Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 2:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3821	6.5	警告 Network	TOTOLINK	a3300r ファームウェア	TOTOLINKのa3300r ファームウェアにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-31174	2026-04-27 10:50	2026-04-23	Show	GitHub Exploit DB Packet Storm

3822	9.8	緊急 Network	TOTOLINK	a3300r ファームウェア	TOTOLINKのa3300r ファームウェアにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-31175	2026-04-27 10:50	2026-04-23	Show	GitHub Exploit DB Packet Storm

3823	6.5	警告 Network	TOTOLINK	a3300r ファームウェア	TOTOLINKのa3300r ファームウェアにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-31176	2026-04-27 10:50	2026-04-23	Show	GitHub Exploit DB Packet Storm

3824	8.2	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-31788	2026-04-27 10:50	2026-03-25	Show	GitHub Exploit DB Packet Storm

3825	6.5	警告 Network	Roxy-WI	Roxy-WI	Roxy-WIにおけるパストラバーサルの脆弱性	CWE-24 パストラバーサル (../filedir)	CVE-2026-33431	2026-04-27 10:50	2026-04-20	Show	GitHub Exploit DB Packet Storm

3826	9.1	緊急 Network	Roxy-WI	Roxy-WI	Roxy-WIにおける認証に関する脆弱性	CWE-287 CWE-noinfo	CVE-2026-33432	2026-04-27 10:50	2026-04-20	Show	GitHub Exploit DB Packet Storm

3827	7.5	重要 Network	PowerDNS	dnsdist	PowerDNSのdnsdistにおけるゼロ除算に関する脆弱性	CWE-369 ゼロ除算	CVE-2026-33593	2026-04-27 10:50	2026-04-22	Show	GitHub Exploit DB Packet Storm

3828	7.5	重要 Network	PowerDNS	dnsdist	PowerDNSのdnsdistにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-33594	2026-04-27 10:50	2026-04-22	Show	GitHub Exploit DB Packet Storm

3829	7.5	重要 Network	PowerDNS	dnsdist	PowerDNSのdnsdistにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-33595	2026-04-27 10:50	2026-04-22	Show	GitHub Exploit DB Packet Storm

3830	6.5	警告 Adjacent	PowerDNS	dnsdist	PowerDNSのdnsdistにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-33596	2026-04-27 10:50	2026-04-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
931	-	-	-	Incorrect default permissions in the installation directory for the AMD chipset driver could allow an attacker to achieve privilege escalation resulting in arbitrary code execution.	CWE-276 Incorrect Default Permissions	CVE-2026-0432	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

932	-	-	-	A System Management Mode (SMM) handler could perform a callout to code located in non-SMM/untrusted memory. A highly privileged attacker could, with active user interaction and under high complexity …	CWE-1072	CVE-2026-0438	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

933	-	-	-	A compromised Trusted OS (TOS) driver could issue a malformed call that could potentially allow memory access outside the intended range resulting in loss of integrity.	CWE-190 Integer Overflow or Wraparound	CVE-2021-26380	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

934	-	-	-	A TOCTOU (Time-Of-Check to Time-Of-Use) in the graphics interface may allow an attacker to load registers repeatedly creating a race condition potentially leading to a loss of integrity.	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2022-23826	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

935	-	-	-	Improper validation in Power Management Firmware (PMFW) may allow an attacker with privileges to pass malformed workload arguments when exporting table data from SMU to DRAM potentially resulting in …	CWE-129 Improper Validation of Array Index	CVE-2023-31309	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

936	-	-	-	Improperly preserved integrity of hardware configuration state during a power save/restore operation in the AMD Secure Processor (ASP) could allow an attacker with the ability to write outside the tr…	CWE-1304	CVE-2023-31316	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

937	-	-	-	Improper restriction of operations within the bounds of a memory buffer in the AMD secure processer (ASP) could allow an attacker to read or write to protected memory potentially resulting in arbitra…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2023-31317	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

938	-	-	-	Improper Input Validation in the AMD RAID driver could allow an attacker to point to an arbitrary memory location potentially resulting in privilege escalation and arbitrary code execution.	CWE-1220 Insufficient Granularity of Access Control	CVE-2024-21962	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

939	-	-	-	Improper isolation of GPU HW register space could allow a privileged attacker in malicious Guest Virtual Machine (VM) to perform unauthorized access to specific victim range of GPU MMIO register spac…	CWE-1189	CVE-2024-36332	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

940	-	-	-	An unchecked return value within the AMD Platform Management Framework (PMF) could allow an attacker to read or modify an arbitrary address potentially resulting in loss of confidentiality, integrit…	CWE-252 Unchecked Return Value	CVE-2025-0028	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm