Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1291	8.8	重要 Network	BMC Software	Control-M Managed File Transfer	BMC SoftwareのControl-M Managed File TransferにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-23780	2026-04-30 12:14	2026-04-10	Show	GitHub Exploit DB Packet Storm

1292	9.8	緊急 Network	BMC Software	Control-M Managed File Transfer	BMC SoftwareのControl-M Managed File Transferにおけるハードコードされた認証情報の使用に関する脆弱性	CWE-798 ハードコードされた認証情報の使用	CVE-2026-23781	2026-04-30 12:14	2026-04-10	Show	GitHub Exploit DB Packet Storm

1293	7.5	重要 Network	BMC Software	Control-M Managed File Transfer	BMC SoftwareのControl-M Managed File Transferにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-23782	2026-04-30 12:14	2026-04-10	Show	GitHub Exploit DB Packet Storm

1294	9.9	緊急 Network	Doorman	Doorman	Doormanにおける権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2026-30269	2026-04-30 12:14	2026-04-20	Show	GitHub Exploit DB Packet Storm

1295	7.5	重要 Network	PowerDNS	PowerDNS Recursor dnsdist PowerDNS Authoritative Server	PowerDNSのPowerDNS Authoritative Server等の複数製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-33257	2026-04-30 12:14	2026-04-22	Show	GitHub Exploit DB Packet Storm

1296	7.5	重要 Network	PowerDNS	PowerDNS Recursor dnsdist PowerDNS Authoritative Server	PowerDNSのPowerDNS Authoritative Server等の複数製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-33260	2026-04-30 12:14	2026-04-22	Show	GitHub Exploit DB Packet Storm

1297	8.8	重要 Network	litellm	litellm	LiteLLMにおける保護されていない代替チャネルに関する脆弱性	CWE-420 保護されていない代替チャネル	CVE-2026-40217	2026-04-30 12:14	2026-04-10	Show	GitHub Exploit DB Packet Storm

1298	7.8	重要 Local	radare	radare2	radareのradare2におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-40517	2026-04-30 12:14	2026-04-22	Show	GitHub Exploit DB Packet Storm

1299	6.7	警告 Local	The GnuPG Project	Libgcrypt	The GnuPG ProjectのLibgcryptにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-41989	2026-04-30 12:14	2026-04-23	Show	GitHub Exploit DB Packet Storm

1300	9.8	緊急 Network	OFFIS	DCMTK	OFFISのDCMTKにおける複数の脆弱性	CWE-77 CWE-78	CVE-2026-5663	2026-04-30 12:14	2026-04-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313201	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: remoteproc: imx_rproc: Skip over memory region when node value is NULL In imx_rproc_addr_init() "nph = of_count_phandle_with_args…	CWE-476 NULL Pointer Dereference	CVE-2024-43860	2024-08-23 02:08	2024-08-17	Show	GitHub Exploit DB Packet Storm

313202	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: PCI/DPC: Fix use-after-free on concurrent DPC and hot-removal Keith reports a use-after-free when a DPC event occurs concurrently…	CWE-416 Use After Free	CVE-2024-42302	2024-08-23 01:37	2024-08-17	Show	GitHub Exploit DB Packet Storm

313203	-		-	-	JPress through 5.1.1 on Windows has an arbitrary file upload vulnerability that could cause arbitrary code execution via ::$DATA to AttachmentController, such as a .jsp::$DATA file to io.jpress.web.c…	-	CVE-2024-43033	2024-08-23 01:35	2024-08-22	Show	GitHub Exploit DB Packet Storm

313204	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: dev/parport: fix the array out-of-bounds risk Fixed array out-of-bounds issues caused by sprintf by replacing it with snprintf fo…	CWE-129 Improper Validation of Array Index	CVE-2024-42301	2024-08-23 01:31	2024-08-17	Show	GitHub Exploit DB Packet Storm

313205	-		-	-	memos is a privacy-first, lightweight note-taking service. A CORS misconfiguration exists in memos 0.20.1 and earlier where an arbitrary origin is reflected with Access-Control-Allow-Credentials set …	-	CVE-2024-41659	2024-08-23 01:15	2024-08-21	Show	GitHub Exploit DB Packet Storm

313206	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: media: venus: fix use after free in vdec_close There appears to be a possible use after free with vdec_close(). The firmware will…	CWE-416 Use After Free	CVE-2024-42313	2024-08-23 01:01	2024-08-17	Show	GitHub Exploit DB Packet Storm

313207	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/gma500: fix null pointer dereference in cdv_intel_lvds_get_modes In cdv_intel_lvds_get_modes(), the return value of drm_mode_…	CWE-476 NULL Pointer Dereference	CVE-2024-42310	2024-08-23 01:01	2024-08-17	Show	GitHub Exploit DB Packet Storm

313208	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/gma500: fix null pointer dereference in psb_intel_lvds_get_modes In psb_intel_lvds_get_modes(), the return value of drm_mode_…	CWE-476 NULL Pointer Dereference	CVE-2024-42309	2024-08-23 01:01	2024-08-17	Show	GitHub Exploit DB Packet Storm

313209	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: mm/mglru: fix div-by-zero in vmpressure_calc_level() evict_folios() uses a second pass to reclaim folios that have gone through p…	CWE-369 Divide By Zero	CVE-2024-42316	2024-08-23 00:52	2024-08-17	Show	GitHub Exploit DB Packet Storm

313210	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: exfat: fix potential deadlock on __exfat_get_dentry_set When accessing a file with more entries than ES_MAX_ENTRY_NUM, the bh-arr…	CWE-667 Improper Locking	CVE-2024-42315	2024-08-23 00:51	2024-08-17	Show	GitHub Exploit DB Packet Storm