Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
222181	6.8	警告	FFmpeg	-	FFmpeg の libavcodec/flashsv.c の flashsv_decode_frame 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-7015	2013-12-11 16:47	2013-08-20	Show	GitHub Exploit DB Packet Storm

222182	6.8	警告	FFmpeg	-	FFmpeg の libavcodec/g2meet.c の g2m_init_buffers 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2013-7013	2013-12-11 16:46	2013-09-15	Show	GitHub Exploit DB Packet Storm

222183	6.8	警告	FFmpeg	-	FFmpeg の libavcodec/jpeg2000dec.c の get_siz 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2013-7012	2013-12-11 16:46	2013-10-26	Show	GitHub Exploit DB Packet Storm

222184	6.8	警告	FFmpeg	-	FFmpeg の libavcodec/ffv1dec.c の read_header 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2013-7011	2013-12-11 16:45	2013-08-30	Show	GitHub Exploit DB Packet Storm

222185	6.8	警告	FFmpeg	-	FFmpeg の libavcodec/rpza.c の rpza_decode_stream 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2013-7009	2013-12-11 16:44	2013-08-22	Show	GitHub Exploit DB Packet Storm

222186	6.8	警告	FFmpeg	-	FFmpeg の libavcodec/h264.c の decode_slice_header 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2013-7008	2013-12-11 16:44	2013-10-25	Show	GitHub Exploit DB Packet Storm

222187	7.5	危険	FFmpeg	-	FFmpeg におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-4351	2013-12-11 16:40	2011-11-23	Show	GitHub Exploit DB Packet Storm

222188	6.8	警告	FFmpeg	-	FFmpeg の libavcodec/diracdec.c の dirac_decode_data_unit 関数における脆弱性	CWE-noinfo 情報不足	CVE-2011-3950	2013-12-11 16:40	2012-01-27	Show	GitHub Exploit DB Packet Storm

222189	6.8	警告	FFmpeg	-	FFmpeg の libavcodec/diracdec.c の dirac_unpack_idwt_params 関数における脆弱性	CWE-noinfo 情報不足	CVE-2011-3949	2013-12-11 16:39	2012-01-27	Show	GitHub Exploit DB Packet Storm

222190	6.8	警告	FFmpeg	-	FFmpeg の libavcodec/h264_sei.c の ff_h264_decode_sei 関数における脆弱性	CWE-399 リソース管理の問題	CVE-2011-3946	2013-12-11 16:38	2012-01-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
791	6.5	MEDIUM Network	openwebui	open_webui	Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.8.0, GET /api/v1/memories/ef is accessible without authentication and executes request.ap…	CWE-862 Missing Authorization	CVE-2026-45667	2026-05-19 10:28	2026-05-16	Show	GitHub Exploit DB Packet Storm

792	6.5	MEDIUM Network	openwebui	open_webui	Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.8.11, the API /api/v1/notes/{note_id} endpoint lacks proper authorization checks, allowin…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-45666	2026-05-19 10:28	2026-05-16	Show	GitHub Exploit DB Packet Storm

793	8.1	HIGH Network	openwebui	open_webui	Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.8.0, a Stored Cross-Site Scripting (XSS) vulnerability exists in the Banner component due…	CWE-79 Cross-site Scripting	CVE-2026-45665	2026-05-19 10:28	2026-05-16	Show	GitHub Exploit DB Packet Storm

794	6.3	MEDIUM Network	-	-	A vulnerability was found in Investintech SlimPDFReader up to 2.0.13. Affected by this vulnerability is the function sub_3B4610 of the file SlimPDFReader.exe. The manipulation results in stack-based …	CWE-119 CWE-121 Incorrect Access of Indexable Resource ('Range Error') Stack-based Buffer Overflow	CVE-2026-8733	2026-05-19 06:16	2026-05-17	Show	GitHub Exploit DB Packet Storm

795	4.7	MEDIUM Network	-	-	SimpleSAMLphp-casserver is a CAS 1.0 and 2.0 compliant CAS server in the form of a SimpleSAMLphp module. In versions below 6.3.1 and 7.0.0, the logout endpoint accepts a url query parameter to redire…	CWE-601 Open Redirect	CVE-2025-65954	2026-05-19 06:16	2026-05-19	Show	GitHub Exploit DB Packet Storm

796	-		-	-	* Countermeasures for DPA within SYMCRYPTO engine on SixG301xxx devices are not sufficiently random and will eventually repeat. * KSU keys using SYMCRYPTO will be impacted by this vulnerability.	CWE-331 Insufficient Entropy	CVE-2025-14972	2026-05-19 05:27	2026-05-16	Show	GitHub Exploit DB Packet Storm

797	8.2	HIGH Network	-	-	A buffer underflow vulnerability has been identified in the ogg123 utility from the vorbis-tools 1.4.3 package in function remotethread in remote.c. This vulnerability occurs in the remote control fu…	CWE-124 Buffer Underflow	CVE-2026-34253	2026-05-19 05:23	2026-05-16	Show	GitHub Exploit DB Packet Storm

798	7.5	HIGH Network	-	-	An issue in Nodemailer smtp_server before v.3.18.3 allows a remote attacker to cause a denial of service via the SMTPStream._write, lib/smtp-stream.js components	CWE-400 Uncontrolled Resource Consumption	CVE-2026-38728	2026-05-19 05:23	2026-05-16	Show	GitHub Exploit DB Packet Storm

799	4.6	MEDIUM Network	-	-	HCL Connections contains a broken access control vulnerability that may allow unauthorized user to update data in certain scenarios.	CWE-863 Incorrect Authorization	CVE-2026-21789	2026-05-19 05:23	2026-05-19	Show	GitHub Exploit DB Packet Storm

800	8.2	HIGH Local	-	-	Das U-Boot before 2026.04 allows FIT (Flat Image Tree) signature verification bypass because hashed-nodes is omitted from a hash.	CWE-346 Origin Validation Error	CVE-2026-46728	2026-05-19 05:23	2026-05-17	Show	GitHub Exploit DB Packet Storm