Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1331 8.1 重要
Network 		Zcash Foundation Zebra-consensus
Zebrad 		Zcash FoundationのZebra-consensus等の複数製品における誤った要素を使用した比較に関する脆弱性 CWE-1025
誤った要素を使用した比較 		CVE-2026-40880 2026-04-30 12:12 2026-04-21 Show GitHub Exploit DB Packet Storm
1332 7.5 重要
Network 		Zcash Foundation zebra-network
Zebrad 		Zcash Foundationのzebra-network等の複数製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-40881 2026-04-30 12:12 2026-04-21 Show GitHub Exploit DB Packet Storm
1333 6.5 警告
Network 		Frappe Frappe HR FrappeのFrappe HRにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-40888 2026-04-30 12:12 2026-04-21 Show GitHub Exploit DB Packet Storm
1334 6.5 警告
Network 		Frappe Frappe HR FrappeのFrappe HRにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-40889 2026-04-30 12:12 2026-04-21 Show GitHub Exploit DB Packet Storm
1335 8.8 重要
Network 		Jos de Jong math.js Math.jsにおける動的に決定されたオブジェクト属性の不適切に制御された変更に関する脆弱性 CWE-915
動的に決定されたオブジェクト属性の不適切に制御された変更 		CVE-2026-40897 2026-04-30 12:12 2026-04-24 Show GitHub Exploit DB Packet Storm
1336 8.8 重要
Network 		Paperclip paperclipai PaperclipのpaperclipaiにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-41208 2026-04-30 12:12 2026-04-23 Show GitHub Exploit DB Packet Storm
1337 6.5 警告
Network 		Frappe Frappe HR FrappeのFrappe HRにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-41320 2026-04-30 12:12 2026-04-21 Show GitHub Exploit DB Packet Storm
1338 7.5 重要
Network 		chargepoint Home Flex CPH50 Firmware ChargePoint, Inc.のHome Flex CPH50 Firmwareにおける重要な情報を含むソースコードに関する脆弱性 CWE-540
機密情報を含むソースコード 		CVE-2026-4155 2026-04-30 12:12 2026-04-11 Show GitHub Exploit DB Packet Storm
1339 7.5 重要
Adjacent 		chargepoint Home Flex CPH50 Firmware ChargePoint, Inc.のHome Flex CPH50 Firmwareにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2026-4156 2026-04-30 12:12 2026-04-11 Show GitHub Exploit DB Packet Storm
1340 7.5 重要
Adjacent 		chargepoint Home Flex CPH50 Firmware ChargePoint, Inc.のHome Flex CPH50 FirmwareにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-4157 2026-04-30 12:12 2026-04-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313171 8.7 HIGH
Network 		mattermost mattermost Mattermost versions 9.9.x <= 9.9.0, 9.5.x <= 9.5.6, 9.7.x <= 9.7.5, 9.8.x <= 9.8.1 fail to properly safeguard an error handling which allows a malicious remote to permanently delete local data by abu… CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2024-39832 2024-08-23 23:35 2024-08-2 Show GitHub Exploit DB Packet Storm
313172 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: RDMA/cma: Do not change route.addr.src_addr outside state checks If the state is not idle then resolve_prepare_src() should immed… CWE-416
 Use After Free 		CVE-2022-48925 2024-08-23 11:07 2024-08-22 Show GitHub Exploit DB Packet Storm
313173 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: iio: adc: tsc2046: fix memory corruption by preventing array overflow On one side we have indio_dev->num_channels includes all ph… CWE-787
 Out-of-bounds Write 		CVE-2022-48927 2024-08-23 11:05 2024-08-22 Show GitHub Exploit DB Packet Storm
313174 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: usb: gadget: rndis: add spinlock for rndis response list There's no lock for rndis response list. It could cause list corruption … NVD-CWE-noinfo
CVE-2022-48926 2024-08-23 11:05 2024-08-22 Show GitHub Exploit DB Packet Storm
313175 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: bpf: Fix crash due to out of bounds access into reg2btf_ids. When commit e6ac2450d6de ("bpf: Support bpf program calling kernel f… CWE-125
Out-of-bounds Read 		CVE-2022-48929 2024-08-23 11:00 2024-08-22 Show GitHub Exploit DB Packet Storm
313176 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: iio: adc: men_z188_adc: Fix a resource leak in an error handling path If iio_device_register() fails, a previous ioremap() is lef… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2022-48928 2024-08-23 10:58 2024-08-22 Show GitHub Exploit DB Packet Storm
313177 4.7 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: configfs: fix a race in configfs_{,un}register_subsystem() When configfs_register_subsystem() or configfs_unregister_subsystem() … CWE-362
Race Condition 		CVE-2022-48931 2024-08-23 10:54 2024-08-22 Show GitHub Exploit DB Packet Storm
313178 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: RDMA/ib_srp: Fix a deadlock Remove the flush_workqueue(system_long_wq) call since flushing system_long_wq is deadlock-prone and s… CWE-667
 Improper Locking 		CVE-2022-48930 2024-08-23 10:51 2024-08-22 Show GitHub Exploit DB Packet Storm
313179 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: fix memory leak during stateful obj update stateful objects can be updated from the control plane. The tran… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2022-48933 2024-08-23 10:50 2024-08-22 Show GitHub Exploit DB Packet Storm
313180 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: net/mlx5: DR, Fix slab-out-of-bounds in mlx5_cmd_dr_create_fte When adding a rule with 32 destinations, we hit the following out-… CWE-125
Out-of-bounds Read 		CVE-2022-48932 2024-08-23 10:48 2024-08-22 Show GitHub Exploit DB Packet Storm