Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2201	9.6	緊急 Network	MISP	MISP	MISPにおけるLDAP インジェクションの脆弱性	CWE-90 LDAP インジェクション	CVE-2026-39962	2026-04-24 11:42	2026-04-9	Show	GitHub Exploit DB Packet Storm

2202	6.9	警告 Network	s9y	Serendipity	s9yのSerendipityにおける検証および完全性チェックを行っていない Cookie への依存に関する脆弱性	CWE-565 検証および完全性チェックを行っていない Cookie への依存	CVE-2026-39963	2026-04-24 11:42	2026-04-15	Show	GitHub Exploit DB Packet Storm

2203	7.2	重要 Network	s9y	Serendipity	s9yのSerendipityにおけるHTTP レスポンス分割に関する脆弱性	CWE-113 HTTP レスポンスの分割	CVE-2026-39971	2026-04-24 11:42	2026-04-15	Show	GitHub Exploit DB Packet Storm

2204	7.1	重要 Local	apktool	apktool	Apktoolにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-39973	2026-04-24 11:42	2026-04-21	Show	GitHub Exploit DB Packet Storm

2205	5.3	警告 Network	Apache Software Foundation	Apache log4net	Apache Software FoundationのApache log4netにおけるエンコードおよびエスケープに関する脆弱性	CWE-116 不適切なエンコード、または出力のエスケープ	CVE-2026-40021	2026-04-24 11:42	2026-04-10	Show	GitHub Exploit DB Packet Storm

2206	5.3	警告 Network	Daniel Gatis	Rembg	Daniel GatisのRembgにおける複数の脆弱性	CWE-22 CWE-73	CVE-2026-40086	2026-04-24 11:42	2026-04-10	Show	GitHub Exploit DB Packet Storm

2207	5.4	警告 Network	FUTO	Immich	FUTOのImmichにおける複数の脆弱性	CWE-601 CWE-79	CVE-2026-40096	2026-04-24 11:42	2026-04-15	Show	GitHub Exploit DB Packet Storm

2208	8.2	重要 Network	XWiki	xwiki	XWikiのxwikiにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-40104	2026-04-24 11:41	2026-04-15	Show	GitHub Exploit DB Packet Storm

2209	6.1	警告 Network	XWiki	xwiki	XWikiのxwikiにおけるクロスサイトスクリプティングの脆弱性	CWE-80 クロスサイトスクリプティング (Basic XSS)	CVE-2026-40105	2026-04-24 11:41	2026-04-15	Show	GitHub Exploit DB Packet Storm

2210	6.1	警告 Network	Prometheus	Prometheus	Prometheusにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-40179	2026-04-24 11:41	2026-04-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
631	-	-	-	In the Linux kernel, the following vulnerability has been resolved: sched/mmcid: Prevent CID stalls due to concurrent forks A newly forked task is accounted as MMCID user before the task is visible… New	-	CVE-2026-43418	2026-05-9 00:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

632	-	-	-	In the Linux kernel, the following vulnerability has been resolved: sched/mmcid: Handle vfork()/CLONE_VM correctly Matthieu and Jiri reported stalls where a task endlessly loops in mm_get_cid() whe… New	-	CVE-2026-43417	2026-05-9 00:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

633	-	-	-	In the Linux kernel, the following vulnerability has been resolved: powerpc, perf: Check that current->mm is alive before getting user callchain It may happen that mm is already released, which lea… New	-	CVE-2026-43416	2026-05-9 00:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

634	-	-	-	In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix SError in ufshcd_rtc_work() during UFS suspend In __ufshcd_wl_suspend(), cancel_delayed_work_sync() is calle… New	-	CVE-2026-43415	2026-05-9 00:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

635	-	-	-	In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Completely fix fcport double free In qla24xx_els_dcmd_iocb() sp->free is set to qla2x00_els_dcmd_sp_free(). When a… New	-	CVE-2026-43414	2026-05-9 00:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

636	-	-	-	In the Linux kernel, the following vulnerability has been resolved: scsi: hisi_sas: Fix NULL pointer exception during user_scan() user_scan() invokes updated sas_user_scan() for channel 0, and if s… New	-	CVE-2026-43413	2026-05-9 00:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

637	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: qdsp6: Fix q6apm remove ordering during ADSP stop and start During ADSP stop and start, the kernel crashes due to the… New	-	CVE-2026-43412	2026-05-9 00:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

638	-	-	-	In the Linux kernel, the following vulnerability has been resolved: tipc: fix divide-by-zero in tipc_sk_filter_connect() A user can set conn_timeout to any value via setsockopt(TIPC_CONN_TIMEOUT), … New	-	CVE-2026-43411	2026-05-9 00:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

639	-	-	-	In the Linux kernel, the following vulnerability has been resolved: firmware: stratix10-rsu: Fix NULL pointer dereference when RSU is disabled When the Remote System Update (RSU) isn't enabled in t… New	-	CVE-2026-43410	2026-05-9 00:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

640	-	-	-	In the Linux kernel, the following vulnerability has been resolved: kprobes: avoid crash when rmmod/insmod after ftrace killed After we hit ftrace is killed by some errors, the kernel crash if we r… New	-	CVE-2026-43409	2026-05-9 00:16	2026-05-9	Show	GitHub Exploit DB Packet Storm