Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 4:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2111	9.1	緊急 Network	TheCodingMachine	Gotenberg	TheCodingMachineのGotenbergにおける引数の挿入または変更に関する脆弱性	CWE-88 引数の挿入または変更	CVE-2026-40281	2026-05-12 10:20	2026-05-6	Show	GitHub Exploit DB Packet Storm

2112	5.4	警告 Network	PHPOffice	PhpSpreadsheet	PHPOfficeのPhpSpreadsheetにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-40296	2026-05-12 10:20	2026-05-6	Show	GitHub Exploit DB Packet Storm

2113	6.8	警告 Network	Project Jupyter	Jupyter Server	Project JupyterのJupyter Serverにおけるセッション期限に関する脆弱性	CWE-613 不適切なセッション期限	CVE-2026-40934	2026-05-12 10:20	2026-05-5	Show	GitHub Exploit DB Packet Storm

2114	5.3	警告 Network	Netty	Netty	Nettyにおける複数の脆弱性	CWE-444 CWE-93	CVE-2026-41417	2026-05-12 10:20	2026-05-6	Show	GitHub Exploit DB Packet Storm

2115	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-43240	2026-05-12 10:20	2026-05-6	Show	GitHub Exploit DB Packet Storm

2116	7.1	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-43241	2026-05-12 10:20	2026-05-6	Show	GitHub Exploit DB Packet Storm

2117	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-43242	2026-05-12 10:20	2026-05-6	Show	GitHub Exploit DB Packet Storm

2118	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-43243	2026-05-12 10:20	2026-05-6	Show	GitHub Exploit DB Packet Storm

2119	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-43244	2026-05-12 10:20	2026-05-6	Show	GitHub Exploit DB Packet Storm

2120	7.5	重要 Network	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-43245	2026-05-12 10:20	2026-05-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312091	7.5	HIGH Network	tenda	fh1206_firmware	Tenda FH1206 v02.03.01.35 was discovered to contain a stack overflow via the qos parameter in the fromqossetting function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a…	CWE-787 Out-of-bounds Write	CVE-2024-42977	2024-10-25 05:35	2024-08-16	Show	GitHub Exploit DB Packet Storm

312092	9.8	CRITICAL Network	totolink	n350rt_firmware	Incorrect access control in TOTOLINK N350RT V9.3.5u.6139_B20201216 allows attackers to obtain the apmib configuration file, which contains the username and the password, via a crafted request to /cgi…	NVD-CWE-noinfo	CVE-2024-42966	2024-10-25 05:35	2024-08-16	Show	GitHub Exploit DB Packet Storm

312093	-		-	-	Micro-Star International Z-series motherboards (Z590, Z490, and Z790) and B-series motherboards (B760, B560, B660, and B460) with firmware 7D25v14, 7D25v17 to 7D25v19, and 7D25v1A to 7D25v1H was disc…	-	CVE-2024-36877	2024-10-25 05:35	2024-08-13	Show	GitHub Exploit DB Packet Storm

312094	-		-	-	In certain Sonos products before S1 Release 11.12 and S2 release 15.9, the mt_7615.ko wireless driver does not properly validate an information element during negotiation of a WPA2 four-way handshake…	-	CVE-2023-50809	2024-10-25 05:35	2024-08-12	Show	GitHub Exploit DB Packet Storm

312095	5.3	MEDIUM Network	lopalopa	responsive_school_management_system	An Incorrect Access Control vulnerability was found in /smsa/view_students.php in Kashipara Responsive School Management System v3.2.0, which allows remote unauthenticated attackers to view STUDENT d…	NVD-CWE-Other	CVE-2024-41250	2024-10-25 05:35	2024-08-8	Show	GitHub Exploit DB Packet Storm

312096	6.5	MEDIUM Network	lopalopa	responsive_school_management_system	An Incorrect Access Control vulnerability was found in /smsa/admin_teacher_register_approval.php and /smsa/admin_teacher_register_approval_submit.php in Kashipara Responsive School Management System …	NVD-CWE-Other	CVE-2024-41251	2024-10-25 05:35	2024-08-8	Show	GitHub Exploit DB Packet Storm

312097	9.8	CRITICAL Network	ivanti	endpoint_manager_mobile	An insufficient authorization vulnerability in web component of EPMM prior to 12.1.0.1 allows an unauthorized attacker within the network to execute arbitrary commands on the underlying operating sys…	CWE-287 Improper Authentication	CVE-2024-36130	2024-10-25 05:35	2024-08-7	Show	GitHub Exploit DB Packet Storm

312098	8.8	HIGH Network	google	chrome	Inappropriate implementation in V8 in Google Chrome prior to 127.0.6533.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	CWE-787 Out-of-bounds Write	CVE-2024-7535	2024-10-25 05:35	2024-08-7	Show	GitHub Exploit DB Packet Storm

312099	-		-	-	A mass assignment vulnerability exists in Pantera CRM versions 401.152 and 402.072. This flaw allows authenticated users to modify any user attribute, including roles, by injecting additional paramet…	-	CVE-2024-40531	2024-10-25 05:35	2024-08-6	Show	GitHub Exploit DB Packet Storm

312100	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: btrfs: send: fix buffer overflow detection when copying path to cache entry Starting with commit c0247d289e73 ("btrfs: send: anno…	CWE-120 Classic Buffer Overflow	CVE-2024-49869	2024-10-25 05:28	2024-10-22	Show	GitHub Exploit DB Packet Storm