Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2101	9	緊急 Network	Thymeleaf	Thymeleaf	Thymeleafにおける複数の脆弱性	CWE-1336 CWE-917	CVE-2026-40477	2026-04-27 10:48	2026-04-17	Show	GitHub Exploit DB Packet Storm

2102	9	緊急 Network	Thymeleaf	Thymeleaf	Thymeleafにおける複数の脆弱性	CWE-1336 CWE-917	CVE-2026-40478	2026-04-27 10:47	2026-04-17	Show	GitHub Exploit DB Packet Storm

2103	7.1	重要 Local	Craig J. Bass (craigjbass)	ClearanceKit	Craig J. Bass (craigjbass)のClearanceKitにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-40599	2026-04-27 10:47	2026-04-21	Show	GitHub Exploit DB Packet Storm

2104	4.4	警告 Local	Craig J. Bass (craigjbass)	ClearanceKit	Craig J. Bass (craigjbass)のClearanceKitにおける保護メカニズムの不具合に関する脆弱性	CWE-693 保護メカニズムの不具合	CVE-2026-40604	2026-04-27 10:47	2026-04-21	Show	GitHub Exploit DB Packet Storm

2105	4.8	警告 Network	mitmproxy	mitmproxy	mitmproxyにおけるLDAP インジェクションの脆弱性	CWE-90 LDAP インジェクション	CVE-2026-40606	2026-04-27 10:47	2026-04-21	Show	GitHub Exploit DB Packet Storm

2106	7.5	重要 Network	coturn project	coturn	coturn projectのcoturnにおける不正な型変換に関する脆弱性	CWE-704 不正な型変換またはキャスト	CVE-2026-40613	2026-04-27 10:47	2026-04-21	Show	GitHub Exploit DB Packet Storm

2107	8.8	重要 Network	goshs	goshs	goshsにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-40876	2026-04-27 10:47	2026-04-21	Show	GitHub Exploit DB Packet Storm

2108	7.5	重要 Network		-	NestJSにおける再帰制御に関する脆弱性	CWE-674 不適切な再帰制御	CVE-2026-40879	2026-04-27 10:47	2026-04-21	Show	GitHub Exploit DB Packet Storm

2109	7.6	重要 Network	openremote	openremote	openremoteにおけるXML 外部エンティティの脆弱性	CWE-611 XML 外部エンティティ参照の不適切な制限	CVE-2026-40882	2026-04-27 10:47	2026-04-22	Show	GitHub Exploit DB Packet Storm

2110	8.3	重要 Network	WWBN	AVideo	WWBNのAVideoにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-40925	2026-04-27 10:47	2026-04-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
541	-	-	-	In the Linux kernel, the following vulnerability has been resolved: net/tcp-ao: Fix MAC comparison to be constant-time To prevent timing attacks, MACs need to be compared in constant time. Use the… New	-	CVE-2026-43384	2026-05-9 00:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

542	-	-	-	In the Linux kernel, the following vulnerability has been resolved: net/tcp-md5: Fix MAC comparison to be constant-time To prevent timing attacks, MACs need to be compared in constant time. Use th… New	-	CVE-2026-43383	2026-05-9 00:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

543	-	-	-	In the Linux kernel, the following vulnerability has been resolved: batman-adv: Avoid double-rtnl_lock ELP metric worker batadv_v_elp_get_throughput() might be called when the RTNL lock is already … New	-	CVE-2026-43382	2026-05-9 00:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

544	-	-	-	In the Linux kernel, the following vulnerability has been resolved: nouveau/dpcd: return EBUSY for aux xfer if the device is asleep If we have runtime suspended, and userspace wants to use /dev/drm… New	-	CVE-2026-43381	2026-05-9 00:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

545	-	-	-	In the Linux kernel, the following vulnerability has been resolved: hwmon: (pmbus/q54sj108a2) fix stack overflow in debugfs read The q54sj108a2_debugfs_read function suffers from a stack buffer ove… New	-	CVE-2026-43380	2026-05-9 00:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

546	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in smb_lazy_parent_lease_break_close() opinfo pointer obtained via rcu_dereference(fp->f_opinfo) is bei… New	-	CVE-2026-43379	2026-05-9 00:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

547	-	-	-	In the Linux kernel, the following vulnerability has been resolved: smb: server: fix use-after-free in smb2_open() The opinfo pointer obtained via rcu_dereference(fp->f_opinfo) is dereferenced afte… New	-	CVE-2026-43378	2026-05-9 00:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

548	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ksmbd: Don't log keys in SMB3 signing and encryption key generation When KSMBD_DEBUG_AUTH logging is enabled, generate_smb3signin… New	-	CVE-2026-43377	2026-05-9 00:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

549	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free by using call_rcu() for oplock_info ksmbd currently frees oplock_info immediately using kfree(), even t… New	-	CVE-2026-43376	2026-05-9 00:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

550	-	-	-	In the Linux kernel, the following vulnerability has been resolved: net: mctp: fix device leak on probe failure Driver core holds a reference to the USB interface and its parent USB device while th… New	-	CVE-2026-43375	2026-05-9 00:16	2026-05-9	Show	GitHub Exploit DB Packet Storm