Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2691	6.1	警告 Network	オラクル	JDK Oracle GraalVM for JDK JRE Oracle GraalVM	オラクルのOracle GraalVM等の複数製品における不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-21933	2026-02-2 19:36	2026-01-20	Show	GitHub Exploit DB Packet Storm

2692	5.4	警告 Network	オラクル	PeopleSoft Enterprise PeopleTools	オラクルのPeopleSoft Enterprise PeopleToolsにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-21934	2026-02-2 19:36	2026-01-20	Show	GitHub Exploit DB Packet Storm

2693	5.8	警告 Local	オラクル	Oracle Solaris	オラクルのOracle Solarisにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-21935	2026-02-2 19:35	2026-01-20	Show	GitHub Exploit DB Packet Storm

2694	5.4	警告 Network	オラクル	PeopleSoft Enterprise PeopleTools	オラクルのPeopleSoft Enterprise PeopleToolsにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-21938	2026-02-2 19:35	2026-01-20	Show	GitHub Exploit DB Packet Storm

2695	7	重要 Local	オラクル	Oracle Database	オラクルのOracle Databaseにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-21939	2026-02-2 19:35	2026-01-20	Show	GitHub Exploit DB Packet Storm

2696	7.5	重要 Network	オラクル	Oracle Supply Chain Products Suite	オラクルのOracle Supply Chain Products Suiteにおける情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2026-21940	2026-02-2 19:35	2026-01-20	Show	GitHub Exploit DB Packet Storm

2697	5	警告 Local	オラクル	Oracle Solaris	オラクルのOracle Solarisにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-21942	2026-02-2 19:35	2026-01-20	Show	GitHub Exploit DB Packet Storm

2698	6.1	警告 Network	オラクル	Oracle Scripting	オラクルのOracle Scriptingにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-21943	2026-02-2 19:35	2026-01-20	Show	GitHub Exploit DB Packet Storm

2699	6.8	警告 Network	オラクル	Oracle Agile Product Lifecycle Management for Process	オラクルのOracle Agile Product Lifecycle Management for Processにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-21944	2026-02-2 19:35	2026-01-20	Show	GitHub Exploit DB Packet Storm

2700	7.5	重要 Network	オラクル	JDK Oracle GraalVM for JDK JRE Oracle GraalVM	オラクルのOracle GraalVM等の複数製品におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-21945	2026-02-2 19:35	2026-01-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
441	-		-	-	A Command Injection vulnerability in the web management interface in Aver PTC320UV2 0.1.0000.65 allows an unauthenticated attacker to execute arbitrary commands via a crafted web request.	-	CVE-2026-26461	2026-05-2 03:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

442	9.6	CRITICAL Network	-	-	A web page that contains unusual WebGPU content loaded into the GPU GLES render process and can trigger write UAF crash in the GPU GLES user-space shared library. On certain platforms, when the proce…	CWE-416 Use After Free	CVE-2026-22166	2026-05-2 03:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

443	-		-	-	Cross-Site Scripting (XSS) vulnerability was discovered in the GSVoIP web panel version 2.0.90. The `msg` parameter in the `/painel/gateways.php/error` endpoint does not properly sanitize user-suppli…	-	CVE-2025-69606	2026-05-2 03:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

444	-		-	-	An issue in Eprosima Micro-XREC-DDS Agent v.3.0.1 allows a remote attacker to cause a denial of service via a packet specially crafted to bear a non-valid value in any Boolean field.	-	CVE-2025-63548	2026-05-2 03:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

445	-		-	-	An issue in Eprosima Micro-XREC-DDS Agent v.3.0.1 allows a remote attacker to cause a denial of service via a crafted packet to the MTU length field	-	CVE-2025-63547	2026-05-2 03:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

446	5.5	MEDIUM Local	wireshark	wireshark	Dissection engine zlib decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service	CWE-1325 Improperly Controlled Sequential Memory Allocation	CVE-2026-6535	2026-05-2 03:16	2026-04-30	Show	GitHub Exploit DB Packet Storm

447	5.5	MEDIUM Local	wireshark	wireshark	DLMS/COSEM protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2026-6536	2026-05-2 03:16	2026-04-30	Show	GitHub Exploit DB Packet Storm

448	5.5	MEDIUM Local	wireshark	wireshark	ZigBee protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service	CWE-121 Stack-based Buffer Overflow	CVE-2026-6537	2026-05-2 03:15	2026-04-30	Show	GitHub Exploit DB Packet Storm

449	5.5	MEDIUM Local	wireshark	wireshark	BEEP protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service	CWE-121 Stack-based Buffer Overflow	CVE-2026-6538	2026-05-2 03:15	2026-04-30	Show	GitHub Exploit DB Packet Storm

450	5.5	MEDIUM Local	wireshark	wireshark	SMB2 protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service	CWE-1325 Improperly Controlled Sequential Memory Allocation	CVE-2026-6867	2026-05-2 03:15	2026-04-30	Show	GitHub Exploit DB Packet Storm