Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1091	9.8	緊急 Network	Mozilla Foundation	Mozilla Firefox Mozilla Thunderbird	Mozilla FoundationのMozilla Firefox等の複数製品におけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-8094	2026-05-13 10:21	2026-05-7	Show	GitHub Exploit DB Packet Storm

1092	6.1	警告 Network	GitHub	Enterprise Server	GitHubのEnterprise Serverにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-8106	2026-05-13 10:21	2026-05-7	Show	GitHub Exploit DB Packet Storm

1093	7.2	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	AC6 ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のAC6 ファームウェアにおける複数の脆弱性	CWE-77 CWE-78 CWE-78	CVE-2026-8259	2026-05-13 10:21	2026-05-11	Show	GitHub Exploit DB Packet Storm

1094	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	AC6 ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のAC6 ファームウェアにおける複数の脆弱性	CWE-77 CWE-78 CWE-78	CVE-2026-8264	2026-05-13 10:21	2026-05-11	Show	GitHub Exploit DB Packet Storm

1095	7.2	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	AC6 ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のAC6 ファームウェアにおける複数の脆弱性	CWE-77 CWE-78 CWE-78	CVE-2026-8265	2026-05-13 10:21	2026-05-11	Show	GitHub Exploit DB Packet Storm

1096	7.2	重要 Network	D-Link Systems, Inc.	D-Link DNS-320 ファームウェア	D-Link CorporationのD-Link DNS-320 ファームウェアにおける複数の脆弱性	CWE-77 CWE-78 CWE-78	CVE-2026-8271	2026-05-13 10:21	2026-05-11	Show	GitHub Exploit DB Packet Storm

1097	7.2	重要 Network	D-Link Systems, Inc.	D-Link DNS-320 ファームウェア	D-Link CorporationのD-Link DNS-320 ファームウェアにおける複数の脆弱性	CWE-77 CWE-78 CWE-78	CVE-2026-8272	2026-05-13 10:20	2026-05-11	Show	GitHub Exploit DB Packet Storm

1098	7.2	重要 Network	D-Link Systems, Inc.	D-Link DNS-320 ファームウェア	D-Link CorporationのD-Link DNS-320 ファームウェアにおける複数の脆弱性	CWE-77 CWE-78 CWE-78	CVE-2026-8273	2026-05-13 10:20	2026-05-11	Show	GitHub Exploit DB Packet Storm

1099	9.8	緊急 Network	エレコム株式会社	WAB-S300IW2-PD WRC-X3000GST2-B WRC-X1800GS-B WRC-X6000QSA-G WRC-X3000GS2-W WAB-S733IW2-PD WAB-S733IW-AC WAB-S733IW-PD WRC-XE5400GS-G WRC-X3000GS2-B WRC-X1800GSA-B WRC…	エレコム無線LAN関連製品における複数の脆弱性	CWE-352 CWE-78 CWE-Other	CVE-2026-20704 CVE-2026-22550 CVE-2026-24449 CVE-2026-24465	2026-05-12 15:09	2026-02-3	Show	GitHub Exploit DB Packet Storm

1100	8.8	重要 Adjacent	エレコム株式会社	WRC-X3000GS2-B ファームウェア WAB-I1750-PS WAB-S1775 ファームウェア WRC-X3000GST2-B WAB-S733MI WAB-S1167-PS WRC-X3000GS2A-B ファームウェア WAB-M1775-PS ファームウェア WRC-X3000GS2-W&n…	エレコム製無線LANルーターおよび無線アクセスポイントにおける複数の脆弱性	CWE-119 CWE-79 CWE-Other	CVE-2024-34577 CVE-2024-39300 CVE-2024-42412 CVE-2024-43689	2026-05-12 15:01	2024-08-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312071	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel: Limit the period on Haswell Running the ltp test cve-2015-3290 concurrently reports the following warnings. perf…	NVD-CWE-noinfo	CVE-2024-46848	2024-10-5 00:23	2024-09-27	Show	GitHub Exploit DB Packet Storm

312072	7.5	HIGH Network	planet	gs-4210-24p2s_firmware gs-4210-24pl4c_firmware	The swctrl service is used to detect and remotely manage PLANET Technology devices. Certain switch models have a Denial-of-Service vulnerability in the swctrl service, allowing unauthenticated remote…	CWE-476 CWE-400 NULL Pointer Dereference Uncontrolled Resource Consumption	CVE-2024-8454	2024-10-5 00:11	2024-09-30	Show	GitHub Exploit DB Packet Storm

312073	4.9	MEDIUM Network	planet	gs-4210-24p2s_firmware gs-4210-24pl4c_firmware	Certain switch models from PLANET Technology use an insecure hashing function to hash user passwords without being salted. Remote attackers with administrator privileges can read configuration files …	CWE-328 CWE-759 Use of Weak Hash Use of a One-Way Hash without a Salt	CVE-2024-8453	2024-10-5 00:10	2024-09-30	Show	GitHub Exploit DB Packet Storm

312074	7.5	HIGH Network	planet	gs-4210-24p2s_firmware gs-4210-24pl4c_firmware	Certain switch models from PLANET Technology only support obsolete algorithms for authentication protocol and encryption protocol in the SNMPv3 service, allowing attackers to obtain plaintext SNMPv3 …	CWE-327 CWE-328 Use of a Broken or Risky Cryptographic Algorithm Use of Weak Hash	CVE-2024-8452	2024-10-5 00:10	2024-09-30	Show	GitHub Exploit DB Packet Storm

312075	7.5	HIGH Network	planet	gs-4210-24p2s_firmware gs-4210-24pl4c_firmware	Certain switch models from PLANET Technology have an SSH service that improperly handles insufficiently authenticated connection requests, allowing unauthorized remote attackers to exploit this weakn…	CWE-400 CWE-280 Uncontrolled Resource Consumption Improper Handling of Insufficient Permissions or Privileges	CVE-2024-8451	2024-10-5 00:09	2024-09-30	Show	GitHub Exploit DB Packet Storm

312076	9.8	CRITICAL Network	planet	gs-4210-24p2s_firmware gs-4210-24pl4c_firmware	Certain switch models from PLANET Technology have a Hard-coded community string in the SNMPv1 service, allowing unauthorized remote attackers to use this community string to access the SNMPv1 service…	CWE-798 Use of Hard-coded Credentials	CVE-2024-8450	2024-10-5 00:08	2024-09-30	Show	GitHub Exploit DB Packet Storm

312077	6.8	MEDIUM Physics	planet	gs-4210-24p2s_firmware gs-4210-24pl4c_firmware	Certain switch models from PLANET Technology have a Hard-coded Credential in the password recovering functionality, allowing an unauthenticated attacker to connect to the device via the serial consol…	CWE-798 Use of Hard-coded Credentials	CVE-2024-8449	2024-10-5 00:08	2024-09-30	Show	GitHub Exploit DB Packet Storm

312078	8.8	HIGH Network	planet	gs-4210-24p2s_firmware gs-4210-24pl4c_firmware	Certain switch models from PLANET Technology have a hard-coded credential in the specific command-line interface, allowing remote attackers with regular privilege to log in with this credential and o…	CWE-798 Use of Hard-coded Credentials	CVE-2024-8448	2024-10-5 00:07	2024-09-30	Show	GitHub Exploit DB Packet Storm

312079	4.8	MEDIUM Network	planet	gs-4210-24p2s_firmware gs-4210-24pl4c_firmware	Certain switch models from PLANET Technology have a web application that does not properly validate specific parameters, allowing remote authenticated users with administrator privileges to inject ar…	CWE-79 Cross-site Scripting	CVE-2024-8457	2024-10-4 23:45	2024-09-30	Show	GitHub Exploit DB Packet Storm

312080	9.8	CRITICAL Network	planet	gs-4210-24p2s_firmware gs-4210-24pl4c_firmware	Certain switch models from PLANET Technology lack proper access control in firmware upload and download functionality, allowing unauthenticated remote attackers to download and upload firmware and sy…	CWE-306 Missing Authentication for Critical Function	CVE-2024-8456	2024-10-4 23:45	2024-09-30	Show	GitHub Exploit DB Packet Storm