Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4601 5.3 警告
Network 		Schneider Electric PowerChute Serial Shutdown Schneider Electric のPowerChute Serial Shutdownにおける過度な認証試行の不適切な制限に関する脆弱性 CWE-307
過度な認証試行の不適切な制限 		CVE-2026-2402 2026-04-24 11:38 2026-04-14 Show GitHub Exploit DB Packet Storm
4602 4.3 警告
Network 		Schneider Electric PowerChute Serial Shutdown Schneider Electric のPowerChute Serial Shutdownにおける入力で指定された数量の不適切な検証に関する脆弱性 CWE-1284
入力で指定された数量の不適切な検証 		CVE-2026-2403 2026-04-24 11:38 2026-04-14 Show GitHub Exploit DB Packet Storm
4603 5.3 警告
Network 		Schneider Electric PowerChute Serial Shutdown Schneider Electric のPowerChute Serial Shutdownにおけるエンコードおよびエスケープに関する脆弱性 CWE-116
不適切なエンコード、または出力のエスケープ 		CVE-2026-2404 2026-04-24 11:38 2026-04-14 Show GitHub Exploit DB Packet Storm
4604 6.5 警告
Network 		Schneider Electric PowerChute Serial Shutdown Schneider Electric のPowerChute Serial Shutdownにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-2405 2026-04-24 11:38 2026-04-14 Show GitHub Exploit DB Packet Storm
4605 9.8 緊急
Network 		OpenAEV OpenAEV OpenAEVにおけるパスワード管理機能に関する脆弱性 CWE-640
パスワードを忘れた場合の脆弱なパスワードリカバリの仕組み 		CVE-2026-24467 2026-04-24 11:38 2026-04-20 Show GitHub Exploit DB Packet Storm
4606 7.5 重要
Network 		Vexa AI, Inc. Vexa Vexa AI, Inc.のVexaにおける複数の脆弱性 CWE-306
CWE-862
CVE-2026-25058 2026-04-24 11:37 2026-04-20 Show GitHub Exploit DB Packet Storm
4607 5.8 警告
Network 		Vexa AI, Inc. Vexa Vexa AI, Inc.のVexaにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-25883 2026-04-24 11:37 2026-04-20 Show GitHub Exploit DB Packet Storm
4608 6.1 警告
Network 		アドビシステムズ Adobe Connect
Adobe Connect Desktop Application 		アドビのAdobe Connect等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-27243 2026-04-24 11:37 2026-04-14 Show GitHub Exploit DB Packet Storm
4609 6.1 警告
Network 		アドビシステムズ Adobe Connect
Adobe Connect Desktop Application 		アドビのAdobe Connect等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-27245 2026-04-24 11:37 2026-04-14 Show GitHub Exploit DB Packet Storm
4610 6.1 警告
Network 		アドビシステムズ Adobe Connect
Adobe Connect Desktop Application 		アドビのAdobe Connect等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-27246 2026-04-24 11:37 2026-04-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
221 4.9 MEDIUM
Network 		- - Insufficient Validation of Member Zone Data May Cause Catalog Zone Transfer to Fail CWE-94
Code Injection 		CVE-2026-42396 2026-05-22 00:27 2026-05-21 Show GitHub Exploit DB Packet Storm
222 8.2 HIGH
Network 		- - NVIDIA TensorRT contains a vulnerability where an attacker could cause an out-of-bounds write. A successful exploit of this vulnerability might lead to data tampering. CWE-787
 Out-of-bounds Write 		CVE-2026-24188 2026-05-22 00:26 2026-05-21 Show GitHub Exploit DB Packet Storm
223 7.8 HIGH
Local 		- - NVIDIA BioNemo for Linux contains a vulnerability where a user could cause a deserialization of untrusted data. A successful exploit of this vulnerability might lead to code execution, denial of serv… CWE-502
 Deserialization of Untrusted Data 		CVE-2026-24216 2026-05-22 00:26 2026-05-21 Show GitHub Exploit DB Packet Storm
224 8.8 HIGH
Network 		- - NVIDIA BioNeMo Core for Linux contains a vulnerability where a user could cause a path traversal by loading a malicious file. A successful exploit of this vulnerability might lead to code execution, … CWE-29
 Path Traversal: '\..\filename' 		CVE-2026-24217 2026-05-22 00:26 2026-05-21 Show GitHub Exploit DB Packet Storm
225 8.1 HIGH
Network 		- - NVIDIA DGX OS contains a vulnerability in the factory provisioning process, where the cloning of a base image causes identical SSH host keys to be deployed across multiple systems. The sharing of cr… CWE-321
 Use of Hard-coded Cryptographic Key 		CVE-2026-24218 2026-05-22 00:26 2026-05-21 Show GitHub Exploit DB Packet Storm
226 6.5 MEDIUM
Network 		- - A flaw was found in libsolv. This stack-based buffer overflow vulnerability occurs in libsolv's Debian metadata parser when processing specially crafted Debian repository metadata. An attacker could … CWE-121
Stack-based Buffer Overflow 		CVE-2026-9150 2026-05-22 00:26 2026-05-21 Show GitHub Exploit DB Packet Storm
227 6.5 MEDIUM
Network 		- - A flaw was found in libsolv. This heap buffer overflow vulnerability occurs when a victim processes a specially crafted `.solv` file containing negative size values in the `repo_add_solv` function. T… CWE-122
Heap-based Buffer Overflow 		CVE-2026-9149 2026-05-22 00:26 2026-05-21 Show GitHub Exploit DB Packet Storm
228 4.3 MEDIUM
Network 		- - Mattermost versions 11.5.x <= 11.5.1 fail to validate team-level run_create permission against the target team when creating a playbook run which allows an authenticated team member to create runs in… CWE-863
 Incorrect Authorization 		CVE-2026-4055 2026-05-22 00:26 2026-05-21 Show GitHub Exploit DB Packet Storm
229 6.1 MEDIUM
Network 		- - Mattermost Mobile Apps versions <=2.37 11.4 2.0.37 11.0.4 11.1.3 11.3.2 10.11.11.0 fail to properly validate the SSO authentication callback origin which allows an attacker controlling a malicious Ma… CWE-352
 Origin Validation Error 		CVE-2026-22880 2026-05-22 00:26 2026-05-21 Show GitHub Exploit DB Packet Storm
230 8.0 HIGH
Network 		- - Mattermost versions 11.6.x <= 11.6.0, 11.5.x <= 11.5.3, 11.4.x <= 11.4.4, 10.11.x <= 10.11.14 fail to check integration URL for path traversal which allows an malicious authenticated user to call an… CWE-22
Path Traversal 		CVE-2026-4858 2026-05-22 00:26 2026-05-21 Show GitHub Exploit DB Packet Storm