Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2201	8.1	重要 Network	Daniel Garcia	Vaultwarden	Daniel GarciaのVaultwardenにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-43913	2026-05-15 10:58	2026-05-11	Show	GitHub Exploit DB Packet Storm

2202	9.8	緊急 Network	Daniel Garcia	Vaultwarden	Daniel GarciaのVaultwardenにおける過度な認証試行の不適切な制限に関する脆弱性	CWE-307 過度な認証試行の不適切な制限	CVE-2026-43914	2026-05-15 10:58	2026-05-11	Show	GitHub Exploit DB Packet Storm

2203	8.1	重要 Network	Pocket ID	Pocket ID	Pocket IDにおける複数の脆弱性	CWE-285 CWE-613	CVE-2026-43983	2026-05-15 10:58	2026-05-12	Show	GitHub Exploit DB Packet Storm

2204	7.5	重要 Network	protobufjs project	protobufjs	protobufjs projectのprotobufjsにおける再帰制御に関する脆弱性	CWE-674 不適切な再帰制御	CVE-2026-44289	2026-05-15 10:58	2026-05-13	Show	GitHub Exploit DB Packet Storm

2205	7.5	重要 Network	protobufjs project	protobufjs	protobufjs projectのprotobufjsにおけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性	CWE-1321 オブジェクトプロトタイプ属性の不適切に制御された変更 (プロトタイプの汚染)	CVE-2026-44290	2026-05-15 10:58	2026-05-13	Show	GitHub Exploit DB Packet Storm

2206	8.1	重要 Network	protobufjs project	protobufjs	protobufjs projectのprotobufjsにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-44291	2026-05-15 10:57	2026-05-13	Show	GitHub Exploit DB Packet Storm

2207	5.3	警告 Network	protobufjs project	protobufjs	protobufjs projectのprotobufjsにおけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性	CWE-1321 オブジェクトプロトタイプ属性の不適切に制御された変更 (プロトタイプの汚染)	CVE-2026-44292	2026-05-15 10:57	2026-05-13	Show	GitHub Exploit DB Packet Storm

2208	8.8	重要 Network	protobufjs project	protobufjs	protobufjs projectのprotobufjsにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-44293	2026-05-15 10:57	2026-05-13	Show	GitHub Exploit DB Packet Storm

2209	5.3	警告 Network	protobufjs project	protobufjs	protobufjs projectのprotobufjsにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-44294	2026-05-15 10:57	2026-05-13	Show	GitHub Exploit DB Packet Storm

2210	6.1	警告 Network	hono	hono	honoにおけるインジェクションに関する脆弱性	CWE-74 インジェクション	CVE-2026-44455	2026-05-15 10:57	2026-05-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311751	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net: test for not too small csum_start in virtio_net_hdr_to_skb() syzbot was able to trigger this warning [1], after injecting a …	NVD-CWE-noinfo	CVE-2024-49947	2024-11-13 06:25	2024-10-22	Show	GitHub Exploit DB Packet Storm

311752	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net: add more sanity checks to qdisc_pkt_len_init() One path takes care of SKB_GSO_DODGY, assuming skb->len is bigger than hdr_le…	NVD-CWE-noinfo	CVE-2024-49948	2024-11-13 06:19	2024-10-22	Show	GitHub Exploit DB Packet Storm

311753	7.5	HIGH Network	-	-	A flaw was found in Gateway. Sending a non-base64 'basic' auth with special characters can cause APICast to incorrectly authenticate a request. A malformed basic authentication header containing spec…	CWE-863 Incorrect Authorization	CVE-2024-10295	2024-11-13 06:15	2024-10-25	Show	GitHub Exploit DB Packet Storm

311754	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Fix possible crash on mgmt_index_removed If mgmt_index_removed is called while there are commands queued on cmd_…	NVD-CWE-noinfo	CVE-2024-49951	2024-11-13 06:06	2024-10-22	Show	GitHub Exploit DB Packet Storm

311755	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net: avoid potential underflow in qdisc_pkt_len_init() with UFO After commit 7c6d2ecbda83 ("net: be more gentle about silly gso r…	CWE-476 NULL Pointer Dereference	CVE-2024-49949	2024-11-13 06:03	2024-10-22	Show	GitHub Exploit DB Packet Storm

311756	9.8	CRITICAL Network	eyecix	jobsearch_wp_job_board	Missing Authorization vulnerability in eyecix JobSearch allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects JobSearch: from n/a through 2.5.4.	CWE-862 Missing Authorization	CVE-2024-43929	2024-11-13 05:49	2024-11-2	Show	GitHub Exploit DB Packet Storm

311757	8.8	HIGH Network	eyecix	jobsearch_wp_job_board	Missing Authorization vulnerability in eyecix JobSearch allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JobSearch: from n/a through 2.5.4.	CWE-862 Missing Authorization	CVE-2024-43928	2024-11-13 05:49	2024-11-2	Show	GitHub Exploit DB Packet Storm

311758	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: RDMA/mad: Improve handling of timed out WRs of mad agent Current timeout handler of mad agent acquires/releases mad_agent_priv lo…	NVD-CWE-noinfo	CVE-2024-50095	2024-11-13 05:26	2024-11-6	Show	GitHub Exploit DB Packet Storm

311759	7.5	HIGH Network	dena	h2o	h2o is an HTTP server with support for HTTP/1.x, HTTP/2 and HTTP/3. When an HTTP request using TLS/1.3 early data on top of TCP Fast Open or QUIC 0-RTT packets is received and the IP-address-based ac…	CWE-290 Authentication Bypass by Spoofing	CVE-2024-45397	2024-11-13 05:14	2024-10-12	Show	GitHub Exploit DB Packet Storm

311760	7.5	HIGH Network	dena	quicly	Quicly is an IETF QUIC protocol implementation. Quicly up to commtit d720707 is susceptible to a denial-of-service attack. A remote attacker can exploit these bugs to trigger an assertion failure tha…	CWE-617 Reachable Assertion	CVE-2024-45396	2024-11-13 05:05	2024-10-12	Show	GitHub Exploit DB Packet Storm