Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
871 8.1 重要
Network 		Vercel, Inc. (旧 Zeit, Inc.) Next.js Vercel, Inc. (旧 Zeit, Inc.)のNext.jsにおける代替パスまたはチャネルを使用した認証回避に関する脆弱性 CWE-288
代替パスまたはチャネルを使用した認証回避 		CVE-2026-44574 2026-05-15 10:57 2026-05-13 Show GitHub Exploit DB Packet Storm
872 7.5 重要
Network 		Vercel, Inc. (旧 Zeit, Inc.) Next.js Vercel, Inc. (旧 Zeit, Inc.)のNext.jsにおける代替パスまたはチャネルを使用した認証回避に関する脆弱性 CWE-288
代替パスまたはチャネルを使用した認証回避 		CVE-2026-44575 2026-05-15 10:57 2026-05-13 Show GitHub Exploit DB Packet Storm
873 5.9 警告
Network 		Vercel, Inc. (旧 Zeit, Inc.) Next.js Vercel, Inc. (旧 Zeit, Inc.)のNext.jsにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-44577 2026-05-15 10:57 2026-05-13 Show GitHub Exploit DB Packet Storm
874 10 緊急
Network 		Peerigon angular-expressions Peerigonのangular-expressionsにおけるEval インジェクションに関する脆弱性 CWE-95
Evalインジェクション 		CVE-2026-44643 2026-05-15 10:57 2026-05-11 Show GitHub Exploit DB Packet Storm
875 7.7 重要
Network 		Grav CMS grav Grav CMSのgravにおける情報漏えいに関する脆弱性 CWE-200
CWE-noinfo
CVE-2026-44738 2026-05-15 10:57 2026-05-11 Show GitHub Exploit DB Packet Storm
876 5.5 警告
Local 		jqlang jq jqlangのjqにおける再帰制御に関する脆弱性 CWE-674
不適切な再帰制御 		CVE-2026-44777 2026-05-15 10:57 2026-05-11 Show GitHub Exploit DB Packet Storm
877 4.2 警告
Network 		OpenClaw OpenClaw OpenClawにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-44991 2026-05-15 10:57 2026-05-11 Show GitHub Exploit DB Packet Storm
878 5 警告
Local 		OpenClaw OpenClaw OpenClawにおけるフィルタリングの回避に関する脆弱性 CWE-441
フィルタリング回避 		CVE-2026-44992 2026-05-15 10:57 2026-05-11 Show GitHub Exploit DB Packet Storm
879 5.4 警告
Network 		OpenClaw OpenClaw OpenClawにおける不完全なブラックリストに関する脆弱性 CWE-184
不完全なブラックリスト 		CVE-2026-44993 2026-05-15 10:57 2026-05-11 Show GitHub Exploit DB Packet Storm
880 5.3 警告
Network 		OpenClaw OpenClaw OpenClawにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-44994 2026-05-15 10:57 2026-05-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1141 - - - Incorrect default permissions in the installation directory for the AMD general-purpose input/output controller (GPIO) could allow an attacker to achieve privilege escalation resulting in arbitrary c… CWE-276
Incorrect Default Permissions  		CVE-2025-48512 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
1142 - - - An improper input validation vulnerability within the AMD Platform Management Framework (PMF) driver can allow a local attacker to read or write Out-of-Bounds, potentially resulting in privilege esca… CWE-787
 Out-of-bounds Write 		CVE-2025-48519 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
1143 - - - An improper input validation vulnerability within the AMD Platform Management Framework (PMF) driver can allow a local attacker to read Out-of-Bounds potentially resulting in information disclosure o… CWE-125
Out-of-bounds Read 		CVE-2025-48520 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
1144 - - - Improper input validation in the AMD Secure Processor (ASP) PCI driver could allow a local attacker to trigger a Use-After-Free (UAF) condition, potentially resulting in a loss of platform integrity … CWE-416
 Use After Free 		CVE-2025-48521 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
1145 - - - An improper input validation vulnerability within the AMD Platform Management Framework (PMF) Driver can allow a local attacker to write Out-of-Bounds, potentially resulting in privilege escalation. CWE-787
 Out-of-bounds Write 		CVE-2025-52540 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
1146 - - - Incorrect default permissions in the installation directory for the AMD chipset driver could allow an attacker to achieve privilege escalation resulting in arbitrary code execution. CWE-276
Incorrect Default Permissions  		CVE-2026-0432 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
1147 - - - A System Management Mode (SMM) handler could perform a callout to code located in non-SMM/untrusted memory. A highly privileged attacker could, with active user interaction and under high complexity … CWE-1072
CVE-2026-0438 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
1148 - - - A compromised Trusted OS (TOS) driver could issue a malformed call that could potentially allow memory access outside the intended range resulting in loss of integrity. CWE-190
 Integer Overflow or Wraparound 		CVE-2021-26380 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
1149 - - - A TOCTOU (Time-Of-Check to Time-Of-Use) in the graphics interface may allow an attacker to load registers repeatedly creating a race condition potentially leading to a loss of integrity. CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2022-23826 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
1150 - - - Improper validation in Power Management Firmware (PMFW) may allow an attacker with privileges to pass malformed workload arguments when exporting table data from SMU to DRAM potentially resulting in … CWE-129
 Improper Validation of Array Index 		CVE-2023-31309 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm