Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1561 6.5 警告
Network 		plane plane planeにおけるデータクエリロジックの特殊要素の不適切な中立化に関する脆弱性 CWE-943
データクエリロジックの特殊要素の不適切な中立化 		CVE-2026-40102 2026-05-25 10:22 2026-05-20 Show GitHub Exploit DB Packet Storm
1562 7.5 重要
Network 		マイクロソフト Microsoft Entra ID Microsoft Entra ID のスプーフィングの脆弱性 CWE-200
情報漏えい 		CVE-2026-40379 2026-05-25 10:22 2026-05-12 Show GitHub Exploit DB Packet Storm
1563 4.3 警告
Network 		Mattermost, Inc. Mattermost Server Mattermost, Inc.のMattermost Serverにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-4055 2026-05-25 10:22 2026-05-21 Show GitHub Exploit DB Packet Storm
1564 7.8 重要
Local 		Samba Project rsync Samba Projectのrsyncにおけるレングスパラメーターの不整合による処理に関する脆弱性 CWE-130
レングスパラメーターの不整合による不適切な処理 		CVE-2026-41035 2026-05-25 10:22 2026-04-16 Show GitHub Exploit DB Packet Storm
1565 9.8 緊急
Network 		NASA F Prime NASAのF Primeにおける複数の脆弱性 CWE-190
CWE-787
CVE-2026-41144 2026-05-25 10:22 2026-04-22 Show GitHub Exploit DB Packet Storm
1566 7.8 重要
Local 		DevSpace DevSpace DevSpaceにおける複数の脆弱性 CWE-200
CWE-306
CVE-2026-42283 2026-05-25 10:22 2026-05-14 Show GitHub Exploit DB Packet Storm
1567 10 緊急
Network 		マイクロソフト
The Foreman		 Azure Resource Manager
Azure Local 		Azure Local 向けディスコネクテッド オペレーション サービスの特権昇格の脆弱性 CWE-287
CWE-noinfo
CVE-2026-42822 2026-05-25 10:22 2026-05-18 Show GitHub Exploit DB Packet Storm
1568 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不完全なクリーンアップに関する脆弱性 CWE-459
不完全なクリーンアップ 		CVE-2026-43395 2026-05-25 10:22 2026-05-8 Show GitHub Exploit DB Packet Storm
1569 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2026-43396 2026-05-25 10:22 2026-05-8 Show GitHub Exploit DB Packet Storm
1570 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2026-43397 2026-05-25 10:22 2026-05-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
319421 6.1 MEDIUM
Network 		dedebiz dedebiz A cross-site scripting (XSS) vulnerability in DedeBIZ v6.3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload. CWE-79
Cross-site Scripting 		CVE-2024-44717 2024-09-4 03:32 2024-08-30 Show GitHub Exploit DB Packet Storm
319422 6.1 MEDIUM
Network 		dedebiz dedebiz A cross-site scripting (XSS) vulnerability in DedeBIZ v6.3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload. CWE-79
Cross-site Scripting 		CVE-2024-44716 2024-09-4 03:32 2024-08-30 Show GitHub Exploit DB Packet Storm
319423 5.4 MEDIUM
Network 		dsgvo-for-wp dsgvo_all_in_one_for_wp Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Michael Leithold DSGVO All in one for WP allows Stored XSS.This issue affects DSGVO All in… CWE-79
Cross-site Scripting 		CVE-2024-43964 2024-09-4 03:30 2024-08-30 Show GitHub Exploit DB Packet Storm
319424 5.4 MEDIUM
Network 		khoj khoj Khoj is an application that creates personal AI agents. The Automation feature allows a user to insert arbitrary HTML inside the task instructions, resulting in a Stored XSS. The q parameter for the … CWE-79
Cross-site Scripting 		CVE-2024-43396 2024-09-4 03:19 2024-08-21 Show GitHub Exploit DB Packet Storm
319425 - - - Rejected reason: Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that there was not reasonable evide… - CVE-2024-7619 2024-09-4 03:15 2024-09-4 Show GitHub Exploit DB Packet Storm
319426 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: PCI: keystone: Fix NULL pointer dereference in case of DT error in ks_pcie_setup_rc_app_regs() If IORESOURCE_MEM is not provided … CWE-476
 NULL Pointer Dereference 		CVE-2024-43823 2024-09-4 02:49 2024-08-17 Show GitHub Exploit DB Packet Storm
319427 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ASoc: PCM6240: Return directly after a failed devm_kzalloc() in pcmdevice_i2c_probe() The value “-ENOMEM” was assigned to the loc… CWE-476
 NULL Pointer Dereference 		CVE-2024-43822 2024-09-4 02:49 2024-08-17 Show GitHub Exploit DB Packet Storm
319428 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix a possible null pointer dereference In function lpfc_xcvr_data_show, the memory allocation with kmalloc might fai… CWE-476
 NULL Pointer Dereference 		CVE-2024-43821 2024-09-4 02:49 2024-08-17 Show GitHub Exploit DB Packet Storm
319429 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: pci-epf-test: Make use of cached 'epc_features' in pci_epf_test_core_init() Instead of getting the epc_features fr… CWE-476
 NULL Pointer Dereference 		CVE-2024-43824 2024-09-4 02:48 2024-08-17 Show GitHub Exploit DB Packet Storm
319430 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: kvm: s390: Reject memory region operations for ucontrol VMs This change rejects the KVM_SET_USER_MEMORY_REGION and KVM_SET_USER_M… CWE-476
 NULL Pointer Dereference 		CVE-2024-43819 2024-09-4 02:47 2024-08-17 Show GitHub Exploit DB Packet Storm