Packet Storm
211715 10 危険 ヒューレット・パッカード
DELL EMC (旧 EMC Corporation)		 - EMC Connectrix Manager Converged Network Edition のサーバにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-6810 2015-03-9 17:24 2013-12-11 Show GitHub Exploit DB Packet Storm
211716 5 警告 ヒューレット・パッカード
Apache Software Foundation		 - Apache Tomcat の HTTP NIO コネクタにおけるサービス運用妨害 (メモリ消費) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-2733 2015-03-9 14:28 2012-11-5 Show GitHub Exploit DB Packet Storm
211717 4.3 警告 ヒューレット・パッカード
Apache Software Foundation		 - Apache Tomcat における security-constraint のチェックを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3546 2015-03-9 14:23 2012-12-4 Show GitHub Exploit DB Packet Storm
211718 4.3 警告 ヒューレット・パッカード
Apache Software Foundation		 - Apache Tomcat におけるクロスサイトリクエストフォージェリ (CSRF) 保護メカニズムを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4431 2015-03-9 14:07 2012-12-4 Show GitHub Exploit DB Packet Storm
211719 2.6 注意 ヒューレット・パッカード
Apache Software Foundation		 - Apache Tomcat におけるサービス運用妨害 (無限ループ) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-4534 2015-03-9 13:59 2012-12-4 Show GitHub Exploit DB Packet Storm
211720 4.3 警告 ヒューレット・パッカード
オラクル		 - 複数の Oracle Enterprise Manager 製品における Storage Management の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-3219 2015-03-9 13:52 2013-01-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1761 5.4 MEDIUM
Network 		- - WWBN AVideo is an open source video platform. In versions up to and including 29.0, objects/userSavePhoto.php is a legacy profile-photo endpoint that accepts a base64 POST parameter and writes the de… CWE-352
 Origin Validation Error 		CVE-2026-43877 2026-05-13 03:17 2026-05-12 Show GitHub Exploit DB Packet Storm
1762 7.3 HIGH
Network 		- - CosyVoice thru commit 6e01309e01bc93bbeb83bdd996b1182a81aaf11e (2025-30-21) contains an insecure deserialization vulnerability (CWE-502) in its make_parquet_list.py data processing tool. The script l… CWE-502
 Deserialization of Untrusted Data 		CVE-2026-31249 2026-05-13 03:16 2026-05-12 Show GitHub Exploit DB Packet Storm
1763 7.5 HIGH
Network 		- - docuFORM Managed Print Service Client 11.11c is vulnerable to a directory traversal allowing attackers to read arbitrary files via crafted url. CWE-22
Path Traversal 		CVE-2025-65418 2026-05-13 03:16 2026-05-12 Show GitHub Exploit DB Packet Storm
1764 5.5 MEDIUM
Local 		python pillow Pillow is a Python imaging library. From version 11.2.1 to before version 12.2.0, passing nested lists as coordinates to APIs that accept coordinates such as ImagePath.Path, ImageDraw.ImageDraw.polyg… CWE-122
Heap-based Buffer Overflow 		CVE-2026-42309 2026-05-13 02:57 2026-05-9 Show GitHub Exploit DB Packet Storm
1765 5.5 MEDIUM
Local 		python pillow Pillow is a Python imaging library. Prior to version 12.2.0, if a font advances for each glyph by an exceeding large amount, when Pillow keeps track of the current position, it may lead to an integer… CWE-190
 Integer Overflow or Wraparound 		CVE-2026-42308 2026-05-13 02:57 2026-05-9 Show GitHub Exploit DB Packet Storm
1766 5.5 MEDIUM
Local 		python pillow Pillow is a Python imaging library. From version 4.2.0 to before version 12.2.0, an attacker can supply a malicious PDF that causes the process to hang indefinitely, consuming 100% CPU and making the… CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2026-42310 2026-05-13 02:55 2026-05-9 Show GitHub Exploit DB Packet Storm
1767 4.7 MEDIUM
Local 		apple ipados
iphone_os
macos
visionos 		A race condition was addressed with additional validation. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5, … CWE-362
Race Condition 		CVE-2026-43659 2026-05-13 02:51 2026-05-12 Show GitHub Exploit DB Packet Storm
1768 7.5 HIGH
Network 		apple ipados
iphone_os
macos
tvos
watchos 		A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, watchOS 26.5. Processing a maliciously crafted image… CWE-121
Stack-based Buffer Overflow 		CVE-2026-43661 2026-05-13 02:51 2026-05-12 Show GitHub Exploit DB Packet Storm
1769 7.5 HIGH
Network 		open5gs open5gs A vulnerability has been found in Open5GS up to 2.7.7. Affected is the function pcf_nbsf_management_handle_register of the file src/pcf/nbsf-handler.c of the component sm-policies Endpoint. Such mani… CWE-404
 Improper Resource Shutdown or Release 		CVE-2026-8222 2026-05-13 02:49 2026-05-10 Show GitHub Exploit DB Packet Storm
1770 7.5 HIGH
Network 		open5gs open5gs A vulnerability was determined in Open5GS up to 2.7.7. Affected by this issue is the function pcf_sess_set_ipv6prefix of the file /src/pcf/context.c of the component PCF. Executing a manipulation of … CWE-404
 Improper Resource Shutdown or Release 		CVE-2026-8224 2026-05-13 02:48 2026-05-10 Show GitHub Exploit DB Packet Storm