Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
213191 10 危険 Belkin International - Belkin N750 Router F9K1103 のファームウェアの MiniHttpd におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-1635 2014-11-14 15:31 2014-03-31 Show GitHub Exploit DB Packet Storm
213192 7.2 危険 Huawei - Windows 用 Huawei Mobile Partner における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-8359 2014-11-14 14:31 2014-10-22 Show GitHub Exploit DB Packet Storm
213193 5 警告 レッドハット - Libvirt の virDomainGetXMLDesc API における VNC のパスワードを取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2014-7823 2014-11-14 11:25 2014-11-5 Show GitHub Exploit DB Packet Storm
213194 10 危険 マイクロソフト
アドビシステムズ
Google		 - Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2014-0573 2014-11-13 17:18 2014-11-11 Show GitHub Exploit DB Packet Storm
213195 10 危険 マイクロソフト
アドビシステムズ
Google		 - Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2014-0576 2014-11-13 17:18 2014-11-11 Show GitHub Exploit DB Packet Storm
213196 10 危険 マイクロソフト
アドビシステムズ
Google		 - Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-0577 2014-11-13 17:18 2014-11-11 Show GitHub Exploit DB Packet Storm
213197 10 危険 マイクロソフト
アドビシステムズ
Google		 - Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2014-0581 2014-11-13 17:18 2014-11-11 Show GitHub Exploit DB Packet Storm
213198 10 危険 マイクロソフト
アドビシステムズ
Google		 - Adobe Flash Player および Adobe AIR におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-0582 2014-11-13 17:18 2014-11-11 Show GitHub Exploit DB Packet Storm
213199 7.5 危険 マイクロソフト
アドビシステムズ
Google		 - Adobe Flash Player および Adobe AIR におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-0583 2014-11-13 17:18 2014-11-11 Show GitHub Exploit DB Packet Storm
213200 10 危険 マイクロソフト
アドビシステムズ
Google		 - Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-0584 2014-11-13 17:18 2014-11-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
221 7.5 HIGH
Network 		- - A flaw in GnuTLS DTLS handshake parsing allows malformed fragments with zero length and non-zero offset, leading to an integer underflow during reassembly and resulting in an out-of-bounds read. This… Update CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2026-33845 2026-05-4 05:16 2026-05-1 Show GitHub Exploit DB Packet Storm
222 4.3 MEDIUM
Adjacent 		- - A vulnerability has been found in AV Stumpfl Pixera Two Media Server up to 25.1 R2. The affected element is an unknown function of the component Service Port 1338. Such manipulation leads to path tra… New CWE-22
Path Traversal 		CVE-2026-7704 2026-05-4 02:16 2026-05-4 Show GitHub Exploit DB Packet Storm
223 7.3 HIGH
Network 		- - A flaw has been found in AV Stumpfl Pixera Two Media Server up to 25.2 R2. Impacted is an unknown function of the component Websocket API. This manipulation causes code injection. The attack can be i… New CWE-74
CWE-94
Injection
Code Injection 		CVE-2026-7703 2026-05-4 02:16 2026-05-4 Show GitHub Exploit DB Packet Storm
224 5.3 MEDIUM
Network 		- - A vulnerability was detected in toeverything AFFiNE up to 0.26.3. This issue affects the function allowDocPreview of the file /workspace/:workspaceId/:docId of the component Public Markdown Preview E… New CWE-285
CWE-639
Improper Authorization
 Authorization Bypass Through User-Controlled Key 		CVE-2026-7702 2026-05-4 01:15 2026-05-4 Show GitHub Exploit DB Packet Storm
225 4.3 MEDIUM
Network 		- - A security vulnerability has been detected in Telegram Desktop up to 6.7.5. This vulnerability affects the function RequestButton of the file Telegram/SourceFiles/boxes/url_auth_box.cpp of the compon… New CWE-404
CWE-476
 Improper Resource Shutdown or Release
 NULL Pointer Dereference 		CVE-2026-7701 2026-05-4 01:15 2026-05-4 Show GitHub Exploit DB Packet Storm
226 6.3 MEDIUM
Network 		- - A weakness has been identified in langflow-ai langflow up to 1.8.4. This affects the function eval of the file src/lfx/src/lfx/components/llm_operations/lambda_filter.p of the component LambdaFilterC… New CWE-74
CWE-94
Injection
Code Injection 		CVE-2026-7700 2026-05-4 00:15 2026-05-4 Show GitHub Exploit DB Packet Storm
227 6.3 MEDIUM
Network 		- - A security flaw has been discovered in Dromara MaxKey up to 3.5.13. Affected by this issue is the function StrUtils.checkSqlInjection of the file StrUtils.java. Performing a manipulation of the argum… New CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-7699 2026-05-4 00:15 2026-05-4 Show GitHub Exploit DB Packet Storm
228 7.3 HIGH
Network 		- - A vulnerability was identified in Tiandy Easy7 Integrated Management Platform 7.17.0. Affected by this vulnerability is an unknown functionality of the file /Easy7/rest/systemInfo/updateDbBackupInfo.… New CWE-77
CWE-78
Command Injection
OS Command  		CVE-2026-7698 2026-05-3 23:16 2026-05-3 Show GitHub Exploit DB Packet Storm
229 4.7 MEDIUM
Network 		- - A vulnerability was determined in AMTT Hotel Broadband Operation System 1.0. Affected is an unknown function of the file /manager/card/cardhand_submit.php. This manipulation of the argument ID causes… New CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-7697 2026-05-3 23:16 2026-05-3 Show GitHub Exploit DB Packet Storm
230 6.3 MEDIUM
Network 		- - A vulnerability was found in Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform 1.3.0. This impacts an unknown function of the file /SubstationWEBV2/main/uploadH5Files. T… New CWE-284
CWE-434
Improper Access Control
 Unrestricted Upload of File with Dangerous Type  		CVE-2026-7696 2026-05-3 22:16 2026-05-3 Show GitHub Exploit DB Packet Storm