Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1211	7.8	重要 Local	radare	radare2	radareのradare2における複数の脆弱性	CWE-22 CWE-59	CVE-2026-6941	2026-04-30 12:24	2026-04-23	Show	GitHub Exploit DB Packet Storm

1212	7.5	重要 Network	Sgbett	BSV Ruby SDK (bsv-sdk)	SgbettのBSV Ruby SDK (bsv-sdk)における例外的な状態のチェックに関する脆弱性	CWE-754 例外的な状態における不適切なチェック	CVE-2026-40069	2026-04-30 12:18	2026-04-9	Show	GitHub Exploit DB Packet Storm

1213	5.3	警告 Network	SenseLive	X3500 Firmware	SenseLiveのX3500 Firmwareにおける重要な情報の平文での送信に関する脆弱性	CWE-319 重要な情報の平文での送信	CVE-2026-40431	2026-04-30 12:18	2026-04-24	Show	GitHub Exploit DB Packet Storm

1214	9.8	緊急 Network	SenseLive	X3500 Firmware	SenseLiveのX3500 Firmwareにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-40620	2026-04-30 12:18	2026-04-24	Show	GitHub Exploit DB Packet Storm

1215	8.1	重要 Network	SenseLive	X3500 Firmware	SenseLiveのX3500 Firmwareにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-40623	2026-04-30 12:18	2026-04-24	Show	GitHub Exploit DB Packet Storm

1216	9.8	緊急 Network	SenseLive	X3500 Firmware	SenseLiveのX3500 Firmwareにおける代替パスまたはチャネルを使用した認証回避に関する脆弱性	CWE-288 代替パスまたはチャネルを使用した認証回避	CVE-2026-40630	2026-04-30 12:18	2026-04-24	Show	GitHub Exploit DB Packet Storm

1217	5.3	警告 Network	opentelemetry	opentelemetry OpenTelemetry.Extensions.Propagators Opentelemetry.api	opentelemetryのOpentelemetry.api等の複数製品における過剰なサイズ値のメモリ割り当てに関する脆弱性	CWE-789 過剰なサイズ値のメモリ割り当て	CVE-2026-40894	2026-04-30 12:18	2026-04-23	Show	GitHub Exploit DB Packet Storm

1218	10	緊急 Network	VoidZero Inc.	Vite+	VoidZero Inc.のVite+におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-41211	2026-04-30 12:18	2026-04-23	Show	GitHub Exploit DB Packet Storm

1219	5.4	警告 Network	Siemvk (siemvk)	Openlearn	Siemvk (siemvk)のOpenlearnにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-41243	2026-04-30 12:18	2026-04-23	Show	GitHub Exploit DB Packet Storm

1220	8.8	重要 Network	Deskflow	Deskflow	Deskflowにおける古典的バッファオーバーフローの脆弱性	CWE-120 古典的バッファオーバーフロー	CVE-2026-41476	2026-04-30 12:18	2026-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313401	9.8	CRITICAL Network	vonets	var1200-h_firmware var1200-l_firmware var600-h_firmware vap11ac_firmware vap11g-500s_firmware vbg1200_firmware vap11s-5g_firmware vap11s_firmware var11n-300_firmware vap11g…	Use of hard-coded credentials vulnerability affecting Vonets industrial wifi bridge relays and WiFi bridge repeaters, software versions 3.3.23.6.9 and prior, enables an unauthenticated remote attack…	CWE-798 Use of Hard-coded Credentials	CVE-2024-41161	2024-08-21 02:09	2024-08-9	Show	GitHub Exploit DB Packet Storm

313402	5.5	MEDIUM Local	huawei	emui harmonyos	Access permission verification vulnerability in the Contacts module Impact: Successful exploitation of this vulnerability may affect service confidentiality.	NVD-CWE-noinfo	CVE-2024-42032	2024-08-21 01:58	2024-08-8	Show	GitHub Exploit DB Packet Storm

313403	7.5	HIGH Network	huawei	emui harmonyos	Access permission verification vulnerability in the Settings module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.	NVD-CWE-noinfo	CVE-2024-42031	2024-08-21 01:57	2024-08-8	Show	GitHub Exploit DB Packet Storm

313404	6.2	MEDIUM Local	huawei	harmonyos emui	Access permission verification vulnerability in the content sharing pop-up module Impact: Successful exploitation of this vulnerability may affect service confidentiality.	NVD-CWE-noinfo	CVE-2024-42030	2024-08-21 01:55	2024-08-8	Show	GitHub Exploit DB Packet Storm

313405	9.8	CRITICAL Network	vonets	var1200-h_firmware var1200-l_firmware var600-h_firmware vap11ac_firmware vap11g-500s_firmware vbg1200_firmware vap11s-5g_firmware vap11s_firmware var11n-300_firmware vap11g…	An improper authentication vulnerability affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior enables an unauthenticated remote a…	CWE-425 Direct Request ('Forced Browsing')	CVE-2024-42001	2024-08-21 01:37	2024-08-12	Show	GitHub Exploit DB Packet Storm

313406	-		-	-	A Cross-Site Request Forgery (CSRF) in the component categorie.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges.	-	CVE-2024-42586	2024-08-21 01:35	2024-08-20	Show	GitHub Exploit DB Packet Storm

313407	-		-	-	A Cross-Site Request Forgery (CSRF) in the component delete_media.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges.	-	CVE-2024-42585	2024-08-21 01:35	2024-08-20	Show	GitHub Exploit DB Packet Storm

313408	-		-	-	A Cross-Site Request Forgery (CSRF) in the component edit_categorie.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges.	-	CVE-2024-42576	2024-08-21 01:35	2024-08-20	Show	GitHub Exploit DB Packet Storm

313409	-		-	-	School Management System commit bae5aa was discovered to contain a SQL injection vulnerability via the medium parameter at paidclass.php.	-	CVE-2024-42569	2024-08-21 01:35	2024-08-20	Show	GitHub Exploit DB Packet Storm

313410	-		-	-	Pharmacy Management System commit a2efc8 was discovered to contain a SQL injection vulnerability via the invoice_number parameter at preview.php.	-	CVE-2024-42562	2024-08-21 01:35	2024-08-20	Show	GitHub Exploit DB Packet Storm