Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
901	7.5	重要 Network	Getarcane	Arcane	GetarcaneのArcaneにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-42461	2026-05-18 11:30	2026-05-9	Show	GitHub Exploit DB Packet Storm

902	8.1	重要 Network	FIT2CLOUD	SQLBot	FIT2CLOUDのSQLBotにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-42463	2026-05-18 11:30	2026-05-13	Show	GitHub Exploit DB Packet Storm

903	7.8	重要 Local	マイクロソフト	Microsoft Office	マイクロソフトのMicrosoft Officeにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-42831	2026-05-18 11:30	2026-05-12	Show	GitHub Exploit DB Packet Storm

904	5.5	警告 Local	マイクロソフト	Microsoft Word Microsoft Office Microsoft Excel	マイクロソフトのMicrosoft Excel等の複数製品におけるアクセス制御に関する脆弱性	CWE-284 CWE-noinfo	CVE-2026-42832	2026-05-18 11:30	2026-05-12	Show	GitHub Exploit DB Packet Storm

905	7.5	重要 Network	Espressif Systems	ESP32 Arduino	Espressif SystemsのESP32 Arduinoにおける認証に関する脆弱性	CWE-287 CWE-noinfo	CVE-2026-42855	2026-05-18 11:30	2026-05-12	Show	GitHub Exploit DB Packet Storm

906	6.1	警告 Network	マイクロソフト	Microsoft Exchange Server	マイクロソフトのMicrosoft Exchange Serverにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42897	2026-05-18 11:30	2026-05-14	Show	GitHub Exploit DB Packet Storm

907	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-43286	2026-05-18 11:29	2026-05-8	Show	GitHub Exploit DB Packet Storm

908	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-43287	2026-05-18 11:29	2026-05-8	Show	GitHub Exploit DB Packet Storm

909	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける初期化されていないリソースの使用に関する脆弱性	CWE-908 初期化されていないリソースの使用	CVE-2026-43288	2026-05-18 11:29	2026-05-8	Show	GitHub Exploit DB Packet Storm

910	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-43289	2026-05-18 11:29	2026-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1441	-	-	-	Improper Input Validation in the AMD RAID driver could allow an attacker to point to an arbitrary memory location potentially resulting in privilege escalation and arbitrary code execution.	CWE-1220 Insufficient Granularity of Access Control	CVE-2024-21962	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

1442	-	-	-	Improper isolation of GPU HW register space could allow a privileged attacker in malicious Guest Virtual Machine (VM) to perform unauthorized access to specific victim range of GPU MMIO register spac…	CWE-1189	CVE-2024-36332	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

1443	-	-	-	An unchecked return value within the AMD Platform Management Framework (PMF) could allow an attacker to read or modify an arbitrary address potentially resulting in loss of confidentiality, integrit…	CWE-252 Unchecked Return Value	CVE-2025-0028	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

1444	-	-	-	Improper access control between the Joint Test Action Group (JTAG) and Advanced Extensible Interface (AXI) could allow an attacker with physical access to read or overwrite the contents of cross-chip…	CWE-284 Improper Access Control	CVE-2025-0040	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

1445	-	-	-	An out-of-bounds read in power management firmware by a malicious local attacker with low privileges could potentially lead to a partial loss of confidentiality and availability.	CWE-125 Out-of-bounds Read	CVE-2025-0044	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

1446	-	-	-	An out of bounds write within the AMD Platform Management Framework (PMF) could allow an attacker to execute arbitrary code at an elevated privilege level potentially leading to loss of confidentiali…	CWE-787 Out-of-bounds Write	CVE-2025-29935	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

1447	-	-	-	Improper input validation within the AMD Platform Management Framework (PMF) could allow an attacker to unmap arbitrary memory pages potentially impacting integrity and availability, or allowing priv…	CWE-20 Improper Input Validation	CVE-2025-29936	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

1448	-	-	-	An out of bounds read within the AMD Platform Management Framework (PMF) could allow an attacker to trigger a read of an arbitrary memory location potentially resulting in loss of availability or con…	CWE-125 Out-of-bounds Read	CVE-2025-29937	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

1449	-	-	-	An unchecked return value within the AMD Platform Management Framework (PMF) could allow an attacker to write to an arbitrary memory address resulting in denial of service or arbitrary code execution.	CWE-252 Unchecked Return Value	CVE-2025-29938	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm

1450	-	-	-	A buffer overflow vulnerability within AMD Sensor Fusion Hub Driver can allow a local attacker to write out of bounds, potentially resulting in denial of service or crash	CWE-120 Classic Buffer Overflow	CVE-2025-29944	2026-05-15 23:10	2026-05-15	Show	GitHub Exploit DB Packet Storm