Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4531	5.3	警告 Network	Discourse	Discourse	Discourseにおける情報漏えいに関する脆弱性	CWE-200 CWE-noinfo	CVE-2026-27481	2026-04-24 11:32	2026-04-3	Show	GitHub Exploit DB Packet Storm

4532	2.7	低 Network	Mattermost, Inc.	Mattermost Server	Mattermost, Inc.のMattermost Serverにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-27769	2026-04-24 11:32	2026-04-15	Show	GitHub Exploit DB Packet Storm

4533	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows 11 26h1 Microsoft Windows Server 2025 Microsoft Windows 11 24h2 Microsoft Wind…	Windows 記憶域スペースコントローラーの特権昇格の脆弱性	CWE-191 整数アンダーフロー	CVE-2026-27907	2026-04-24 11:32	2026-04-14	Show	GitHub Exploit DB Packet Storm

4534	7	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows TDI 翻訳ドライバー (tdx.sys) の特権昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-27908	2026-04-24 11:32	2026-04-14	Show	GitHub Exploit DB Packet Storm

4535	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows Search サービスの特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-27909	2026-04-24 11:32	2026-04-14	Show	GitHub Exploit DB Packet Storm

4536	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows インストーラーの特権の昇格の脆弱性	CWE-280 権限管理不備	CVE-2026-27910	2026-04-24 11:32	2026-04-14	Show	GitHub Exploit DB Packet Storm

4537	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows ユーザーインターフェイスコアの特権昇格の脆弱性	CWE-362 CWE-416	CVE-2026-27911	2026-04-24 11:32	2026-04-14	Show	GitHub Exploit DB Packet Storm

4538	8	重要 Adjacent	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows Server 2025 Microsoft Windows Server 2019 Microsoft Windows Server 2022 Microso…	Windows Kerberos の特権の昇格の脆弱性	CWE-285 不適切な認可	CVE-2026-27912	2026-04-24 11:32	2026-04-14	Show	GitHub Exploit DB Packet Storm

4539	7.7	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows Server 2022 Microsoft Windows Server 2012 Microsoft Windows Server 2016	Windows BitLocker セキュリティ機能バイパスの脆弱性	CWE-20 不適切な入力確認	CVE-2026-27913	2026-04-24 11:32	2026-04-14	Show	GitHub Exploit DB Packet Storm

4540	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Microsoft 管理コンソールの特権昇格の脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-27914	2026-04-24 11:32	2026-04-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211	7.8	HIGH Local	-	-	NVIDIA BioNemo for Linux contains a vulnerability where a user could cause a deserialization of untrusted data. A successful exploit of this vulnerability might lead to code execution, denial of serv… New	CWE-502 Deserialization of Untrusted Data	CVE-2026-24216	2026-05-22 00:26	2026-05-21	Show	GitHub Exploit DB Packet Storm

212	8.8	HIGH Network	-	-	NVIDIA BioNeMo Core for Linux contains a vulnerability where a user could cause a path traversal by loading a malicious file. A successful exploit of this vulnerability might lead to code execution, … New	CWE-29 Path Traversal: '\..\filename'	CVE-2026-24217	2026-05-22 00:26	2026-05-21	Show	GitHub Exploit DB Packet Storm

213	8.1	HIGH Network	-	-	NVIDIA DGX OS contains a vulnerability in the factory provisioning process, where the cloning of a base image causes identical SSH host keys to be deployed across multiple systems. The sharing of cr… New	CWE-321 Use of Hard-coded Cryptographic Key	CVE-2026-24218	2026-05-22 00:26	2026-05-21	Show	GitHub Exploit DB Packet Storm

214	6.5	MEDIUM Network	-	-	A flaw was found in libsolv. This stack-based buffer overflow vulnerability occurs in libsolv's Debian metadata parser when processing specially crafted Debian repository metadata. An attacker could … New	CWE-121 Stack-based Buffer Overflow	CVE-2026-9150	2026-05-22 00:26	2026-05-21	Show	GitHub Exploit DB Packet Storm

215	6.5	MEDIUM Network	-	-	A flaw was found in libsolv. This heap buffer overflow vulnerability occurs when a victim processes a specially crafted `.solv` file containing negative size values in the `repo_add_solv` function. T… New	CWE-122 Heap-based Buffer Overflow	CVE-2026-9149	2026-05-22 00:26	2026-05-21	Show	GitHub Exploit DB Packet Storm

216	4.3	MEDIUM Network	-	-	Mattermost versions 11.5.x <= 11.5.1 fail to validate team-level run_create permission against the target team when creating a playbook run which allows an authenticated team member to create runs in… New	CWE-863 Incorrect Authorization	CVE-2026-4055	2026-05-22 00:26	2026-05-21	Show	GitHub Exploit DB Packet Storm

217	6.1	MEDIUM Network	-	-	Mattermost Mobile Apps versions <=2.37 11.4 2.0.37 11.0.4 11.1.3 11.3.2 10.11.11.0 fail to properly validate the SSO authentication callback origin which allows an attacker controlling a malicious Ma… New	CWE-352 Origin Validation Error	CVE-2026-22880	2026-05-22 00:26	2026-05-21	Show	GitHub Exploit DB Packet Storm

218	8.0	HIGH Network	-	-	Mattermost versions 11.6.x <= 11.6.0, 11.5.x <= 11.5.3, 11.4.x <= 11.4.4, 10.11.x <= 10.11.14 fail to check integration URL for path traversal which allows an malicious authenticated user to call an… New	CWE-22 Path Traversal	CVE-2026-4858	2026-05-22 00:26	2026-05-21	Show	GitHub Exploit DB Packet Storm

219	9.1	CRITICAL Network	-	-	Honeywell Control Network Module (CNM) contains command injection vulnerability in the web interface. An attacker could exploit this vulnerability via command delimiters, potentially resulting in Rem… New	-	CVE-2026-5433	2026-05-22 00:26	2026-05-21	Show	GitHub Exploit DB Packet Storm

220	5.9	MEDIUM Network	-	-	Honeywell Control Network Module (CNM) contains insertion of sensitive information into an unintended directory. An attacker could exploit this vulnerability through probing system files, potentially… New	CWE-538 File and Directory Information Exposure	CVE-2026-5434	2026-05-22 00:26	2026-05-21	Show	GitHub Exploit DB Packet Storm