Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2221	5.5	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおける誤って解決された名前や参照の使用に関する脆弱性	CWE-706 誤って解決された名前や参照の使用	CVE-2026-35358	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

2222	6.6	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるリンク解釈に関する脆弱性	CWE-59 リンク解釈の問題	CVE-2026-35365	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

2223	4.4	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおける例外的な状態のチェックに関する脆弱性	CWE-754 例外的な状態における不適切なチェック	CVE-2026-35366	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

2224	5.5	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-35369	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

2225	4.4	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-35370	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

2226	3.3	低 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるユーザインターフェースにおける重要情報の誤った表示に関する脆弱性	CWE-451 ユーザインターフェースにおける重要情報の誤った表示	CVE-2026-35371	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

2227	5	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるUNIX Symbolic Link のフォローに関する脆弱性	CWE-61 UNIX Symbolic Link のフォロー	CVE-2026-35372	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

2228	5.5	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるUnicode エンコーディングの処理に関する脆弱性	CWE-176 Unicode エンコーディングの不適切な処理	CVE-2026-35373	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

2229	6.3	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-35374	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

2230	3.3	低 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるUnicode エンコーディングの処理に関する脆弱性	CWE-176 Unicode エンコーディングの不適切な処理	CVE-2026-35375	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313321	4.7	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: workqueue: Fix spruious data race in __flush_work() When flushing a work item for cancellation, __flush_work() knows that it excl…	NVD-CWE-noinfo	CVE-2024-46704	2024-09-19 22:32	2024-09-13	Show	GitHub Exploit DB Packet Storm

313322	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/xe: reset mmio mappings with devm Set our various mmio mappings to NULL. This should make it easier to catch something rogue …	CWE-476 NULL Pointer Dereference	CVE-2024-46705	2024-09-19 22:30	2024-09-13	Show	GitHub Exploit DB Packet Storm

313323	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Make ICC_SGI_EL1 undef in the absence of a vGICv3 On a system with a GICv3, if a guest hasn't been configured with …	CWE-476 NULL Pointer Dereference	CVE-2024-46707	2024-09-19 22:29	2024-09-13	Show	GitHub Exploit DB Packet Storm

313324	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: pinctrl: qcom: x1e80100: Fix special pin offsets Remove the erroneus 0x100000 offset to prevent the boards from crashing on pin s…	NVD-CWE-noinfo	CVE-2024-46708	2024-09-19 22:28	2024-09-13	Show	GitHub Exploit DB Packet Storm

313325	5.3	MEDIUM Network	miniorange	web_application_firewall	The Web Application Firewall plugin for WordPress is vulnerable to IP Address Spoofing in versions up to, and including, 2.1.2. This is due to insufficient restrictions on where the IP Address inform…	CWE-345 Insufficient Verification of Data Authenticity	CVE-2022-4539	2024-09-19 22:27	2024-08-31	Show	GitHub Exploit DB Packet Storm

313326	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix prime with external buffers Make sure that for external buffers mapping goes through the dma_buf interface instea…	NVD-CWE-noinfo	CVE-2024-46709	2024-09-19 22:26	2024-09-13	Show	GitHub Exploit DB Packet Storm

313327	4.7	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: fix ID 0 endp usage after multiple re-creations 'local_addr_used' and 'add_addr_accepted' are decremented for addresse…	NVD-CWE-noinfo	CVE-2024-46711	2024-09-19 22:12	2024-09-13	Show	GitHub Exploit DB Packet Storm

313328	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Disable coherent dumb buffers without 3d Coherent surfaces make only sense if the host renders to them using accelera…	NVD-CWE-noinfo	CVE-2024-46712	2024-09-19 22:09	2024-09-13	Show	GitHub Exploit DB Packet Storm

313329	9.8	CRITICAL Network	tnbmobil	cockpit	Use of Hard-coded Credentials vulnerability in TNB Mobile Solutions Cockpit Software allows Read Sensitive Strings Within an Executable.This issue affects Cockpit Software: before v2.13.	CWE-798 Use of Hard-coded Credentials	CVE-2024-6656	2024-09-19 22:05	2024-09-13	Show	GitHub Exploit DB Packet Storm

313330	5.3	MEDIUM Network	secreto31126	whatsapp-api-js	whatsapp-api-js is a TypeScript server agnostic Whatsapp's Official API framework. It's possible to check the payload validation using the WhatsAppAPI.verifyRequestSignature and expect false when the…	NVD-CWE-Other	CVE-2024-45607	2024-09-19 11:05	2024-09-13	Show	GitHub Exploit DB Packet Storm