Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1221 7.8 重要
Local 		opentelemetry OpenTelemetry.Exporter.OpenTelemetryProtocol opentelemetryのOpenTelemetry.Exporter.OpenTelemetryProtocolにおけるアクセスパーミションのディレクトリの一時ファイル作成に関する脆弱性 CWE-379
不適切なアクセスパーミションのディレクトリに一時ファイル作成 		CVE-2026-42191 2026-05-28 14:33 2026-05-12 Show GitHub Exploit DB Packet Storm
1222 7.5 重要
Network 		Absinthe-graphql Absinthe Absinthe-graphqlのAbsintheにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-42793 2026-05-28 14:32 2026-05-8 Show GitHub Exploit DB Packet Storm
1223 7.5 重要
Network 		Absinthe-graphql Absinthe Absinthe-graphqlのAbsintheにおけるアルゴリズムの複雑さに関する脆弱性 CWE-407
アルゴリズムの複雑性 		CVE-2026-43967 2026-05-28 14:32 2026-05-8 Show GitHub Exploit DB Packet Storm
1224 6.1 警告
Network 		The Kyverno Authors Policy-reporter-ui The Kyverno AuthorsのPolicy-reporter-uiにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-44245 2026-05-28 14:32 2026-05-12 Show GitHub Exploit DB Packet Storm
1225 8.6 重要
Network 		Marginal v1-core Marginalのv1-coreにおける数値型間の変換の誤りに関する脆弱性 CWE-681
数値型間の変換の誤り 		CVE-2026-4931 2026-05-28 14:32 2026-04-7 Show GitHub Exploit DB Packet Storm
1226 7.4 重要
Network 		Project Jupyter Jupyter Server Jupyter Serverにおけるオープンリダイレクトの脆弱性 CWE-Other
その他 		CVE-2025-61669 2026-05-28 12:05 2026-05-28 Show GitHub Exploit DB Packet Storm
1227 - - 日立 Hitachi Application Server
uCosminexus Application Runtime with Java for Apache Tomcat
uCosminexus Application Runtime with Java… 		Cosminexusにおける複数の脆弱性 - CVE-2026-22007
CVE-2026-22013
CVE-2026-22016
CVE-2026-22018
CVE-2026-22021
CVE-2026-23865
CVE-2026-34268
CVE-2026-34282 		2026-05-27 13:53 2026-05-26 Show GitHub Exploit DB Packet Storm
1228 - - 日立 Hitachi Automation Director
Hitachi Replication Manager
Hitachi Configuration Manager
Hitachi Ops Center API Configuration Manager
H… 		Hitachi Command Suite製品, Hitachi Automation Director, Hitachi Configuration Manager, Hitachi Infrastructure Analytics AdvisorおよびHitachi Ops Center製品における複数の脆弱性 - CVE-2026-22007
CVE-2026-22013
CVE-2026-22016
CVE-2026-22018
CVE-2026-22021
CVE-2026-23865
CVE-2026-34268
CVE-2026-34282 		2026-05-27 13:53 2026-05-26 Show GitHub Exploit DB Packet Storm
1229 - - 日立 Hitachi Infrastructure Analytics Advisor
Hitachi Ops Center Analyzer
Hitachi Ops Center Analyzer viewpoint 		Hitachi Infrastructure Analytics Advisor,Hitachi Ops Center AnalyzerおよびHitachi Ops Center Analyzer viewpointにおける脆弱性 - CVE-2026-3314 2026-05-27 13:53 2026-05-26 Show GitHub Exploit DB Packet Storm
1230 - - LMSYS Org SGLang SGLangにおける複数の脆弱性 - CVE-2026-5760
CVE-2026-7301
CVE-2026-7302
CVE-2026-7304 		2026-05-27 12:17 2026-05-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311101 8.8 HIGH
Network 		zohocorp manageengine_adaudit_plus Zohocorp ManageEngine ADAudit Plus versions below 8123 are vulnerable to SQL Injection in the reports module. CWE-89
SQL Injection 		CVE-2024-49574 2024-11-21 01:32 2024-11-18 Show GitHub Exploit DB Packet Storm
311102 8.8 HIGH
Network 		zte nh8091_firmware ZTE NH8091 product has an improper permission control vulnerability. Due to improper permission control of the Web module interface, an authenticated attacker may exploit the vulnerability to execute… NVD-CWE-noinfo
CVE-2024-22067 2024-11-21 01:24 2024-11-18 Show GitHub Exploit DB Packet Storm
311103 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/i915/hdcp: Add encoder check in hdcp2_get_capability Add encoder check in intel_hdcp2_get_capability to avoid null pointer er… CWE-476
 NULL Pointer Dereference 		CVE-2024-53050 2024-11-21 01:17 2024-11-20 Show GitHub Exploit DB Packet Storm
311104 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/i915/hdcp: Add encoder check in intel_hdcp_get_capability Sometimes during hotplug scenario or suspend/resume scenario encode… NVD-CWE-noinfo
CVE-2024-53051 2024-11-21 01:16 2024-11-20 Show GitHub Exploit DB Packet Storm
311105 4.3 MEDIUM
Network 		themeum tutor_lms_elementor_addons The Tutor LMS Elementor Addons plugin for WordPress is vulnerable to unauthorized plugin installation due to a missing capability check on the install_etlms_dependency_plugin() function in all versio… CWE-862
 Missing Authorization 		CVE-2024-10897 2024-11-21 01:09 2024-11-15 Show GitHub Exploit DB Packet Storm
311106 4.7 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: tracing/timerlat: Fix a race during cpuhp processing There is another found exception that the "timerlat/1" thread was scheduled … CWE-362
Race Condition 		CVE-2024-49866 2024-11-21 00:56 2024-10-22 Show GitHub Exploit DB Packet Storm
311107 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: eventfs: Use list_del_rcu() for SRCU protected list variable Chi Zhiling reported: We found a null pointer accessing in tracef… CWE-476
 NULL Pointer Dereference 		CVE-2024-46785 2024-11-21 00:51 2024-09-18 Show GitHub Exploit DB Packet Storm
311108 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: tcp_bpf: fix return value of tcp_bpf_sendmsg() When we cork messages in psock->cork, the last message triggers the flushing will … NVD-CWE-noinfo
CVE-2024-46783 2024-11-21 00:47 2024-09-18 Show GitHub Exploit DB Packet Storm
311109 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/xe: Don't free job in TDR Freeing job in TDR is not safe as TDR can pass the run_job thread resulting in UAF. It is only safe… CWE-416
 Use After Free 		CVE-2024-50149 2024-11-21 00:45 2024-11-7 Show GitHub Exploit DB Packet Storm
311110 7.5 HIGH
Network 		anisha job_recruitment A vulnerability was found in code-projects Job Recruitment 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file reset.php. The manipulation of… CWE-89
SQL Injection 		CVE-2024-11241 2024-11-21 00:41 2024-11-16 Show GitHub Exploit DB Packet Storm