Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1341	5.3	警告 Network	Fleet Device Management	fleet	Fleet Device Managementのfleetにおけるスプーフィングによる認証回避に関する脆弱性	CWE-290 スプーフィングによる認証回避	CVE-2026-24000	2026-05-18 12:07	2026-05-14	Show	GitHub Exploit DB Packet Storm

1342	7.5	重要 Network	strapi	strapi	strapiにおける複数の脆弱性	CWE-200 CWE-22 CWE-943	CVE-2026-27886	2026-05-18 12:07	2026-05-14	Show	GitHub Exploit DB Packet Storm

1343	6.5	警告 Network	Grafana Labs	Grafana	Grafana LabsのGrafanaにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-28376	2026-05-18 12:07	2026-05-13	Show	GitHub Exploit DB Packet Storm

1344	2.7	低 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-2900	2026-05-18 12:07	2026-05-14	Show	GitHub Exploit DB Packet Storm

1345	4.3	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-3073	2026-05-18 12:07	2026-05-14	Show	GitHub Exploit DB Packet Storm

1346	4.3	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-3074	2026-05-18 12:07	2026-05-14	Show	GitHub Exploit DB Packet Storm

1347	5.8	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるフィルタリングの回避に関する脆弱性	CWE-441 フィルタリング回避	CVE-2026-3160	2026-05-18 12:07	2026-05-14	Show	GitHub Exploit DB Packet Storm

1348	9.1	緊急 Network	マイクロソフト	Azure SDK for Java	Azure SDK for Java のセキュリティ機能のバイパスの脆弱性	CWE-287 CWE-347	CVE-2026-33117	2026-05-18 12:07	2026-05-12	Show	GitHub Exploit DB Packet Storm

1349	9.9	緊急 Network	マイクロソフト	Microsoft Dynamics 365 Customer Insights	Microsoft Dynamics 365 Customer Insights の特権昇格の脆弱性	CWE-269 不適切な権限管理	CVE-2026-33821	2026-05-18 12:06	2026-05-12	Show	GitHub Exploit DB Packet Storm

1350	6.5	警告 Adjacent	Pengutronix e.K.	barebox	Pengutronix e.K.のbareboxにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-34960	2026-05-18 12:06	2026-05-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311411	7.1	HIGH Local	samsung	android	Improper input validation in Settings Suggestions prior to SMR Nov-2024 Release 1 allows local attackers to launch privileged activities.	NVD-CWE-noinfo	CVE-2024-49401	2024-11-13 01:10	2024-11-6	Show	GitHub Exploit DB Packet Storm

311412	7.1	HIGH Local	samsung	android	Incorrect default permissions in Crane prior to SMR Nov-2024 Release 1 allows local attackers to access files with phone privilege.	CWE-276 Incorrect Default Permissions	CVE-2024-34679	2024-11-13 01:09	2024-11-6	Show	GitHub Exploit DB Packet Storm

311413	4.6	MEDIUM Physics	samsung	android	Improper access control in Dex Mode prior to SMR Nov-2024 Release 1 allows physical attackers to temporarily access to unlocked screen.	NVD-CWE-noinfo	CVE-2024-34675	2024-11-13 01:08	2024-11-6	Show	GitHub Exploit DB Packet Storm

311414	4.6	MEDIUM Physics	samsung	android	Improper access control in Contacts prior to SMR Nov-2024 Release 1 allows physical attackers to access data across multiple user profiles.	NVD-CWE-noinfo	CVE-2024-34674	2024-11-13 01:08	2024-11-6	Show	GitHub Exploit DB Packet Storm

311415	3.3	LOW Local	samsung	android	Exposure of sensitive information in System UI prior to SMR Nov-2024 Release 1 allow local attackers to make malicious apps appear as legitimate.	CWE-922 Insecure Storage of Sensitive Information	CVE-2024-34677	2024-11-13 01:07	2024-11-6	Show	GitHub Exploit DB Packet Storm

311416	5.5	MEDIUM Local	samsung	android	Use of implicit intent for sensitive communication in WlanTest prior to SMR Nov-2024 Release 1 allows local attackers to get sensitive information.	NVD-CWE-Other	CVE-2024-34680	2024-11-13 01:04	2024-11-6	Show	GitHub Exploit DB Packet Storm

311417	-		-	-	The NVMe driver queue processing is vulernable to guest-induced infinite loops.	-	CVE-2024-51566	2024-11-13 00:48	2024-11-13	Show	GitHub Exploit DB Packet Storm

311418	-		-	-	The hda driver is vulnerable to a buffer over-read from a guest-controlled value.	-	CVE-2024-51565	2024-11-13 00:48	2024-11-13	Show	GitHub Exploit DB Packet Storm

311419	-		-	-	The virtio_vq_recordon function is subject to a time-of-check to time-of-use (TOCTOU) race condition.	-	CVE-2024-51563	2024-11-13 00:48	2024-11-13	Show	GitHub Exploit DB Packet Storm

311420	-		-	-	The NVMe driver function nvme_opc_get_log_page is vulnerable to a buffer over-read from a guest-controlled value.	-	CVE-2024-51562	2024-11-13 00:48	2024-11-13	Show	GitHub Exploit DB Packet Storm