Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 8, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 1251 | 7.5 |
重要
Network |
Mtrudel | Bandit | MtrudelのBanditにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 |
CWE-770
制限またはスロットリング無しのリソースの割り当て |
CVE-2026-39803 | 2026-05-25 10:25 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 1252 | 7.5 |
重要
Network |
Mtrudel | Bandit | MtrudelのBanditにおける無限ループに関する脆弱性 |
CWE-835
無限ループ |
CVE-2026-39806 | 2026-05-25 10:25 | 2026-05-13 | Show | GitHub Exploit DB Packet Storm |
| 1253 | 7.5 |
重要
Network |
Quarkiverse Hub | Quarkus OpenAPI Generator | Quarkiverse HubのQuarkus OpenAPI Generatorにおけるパストラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2026-40180 | 2026-05-25 10:25 | 2026-04-10 | Show | GitHub Exploit DB Packet Storm |
| 1254 | 8.8 |
重要
Network |
OWASP | OWASP BLT | OWASPのOWASP BLTにおける複数の脆弱性 |
CWE-94 CWE-95 |
CVE-2026-40316 | 2026-05-25 10:25 | 2026-04-15 | Show | GitHub Exploit DB Packet Storm |
| 1255 | 7.5 |
重要
Network |
WebOnyx | graphql-php | WebOnyxのgraphql-phpにおけるアルゴリズムの複雑さに関する脆弱性 |
CWE-407
アルゴリズムの複雑性 |
CVE-2026-40476 | 2026-05-25 10:25 | 2026-04-17 | Show | GitHub Exploit DB Packet Storm |
| 1256 | 5.9 |
警告
Network |
Jeffrey Stedfast (jstedfast) | MailKit | Jeffrey Stedfast (jstedfast)のMailKitにおけるインジェクションに関する脆弱性 |
CWE-74
インジェクション |
CVE-2026-41319 | 2026-05-25 10:25 | 2026-04-24 | Show | GitHub Exploit DB Packet Storm |
| 1257 | 9.8 |
緊急
Network |
pgx project | pgx | JackcのpgxにおけるSQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2026-41889 | 2026-05-25 10:25 | 2026-05-8 | Show | GitHub Exploit DB Packet Storm |
| 1258 | 5.4 |
警告
Network |
reconurge | Flowsint | Flowsintにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2026-42159 | 2026-05-25 10:25 | 2026-05-14 | Show | GitHub Exploit DB Packet Storm |
| 1259 | 8.6 |
重要
Network |
MagicMirror | MagicMirror | MagicMirrorにおけるサーバサイドのリクエストフォージェリの脆弱性 |
CWE-918
サーバサイドリクエストフォージェリ |
CVE-2026-42281 | 2026-05-25 10:25 | 2026-05-14 | Show | GitHub Exploit DB Packet Storm |
| 1260 | 6.1 |
警告
Network |
Absinthe-graphql | Absinthe.Plug (absinthe plug) | Absinthe-graphqlのAbsinthe.Plug (absinthe plug)におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2026-42794 | 2026-05-25 10:25 | 2026-05-8 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 8, 2026, 4:09 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 311061 | 5.5 |
MEDIUM
Local |
linux | linux_kernel | In the Linux kernel, the following vulnerability has been resolved: io_uring: check if we need to reschedule during overflow flush In terms of normal application usage, this list will always be emp… |
NVD-CWE-noinfo
|
CVE-2024-50060 | 2024-11-21 05:25 | 2024-10-22 | Show | GitHub Exploit DB Packet Storm |
| 311062 | 5.5 |
MEDIUM
Local |
linux | linux_kernel | In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uvc: Fix ERR_PTR dereference in uvc_v4l2.c Fix potential dereferencing of ERR_PTR() in find_format_by_pix() and uvc_… |
CWE-476
NULL Pointer Dereference |
CVE-2024-50056 | 2024-11-21 05:18 | 2024-10-22 | Show | GitHub Exploit DB Packet Storm |
| 311063 | 5.5 |
MEDIUM
Local |
linux | linux_kernel | In the Linux kernel, the following vulnerability has been resolved: ntfs3: Change to non-blocking allocation in ntfs_d_hash d_hash is done while under "rcu-walk" and should not sleep. __get_name() … |
NVD-CWE-noinfo
|
CVE-2024-50065 | 2024-11-21 05:07 | 2024-10-22 | Show | GitHub Exploit DB Packet Storm |
| 311064 | 7.5 |
HIGH
Network |
qualcomm |
ar8035_firmware csr8811_firmware fastconnect_6200_firmware fastconnect_6700_firmware fastconnect_6900_firmware fastconnect_7800_firmware flight_rb5_5g_platform_firmware immersive… |
Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report. |
CWE-125
Out-of-bounds Read |
CVE-2024-33015 | 2024-11-21 04:57 | 2024-08-6 | Show | GitHub Exploit DB Packet Storm |
| 311065 | 7.5 |
HIGH
Network |
qualcomm |
csr8811_firmware fastconnect_6800_firmware fastconnect_6900_firmware fastconnect_7800_firmware flight_rb5_5g_platform_firmware immersive_home_214_platform_firmware immersive_home_21… |
Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE. |
CWE-125
Out-of-bounds Read |
CVE-2024-33025 | 2024-11-21 04:53 | 2024-08-6 | Show | GitHub Exploit DB Packet Storm |
| 311066 | 7.5 |
HIGH
Network |
qualcomm |
ar8035_firmware csr8811_firmware fastconnect_6700_firmware fastconnect_6800_firmware fastconnect_6900_firmware fastconnect_7800_firmware flight_rb5_5g_platform_firmware immersive… |
Transient DOS while parsing the ML IE when a beacon with length field inside the common info of ML IE greater than the ML IE length. |
CWE-190
Integer Overflow or Wraparound |
CVE-2024-33024 | 2024-11-21 04:42 | 2024-08-6 | Show | GitHub Exploit DB Packet Storm |
| 311067 | 7.5 |
HIGH
Network |
qualcomm |
ar8035_firmware csr8811_firmware fastconnect_6700_firmware fastconnect_6900_firmware fastconnect_7800_firmware immersive_home_214_platform_firmware immersive_home_216_platform_firmw… |
Transient DOS while parsing the received TID-to-link mapping element of the TID-to-link mapping action frame. |
CWE-125
Out-of-bounds Read |
CVE-2024-33018 | 2024-11-21 04:40 | 2024-08-6 | Show | GitHub Exploit DB Packet Storm |
| 311068 | 7.5 |
HIGH
Network |
qualcomm |
ar8035_firmware csr8811_firmware fastconnect_6700_firmware fastconnect_6900_firmware fastconnect_7800_firmware flight_rb5_5g_platform_firmware immersive_home_214_platform_firmware
Transient DOS while parsing probe response and assoc response frame when received frame length is less than max size of timestamp.
|
CWE-125
|
Out-of-bounds Read
CVE-2024-33026
|
2024-11-21 04:37 |
2024-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 311069 | 7.8 |
HIGH
Local |
qualcomm |
ar8035_firmware csra6620_firmware csra6640_firmware fastconnect_6200_firmware fastconnect_6700_firmware fastconnect_6800_firmware fastconnect_6900_firmware fastconnect_7800_firmw… |
Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events. |
CWE-416
Use After Free |
CVE-2024-33023 | 2024-11-21 04:34 | 2024-08-6 | Show | GitHub Exploit DB Packet Storm |
| 311070 | 7.8 |
HIGH
Local |
qualcomm |
ar8035_firmware csra6620_firmware csra6640_firmware fastconnect_6200_firmware fastconnect_6700_firmware fastconnect_6900_firmware fastconnect_7800_firmware flight_rb5_5g_platform… |
Memory corruption while allocating memory in HGSL driver. |
CWE-190
Integer Overflow or Wraparound |
CVE-2024-33022 | 2024-11-21 04:30 | 2024-08-6 | Show | GitHub Exploit DB Packet Storm |