Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
221411 4.7 警告 Xen プロジェクト - Xen におけるサービス運用妨害 (ホストのメモリ消費) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-0152 2013-11-1 15:23 2013-01-22 Show GitHub Exploit DB Packet Storm
221412 4.6 警告 Xen プロジェクト - x86_32 プラットフォーム上で稼働する Xen におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0151 2013-11-1 15:21 2013-03-7 Show GitHub Exploit DB Packet Storm
221413 5 警告 GNU Project - GnuTLS の lib/gnutls_cipher.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-2116 2013-11-1 15:20 2013-05-23 Show GitHub Exploit DB Packet Storm
221414 1.2 注意 ProFTPD Project - ProFTPD における任意のファイルの所有権を変更される脆弱性 CWE-362
競合状態 		CVE-2012-6095 2013-11-1 15:16 2013-01-4 Show GitHub Exploit DB Packet Storm
221415 5 警告 Andy Armstrong - Perl 用 CGI.pm モジュールにおける改行を挿入される脆弱性 CWE-16
環境設定 		CVE-2012-5526 2013-11-1 15:13 2012-11-12 Show GitHub Exploit DB Packet Storm
221416 7.5 危険 The Perl Foundation - Perl の util.c におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-5195 2013-11-1 15:06 2012-12-18 Show GitHub Exploit DB Packet Storm
221417 7.6 危険 MIT Kerberos
レッドハット		 - MIT Kerberos 5 KDC に double free の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-0284 2013-11-1 14:59 2011-03-16 Show GitHub Exploit DB Packet Storm
221418 6.5 警告 MIT Kerberos
レッドハット		 - MIT Kerberos 5 の Key Distribution Center 内にある kdc_authdata.c における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-1322 2013-11-1 14:57 2010-10-5 Show GitHub Exploit DB Packet Storm
221419 2.1 注意 アップル
VMware
MIT Kerberos		 - MIT Kerberos 5 の Key Distribution Center におけるクライアントになりすまされる脆弱性 CWE-16
CWE-264
CVE-2010-4021 2013-11-1 14:42 2010-11-30 Show GitHub Exploit DB Packet Storm
221420 5 警告 レッドハット
MariaDB Corporation Ab.
オラクル		 - MariaDB および Oracle MySQL におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-1861 2013-11-1 14:27 2013-03-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
931 6.8 MEDIUM
Physics 		- - Medtronic MyCareLink Patient Monitor has an internal serial interface, which allows an attacker with physical access to access a login prompt via a UART terminal.​ CWE-1263
 Improper Physical Access Control 		CVE-2025-4386 2026-05-8 03:46 2026-05-8 Show GitHub Exploit DB Packet Storm
932 6.8 MEDIUM
Physics 		- - Medtronic MyCareLink Patient Monitor uses per-product credentials that are stored in a recoverable format. An attacker can use these credentials to modify encrypted drive data. CWE-313
 Cleartext Storage in a File or on Disk 		CVE-2025-4397 2026-05-8 03:46 2026-05-8 Show GitHub Exploit DB Packet Storm
933 8.8 HIGH
Network 		- - An Improper Access Control vulnerability in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows a remote authenticated attacker to gain administrative access. CWE-284
Improper Access Control 		CVE-2026-5786 2026-05-8 03:46 2026-05-8 Show GitHub Exploit DB Packet Storm
934 8.9 HIGH
Network 		- - An Improper Certificate Validation in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows a remote unauthenticated attacker to impersonate registered Sentry hosts and obtain valid CA-… CWE-295
Improper Certificate Validation  		CVE-2026-5787 2026-05-8 03:46 2026-05-8 Show GitHub Exploit DB Packet Storm
935 7.0 HIGH
Network 		- - An Improper Access Control in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows a remote unauthenticated attacker to invoke arbitrary methods. CWE-284
Improper Access Control 		CVE-2026-5788 2026-05-8 03:46 2026-05-8 Show GitHub Exploit DB Packet Storm
936 7.2 HIGH
Network 		- - An Improper Input Validation in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows a remotely authenticated user with administrative access to achieve remote code execution. CWE-20
 Improper Input Validation  		CVE-2026-6973 2026-05-8 03:46 2026-05-8 Show GitHub Exploit DB Packet Storm
937 7.4 HIGH
Network 		- - Improper certificate validation in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows a remote unauthenticated attacker to enroll a device belonging to a restricted set of unenrolled… CWE-295
Improper Certificate Validation  		CVE-2026-7821 2026-05-8 03:46 2026-05-8 Show GitHub Exploit DB Packet Storm
938 9.8 CRITICAL
Network 		- - Yarbo firmware v2.3.9 contains hardcoded administrative credentials embedded in the firmware image. These credentials are identical across all devices running this firmware and cannot be changed or r… CWE-798
 Use of Hard-coded Credentials 		CVE-2026-7414 2026-05-8 03:46 2026-05-8 Show GitHub Exploit DB Packet Storm
939 9.8 CRITICAL
Network 		- - The MQTT broker embedded in Yarbo firmware v2.3.9 is configured to allow anonymous connections with no topic-level read or write ACLs. Any host on the same network can subscribe to sensitive telemetr… CWE-306
Missing Authentication for Critical Function 		CVE-2026-7415 2026-05-8 03:46 2026-05-8 Show GitHub Exploit DB Packet Storm
940 5.4 MEDIUM
Network 		- - Cross-Site Scripting (XSS) vulnerability exists in Webkul Krayin CRM v2.1.5. The application fails to sanitize user-supplied input in the comment field during Activity creation on the /admin/activiti… CWE-79
Cross-site Scripting 		CVE-2026-36341 2026-05-8 03:45 2026-05-8 Show GitHub Exploit DB Packet Storm