Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 12, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 2051 | 5.3 |
警告
Network |
Apache Software Foundation | Apache Thrift | Apache Software FoundationのApache Thriftにおける再帰制御に関する脆弱性 |
CWE-674
不適切な再帰制御 |
CVE-2026-41606 | 2026-04-30 10:59 | 2026-04-28 | Show | GitHub Exploit DB Packet Storm |
| 2052 | 6.5 |
警告
Network |
Apache Software Foundation | Apache Thrift | Apache Software FoundationのApache Thriftにおける境界外読み取りに関する脆弱性 |
CWE-125
境界外読み取り |
CVE-2026-41607 | 2026-04-30 10:59 | 2026-04-28 | Show | GitHub Exploit DB Packet Storm |
| 2053 | 7.5 |
重要
Network |
Apache Software Foundation | Apache Thrift | Apache Software FoundationのApache Thriftにおける再帰制御に関する脆弱性 |
CWE-674
不適切な再帰制御 |
CVE-2026-41636 | 2026-04-30 10:59 | 2026-04-28 | Show | GitHub Exploit DB Packet Storm |
| 2054 | 7.5 |
重要
Network |
Marked project | Marked | Marked projectのMarkedにおける複数の脆弱性 |
CWE-400 CWE-674 CWE-835 |
CVE-2026-41680 | 2026-04-30 10:59 | 2026-04-24 | Show | GitHub Exploit DB Packet Storm |
| 2055 | 9.8 |
緊急
Network |
Apache Software Foundation | Apache Pony Mail | Apache Software FoundationのApache Pony MailにおけるHTTP リクエストスマグリングに関する脆弱性 |
CWE-444
HTTP リクエストスマグリング |
CVE-2026-41873 | 2026-04-30 10:59 | 2026-04-28 | Show | GitHub Exploit DB Packet Storm |
| 2056 | 6.5 |
警告
Network |
OpenClaw | OpenClaw | OpenClawにおける不正な認証に関する脆弱性 |
CWE-863
不正な認証 |
CVE-2026-41908 | 2026-04-30 10:58 | 2026-04-23 | Show | GitHub Exploit DB Packet Storm |
| 2057 | 5.4 |
警告
Network |
OpenClaw | OpenClaw | OpenClawにおける不正な認証に関する脆弱性 |
CWE-863
不正な認証 |
CVE-2026-41909 | 2026-04-30 10:58 | 2026-04-23 | Show | GitHub Exploit DB Packet Storm |
| 2058 | 8.8 |
重要
Network |
GitHub | Enterprise Server | GitHubのEnterprise Serverにおける不正な正規表現に関する脆弱性 |
CWE-185
不正な正規表現 |
CVE-2026-4296 | 2026-04-30 10:58 | 2026-04-21 | Show | GitHub Exploit DB Packet Storm |
| 2059 | 8.8 |
重要
Network |
Kubernetes | ingress-nginx | Kubernetesのingress-nginxにおける入力確認に関する脆弱性 |
CWE-20 CWE-noinfo |
CVE-2026-4342 | 2026-04-30 10:58 | 2026-03-19 | Show | GitHub Exploit DB Packet Storm |
| 2060 | 6.5 |
警告
Network |
レッドハット libarchive |
Red Hat OpenShift Container Platform Red Hat Enterprise Linux Red Hat Hardened Images libarchive |
libarchive等の複数ベンダの製品における整数への不適切なビットシフトに関する脆弱性 |
CWE-1335
整数への不適切なビットシフト |
CVE-2026-4426 | 2026-04-30 10:58 | 2026-03-19 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 13, 2026, 5:05 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 313781 | 7.8 |
HIGH
Local |
catonetworks | cato_client | Cato Networks Windows SDP Client Local Privilege Escalation via self-upgradeThis issue affects SDP Client: before 5.10.34. |
CWE-426 CWE-276 Untrusted Search Path Incorrect Default Permissions |
CVE-2024-6974 | 2024-08-28 00:36 | 2024-08-1 | Show | GitHub Exploit DB Packet Storm |
| 313782 | 9.8 |
CRITICAL
Network |
dlink |
dns-1550-04_firmware dns-1200-05_firmware dns-1100-4_firmware dns-726-4_firmware dns-345_firmware dns-343_firmware dns-340l_firmware dnr-326_firmware dns-327l_firmware dns-… |
A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, … |
CWE-78
OS Command |
CVE-2024-8133 | 2024-08-28 00:35 | 2024-08-25 | Show | GitHub Exploit DB Packet Storm |
| 313783 | 9.8 |
CRITICAL
Network |
dlink |
dns-1550-04_firmware dns-1200-05_firmware dns-1100-4_firmware dns-726-4_firmware dns-345_firmware dns-343_firmware dns-340l_firmware dnr-326_firmware dns-327l_firmware dns-… |
A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, … |
CWE-78
OS Command |
CVE-2024-8132 | 2024-08-28 00:35 | 2024-08-25 | Show | GitHub Exploit DB Packet Storm |
| 313784 | - | - | - | A SQL Injection vulnerability exists in the updateServiceHost functionality in Centreon Web 24.04.x before 24.04.3, 23.10.x before 23.10.13, 23.04.x before 23.04.19, and 22.10.x before 22.10.23. | - | CVE-2024-32501 | 2024-08-28 00:35 | 2024-08-24 | Show | GitHub Exploit DB Packet Storm | |
| 313785 | - | - | - | An issue in Netgear DGN1000WW v.1.1.00.45 allows a remote attacker to execute arbitrary code via the Diagnostics page | - | CVE-2024-42756 | 2024-08-28 00:35 | 2024-08-24 | Show | GitHub Exploit DB Packet Storm | |
| 313786 | 9.8 |
CRITICAL
Network |
dlink |
dns-1550-04_firmware dns-1200-05_firmware dns-1100-4_firmware dns-726-4_firmware dns-345_firmware dns-343_firmware dns-340l_firmware dnr-326_firmware dns-327l_firmware dns-… |
A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, … |
CWE-78
OS Command |
CVE-2024-8131 | 2024-08-28 00:34 | 2024-08-25 | Show | GitHub Exploit DB Packet Storm |
| 313787 | 9.8 |
CRITICAL
Network |
dlink |
dns-1550-04_firmware dns-1200-05_firmware dns-1100-4_firmware dns-726-4_firmware dns-345_firmware dns-343_firmware dns-340l_firmware dnr-326_firmware dns-327l_firmware dns-… |
A vulnerability has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-72… |
CWE-78
OS Command |
CVE-2024-8130 | 2024-08-28 00:34 | 2024-08-25 | Show | GitHub Exploit DB Packet Storm |
| 313788 | 8.8 |
HIGH
Network |
catonetworks | cato_client | Remote Code Execution in Cato Windows SDP client via crafted URLs. This issue affects Windows SDP Client before 5.10.34. |
NVD-CWE-noinfo
|
CVE-2024-6973 | 2024-08-28 00:34 | 2024-08-1 | Show | GitHub Exploit DB Packet Storm |
| 313789 | 9.8 |
CRITICAL
Network |
dlink |
dns-1550-04_firmware dns-1200-05_firmware dns-1100-4_firmware dns-726-4_firmware dns-345_firmware dns-343_firmware dns-340l_firmware dnr-326_firmware dns-327l_firmware dns-… |
A vulnerability, which was classified as critical, was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-… |
CWE-78
OS Command |
CVE-2024-8129 | 2024-08-28 00:33 | 2024-08-25 | Show | GitHub Exploit DB Packet Storm |
| 313790 | 9.8 |
CRITICAL
Network |
dlink |
dns-1550-04_firmware dns-1200-05_firmware dns-1100-4_firmware dns-726-4_firmware dns-345_firmware dns-343_firmware dns-340l_firmware dnr-326_firmware dns-327l_firmware dns-… |
A vulnerability, which was classified as critical, has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326,… |
CWE-78
OS Command |
CVE-2024-8128 | 2024-08-28 00:32 | 2024-08-24 | Show | GitHub Exploit DB Packet Storm |