Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
213411 4.4 警告 Huawei - Huawei eSpace Desktop における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2014-9416 2015-01-5 17:20 2014-12-17 Show GitHub Exploit DB Packet Storm
213412 1.9 注意 Huawei - Huawei eSpace Desktop におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-9415 2015-01-5 17:19 2014-12-17 Show GitHub Exploit DB Packet Storm
213413 6.8 警告 W3 EDGE - WordPress 用 W3 Total Cache プラグインにおけるクロスサイトリクエストフォージェリ攻撃を実行される脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-9414 2015-01-5 17:01 2014-12-10 Show GitHub Exploit DB Packet Storm
213414 6.8 警告 Sandor Kovacs - WordPress 用 IP Ban プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-9413 2015-01-5 17:01 2014-12-12 Show GitHub Exploit DB Packet Storm
213415 6.8 警告 Bird Feeder project - WordPress 用 Bird Feeder プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-9334 2015-01-5 17:01 2014-12-9 Show GitHub Exploit DB Packet Storm
213416 6.5 警告 WP Symposium - WordPress 用 WP Symposium プラグインの ajax/mail_functions.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-8810 2015-01-5 17:00 2014-11-26 Show GitHub Exploit DB Packet Storm
213417 4.3 警告 WP Symposium - WordPress 用 WP Symposium プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-8809 2015-01-5 17:00 2014-11-26 Show GitHub Exploit DB Packet Storm
213418 10 危険 Allegro Software Development Corporation - Huawei ホームゲートウェイ製品などで使用される AllegroSoft RomPager におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-9223 2015-01-5 16:25 2014-12-24 Show GitHub Exploit DB Packet Storm
213419 7.5 危険 BSD mailx project
Heirloom
レッドハット
オラクル		 - Heirloom mailx および BSD mailx の fio.c の expand 関数における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2004-2771 2015-01-5 15:15 2004-10-29 Show GitHub Exploit DB Packet Storm
213420 7.5 危険 Google - Google Chrome の WebKit の WebCore の rendering/svg/RenderSVGText.cpp におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1798 2015-01-5 14:41 2011-04-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1941 6.5 MEDIUM
Network 		open5gs open5gs A vulnerability was found in Open5GS up to 2.7.7. This impacts the function update_authorized_pcc_rule_and_qos of the file /src/smf/npcf-handler.c of the component SMF. Performing a manipulation resu… CWE-404
 Improper Resource Shutdown or Release 		CVE-2026-8251 2026-05-13 02:35 2026-05-11 Show GitHub Exploit DB Packet Storm
1942 6.5 MEDIUM
Network 		open5gs open5gs A vulnerability was determined in Open5GS up to 2.7.7. Affected is the function smf_nsmf_handle_create_data_in_hsmf of the component SMF. Executing a manipulation can lead to null pointer dereference… CWE-404
CWE-476
 Improper Resource Shutdown or Release
 NULL Pointer Dereference 		CVE-2026-8252 2026-05-13 02:34 2026-05-11 Show GitHub Exploit DB Packet Storm
1943 9.1 CRITICAL
Network 		vmware spring_cloud_config Spring Cloud Config allows applications to serve arbitrary text and binary files through the spring-cloud-config-server module. A malicious user, or attacker, can send a request using a specially cra… CWE-22
Path Traversal 		CVE-2026-40982 2026-05-13 02:30 2026-05-7 Show GitHub Exploit DB Packet Storm
1944 8.1 HIGH
Network 		vmware spring_cloud_config The base directory (`spring.cloud.config.server.git.basedir`) used by the Spring Cloud Config Server to clone Git repositories to is susceptible to time-of-check-time-of-use (TOCTOU) attacks. Spring … CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2026-41002 2026-05-13 02:29 2026-05-7 Show GitHub Exploit DB Packet Storm
1945 6.2 MEDIUM
Local 		apple ipados
iphone_os
macos
tvos
visionos
watchos 		A buffer overflow was addressed with improved input validation. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 2… CWE-121
Stack-based Buffer Overflow 		CVE-2026-28897 2026-05-13 02:27 2026-05-12 Show GitHub Exploit DB Packet Storm
1946 8.8 HIGH
Local 		apple macos A logging issue was addressed with improved data redaction. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. A malicious app may be able to break out of its sandbox. CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2026-28923 2026-05-13 02:24 2026-05-12 Show GitHub Exploit DB Packet Storm
1947 7.5 HIGH
Network 		apple macos A race condition was addressed with improved handling of symbolic links. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may be able to access Contacts with… CWE-362
Race Condition 		CVE-2026-28924 2026-05-13 02:24 2026-05-12 Show GitHub Exploit DB Packet Storm
1948 7.5 HIGH
Network 		apple macos A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may be able to cause unexpected system termin… CWE-120
Classic Buffer Overflow 		CVE-2026-28925 2026-05-13 02:24 2026-05-12 Show GitHub Exploit DB Packet Storm
1949 7.5 HIGH
Network 		apple ipados
iphone_os
macos 		A logic issue was addressed with improved checks. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. Replying to an email could display … CWE-1254
 Incorrect Comparison Logic Granularity 		CVE-2026-28929 2026-05-13 02:24 2026-05-12 Show GitHub Exploit DB Packet Storm
1950 7.8 HIGH
Local 		apple ipados
iphone_os
macos 		An authorization issue was addressed with improved state management. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Ta… CWE-863
 Incorrect Authorization 		CVE-2026-28951 2026-05-13 02:23 2026-05-12 Show GitHub Exploit DB Packet Storm