Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2341	8.1	重要 Network	WWBN	AVideo	WWBNのAVideoにおける過度に許容されるクロスドメインホワイトリストに関する脆弱性	CWE-942 過度に許容されるクロスドメインホワイトリスト	CVE-2026-41056	2026-04-27 11:20	2026-04-21	Show	GitHub Exploit DB Packet Storm

2342	7.5	重要 Network	libexpat project	libexpat	libexpat projectのlibexpatにおけるエントロピー不足に関する脆弱性	CWE-331 エントロピー不足	CVE-2026-41080	2026-04-27 11:20	2026-04-16	Show	GitHub Exploit DB Packet Storm

2343	7.5	重要 Network	free5gc	free5gc pcf	free5GCのfree5GC等の複数製品におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-41135	2026-04-27 11:20	2026-04-22	Show	GitHub Exploit DB Packet Storm

2344	5.3	警告 Network	free5gc	free5gc amf	free5GCのamf等の複数製品における予期せぬ動作に関する脆弱性	CWE-440 予期せぬ動作	CVE-2026-41136	2026-04-27 11:20	2026-04-22	Show	GitHub Exploit DB Packet Storm

2345	8.1	重要 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-4922	2026-04-27 11:20	2026-04-22	Show	GitHub Exploit DB Packet Storm

2346	6.1	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-5262	2026-04-27 11:20	2026-04-22	Show	GitHub Exploit DB Packet Storm

2347	4.3	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-5377	2026-04-27 11:20	2026-04-22	Show	GitHub Exploit DB Packet Storm

2348	8.1	重要 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるパスの等価性の不適切な解決に関する脆弱性	CWE-41 パスの等価性の不適切な解決	CVE-2026-5816	2026-04-27 11:19	2026-04-22	Show	GitHub Exploit DB Packet Storm

2349	9.1	緊急 Network	Rapid7	velociraptor	Rapid7のvelociraptorにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-6290	2026-04-27 11:19	2026-04-15	Show	GitHub Exploit DB Packet Storm

2350	5.3	警告 Network	fastify	fastify-static	fastifyのfastify-staticにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-6410	2026-04-27 11:19	2026-04-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
314371	-		-	-	Improper access control in SamsungHealthService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background.	-	CVE-2024-34605	2024-08-7 11:15	2024-08-7	Show	GitHub Exploit DB Packet Storm

314372	-		-	-	Improper access control in LedCoverService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background.	-	CVE-2024-34604	2024-08-7 11:15	2024-08-7	Show	GitHub Exploit DB Packet Storm

314373	-		-	-	A static initialization vector (IV) in the encrypt function of netbird v0.28.4 allows attackers to obtain sensitive information.	-	CVE-2024-41260	2024-08-7 04:35	2024-08-2	Show	GitHub Exploit DB Packet Storm

314374	-		-	-	An issue in beego v.2.2.0 and before allows a remote attacker to escalate privileges via the sendMail function located in beego/core/logs/smtp.go file	-	CVE-2024-40464	2024-08-7 03:35	2024-08-1	Show	GitHub Exploit DB Packet Storm

314375	9.8	CRITICAL Network	vivotek	ib8367a_firmware	UNSUPPORTED WHEN ASSIGNED A vulnerability classified as critical has been found in Vivotek IB8367A VVTK-0100b. Affected is the function getenv of the file upload_file.cgi. The manipulation of t…	CWE-77 Command Injection	CVE-2024-7443	2024-08-7 02:47	2024-08-4	Show	GitHub Exploit DB Packet Storm

314376	9.8	CRITICAL Network	vivotek	cc8160_firmware	UNSUPPORTED WHEN ASSIGNED A vulnerability was found in Vivotek CC8160 VVTK-0100d and classified as critical. Affected by this issue is the function read of the component httpd. The manipulation…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2024-7439	2024-08-7 02:46	2024-08-4	Show	GitHub Exploit DB Packet Storm

314377	9.8	CRITICAL Network	vivotek	sd9364_firmware	UNSUPPORTED WHEN ASSIGNED A vulnerability was found in Vivotek SD9364 VVTK-0103f. It has been rated as critical. This issue affects the function getenv of the file upload_file.cgi. The manipula…	CWE-77 Command Injection	CVE-2024-7442	2024-08-7 02:45	2024-08-4	Show	GitHub Exploit DB Packet Storm

314378	9.8	CRITICAL Network	raisecom	msg2300_firmware msg2100e_firmware msg2200_firmware msg1200_firmware	A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200 and MSG2300 3.90. It has been rated as critical. This issue affects the function sslvpn_config_mod of the file /vpn/vpn_template_style…	CWE-78 OS Command	CVE-2024-7470	2024-08-7 02:37	2024-08-5	Show	GitHub Exploit DB Packet Storm

314379	9.8	CRITICAL Network	raisecom	msg2300_firmware msg2100e_firmware msg2200_firmware msg1200_firmware	A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200 and MSG2300 3.90. It has been declared as critical. This vulnerability affects the function sslvpn_config_mod of the file /vpn/list_vp…	CWE-78 OS Command	CVE-2024-7469	2024-08-7 02:36	2024-08-5	Show	GitHub Exploit DB Packet Storm

314380	9.8	CRITICAL Network	raisecom	msg2300_firmware msg2100e_firmware msg2200_firmware msg1200_firmware	A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200 and MSG2300 3.90. It has been classified as critical. This affects the function sslvpn_config_mod of the file /vpn/list_service_manage…	CWE-78 OS Command	CVE-2024-7468	2024-08-7 02:35	2024-08-5	Show	GitHub Exploit DB Packet Storm