Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
244491 10 危険 日本アルカテル・ルーセント
Alcatel-Lucent		 - Alcatel OmniSwitch デバイスにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-4383 2012-06-26 16:02 2008-08-6 Show GitHub Exploit DB Packet Storm
244492 7.5 危険 creative mind - Creative Mind Creator CMS の index.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4377 2012-06-26 16:02 2008-10-1 Show GitHub Exploit DB Packet Storm
244493 7.5 危険 availscript - Availscript Classmate Script の viewprofile.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4375 2012-06-26 16:02 2008-10-1 Show GitHub Exploit DB Packet Storm
244494 7.5 危険 cmsbuzz - CMS Buzz の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4374 2012-06-26 16:02 2008-10-1 Show GitHub Exploit DB Packet Storm
244495 7.5 危険 availscript - AvailScript Job Portal Script の job_seeker/applynow.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4373 2012-06-26 16:02 2008-10-1 Show GitHub Exploit DB Packet Storm
244496 4.3 警告 availscript - AvailScript Article Script の articles.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4372 2012-06-26 16:02 2008-10-1 Show GitHub Exploit DB Packet Storm
244497 7.5 危険 availscript - AvailScript Article Script の articles.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4371 2012-06-26 16:02 2008-10-1 Show GitHub Exploit DB Packet Storm
244498 4.3 警告 availscript - Availscript Photo Album におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4370 2012-06-26 16:02 2008-10-1 Show GitHub Exploit DB Packet Storm
244499 7.5 危険 availscript - Availscript Photo Album の pics.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4369 2012-06-26 16:02 2008-10-1 Show GitHub Exploit DB Packet Storm
244500 6.5 警告 camera life - Camera Life の画像アップロードコンポーネントにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4366 2012-06-26 16:02 2008-09-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1431 - - - An improper input validation vulnerability within the AMD Platform Management Framework (PMF) driver can allow a local attacker to read Out-of-Bounds potentially resulting in information disclosure o… CWE-125
Out-of-bounds Read 		CVE-2025-48520 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
1432 - - - Improper input validation in the AMD Secure Processor (ASP) PCI driver could allow a local attacker to trigger a Use-After-Free (UAF) condition, potentially resulting in a loss of platform integrity … CWE-416
 Use After Free 		CVE-2025-48521 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
1433 - - - An improper input validation vulnerability within the AMD Platform Management Framework (PMF) Driver can allow a local attacker to write Out-of-Bounds, potentially resulting in privilege escalation. CWE-787
 Out-of-bounds Write 		CVE-2025-52540 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
1434 - - - Incorrect default permissions in the installation directory for the AMD chipset driver could allow an attacker to achieve privilege escalation resulting in arbitrary code execution. CWE-276
Incorrect Default Permissions  		CVE-2026-0432 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
1435 - - - A System Management Mode (SMM) handler could perform a callout to code located in non-SMM/untrusted memory. A highly privileged attacker could, with active user interaction and under high complexity … CWE-1072
CVE-2026-0438 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
1436 - - - A compromised Trusted OS (TOS) driver could issue a malformed call that could potentially allow memory access outside the intended range resulting in loss of integrity. CWE-190
 Integer Overflow or Wraparound 		CVE-2021-26380 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
1437 - - - A TOCTOU (Time-Of-Check to Time-Of-Use) in the graphics interface may allow an attacker to load registers repeatedly creating a race condition potentially leading to a loss of integrity. CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2022-23826 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
1438 - - - Improper validation in Power Management Firmware (PMFW) may allow an attacker with privileges to pass malformed workload arguments when exporting table data from SMU to DRAM potentially resulting in … CWE-129
 Improper Validation of Array Index 		CVE-2023-31309 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
1439 - - - Improperly preserved integrity of hardware configuration state during a power save/restore operation in the AMD Secure Processor (ASP) could allow an attacker with the ability to write outside the tr… CWE-1304
CVE-2023-31316 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
1440 - - - Improper restriction of operations within the bounds of a memory buffer in the AMD secure processer (ASP) could allow an attacker to read or write to protected memory potentially resulting in arbitra… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2023-31317 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm