Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4531	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows 11 26h1 Microsoft Windows Server 2025 Microsoft Windows 11 24h2 Microsoft Wind…	Windows 記憶域スペースコントローラーの特権昇格の脆弱性	CWE-191 整数アンダーフロー	CVE-2026-27907	2026-04-24 11:32	2026-04-14	Show	GitHub Exploit DB Packet Storm

4532	7	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows TDI 翻訳ドライバー (tdx.sys) の特権昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-27908	2026-04-24 11:32	2026-04-14	Show	GitHub Exploit DB Packet Storm

4533	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows Search サービスの特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-27909	2026-04-24 11:32	2026-04-14	Show	GitHub Exploit DB Packet Storm

4534	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows インストーラーの特権の昇格の脆弱性	CWE-280 権限管理不備	CVE-2026-27910	2026-04-24 11:32	2026-04-14	Show	GitHub Exploit DB Packet Storm

4535	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows ユーザーインターフェイスコアの特権昇格の脆弱性	CWE-362 CWE-416	CVE-2026-27911	2026-04-24 11:32	2026-04-14	Show	GitHub Exploit DB Packet Storm

4536	8	重要 Adjacent	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows Server 2025 Microsoft Windows Server 2019 Microsoft Windows Server 2022 Microso…	Windows Kerberos の特権の昇格の脆弱性	CWE-285 不適切な認可	CVE-2026-27912	2026-04-24 11:32	2026-04-14	Show	GitHub Exploit DB Packet Storm

4537	7.7	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows Server 2022 Microsoft Windows Server 2012 Microsoft Windows Server 2016	Windows BitLocker セキュリティ機能バイパスの脆弱性	CWE-20 不適切な入力確認	CVE-2026-27913	2026-04-24 11:32	2026-04-14	Show	GitHub Exploit DB Packet Storm

4538	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Microsoft 管理コンソールの特権昇格の脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-27914	2026-04-24 11:32	2026-04-14	Show	GitHub Exploit DB Packet Storm

4539	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows UPnP Device Host の特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-27915	2026-04-24 11:32	2026-04-14	Show	GitHub Exploit DB Packet Storm

4540	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows UPnP Device Host の特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-27916	2026-04-24 11:32	2026-04-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
111	8.8	HIGH Network	-	-	NVIDIA BioNeMo Core for Linux contains a vulnerability where a user could cause a path traversal by loading a malicious file. A successful exploit of this vulnerability might lead to code execution, … New	CWE-29 Path Traversal: '\..\filename'	CVE-2026-24217	2026-05-22 00:26	2026-05-21	Show	GitHub Exploit DB Packet Storm

112	8.1	HIGH Network	-	-	NVIDIA DGX OS contains a vulnerability in the factory provisioning process, where the cloning of a base image causes identical SSH host keys to be deployed across multiple systems. The sharing of cr… New	CWE-321 Use of Hard-coded Cryptographic Key	CVE-2026-24218	2026-05-22 00:26	2026-05-21	Show	GitHub Exploit DB Packet Storm

113	6.5	MEDIUM Network	-	-	A flaw was found in libsolv. This stack-based buffer overflow vulnerability occurs in libsolv's Debian metadata parser when processing specially crafted Debian repository metadata. An attacker could … New	CWE-121 Stack-based Buffer Overflow	CVE-2026-9150	2026-05-22 00:26	2026-05-21	Show	GitHub Exploit DB Packet Storm

114	6.5	MEDIUM Network	-	-	A flaw was found in libsolv. This heap buffer overflow vulnerability occurs when a victim processes a specially crafted `.solv` file containing negative size values in the `repo_add_solv` function. T… New	CWE-122 Heap-based Buffer Overflow	CVE-2026-9149	2026-05-22 00:26	2026-05-21	Show	GitHub Exploit DB Packet Storm

115	4.3	MEDIUM Network	-	-	Mattermost versions 11.5.x <= 11.5.1 fail to validate team-level run_create permission against the target team when creating a playbook run which allows an authenticated team member to create runs in… New	CWE-863 Incorrect Authorization	CVE-2026-4055	2026-05-22 00:26	2026-05-21	Show	GitHub Exploit DB Packet Storm

116	6.1	MEDIUM Network	-	-	Mattermost Mobile Apps versions <=2.37 11.4 2.0.37 11.0.4 11.1.3 11.3.2 10.11.11.0 fail to properly validate the SSO authentication callback origin which allows an attacker controlling a malicious Ma… New	CWE-352 Origin Validation Error	CVE-2026-22880	2026-05-22 00:26	2026-05-21	Show	GitHub Exploit DB Packet Storm

117	8.0	HIGH Network	-	-	Mattermost versions 11.6.x <= 11.6.0, 11.5.x <= 11.5.3, 11.4.x <= 11.4.4, 10.11.x <= 10.11.14 fail to check integration URL for path traversal which allows an malicious authenticated user to call an… New	CWE-22 Path Traversal	CVE-2026-4858	2026-05-22 00:26	2026-05-21	Show	GitHub Exploit DB Packet Storm

118	9.1	CRITICAL Network	-	-	Honeywell Control Network Module (CNM) contains command injection vulnerability in the web interface. An attacker could exploit this vulnerability via command delimiters, potentially resulting in Rem… New	-	CVE-2026-5433	2026-05-22 00:26	2026-05-21	Show	GitHub Exploit DB Packet Storm

119	5.9	MEDIUM Network	-	-	Honeywell Control Network Module (CNM) contains insertion of sensitive information into an unintended directory. An attacker could exploit this vulnerability through probing system files, potentially… New	CWE-538 File and Directory Information Exposure	CVE-2026-5434	2026-05-22 00:26	2026-05-21	Show	GitHub Exploit DB Packet Storm

120	8.4	HIGH Network	-	-	Zohocorp ManageEngine ADSelfService Plus version before 6525, DataSecurity Plus before 6264 and RecoveryManager Plus before 6313 are vulnerable to Authenticated Remote code execution in the agent mac… New	CWE-77 Command Injection	CVE-2026-2740	2026-05-22 00:26	2026-05-21	Show	GitHub Exploit DB Packet Storm