Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2391 7.5 重要
Network 		OpenMRS OpenMRS OpenMRSにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-40075 2026-05-14 10:19 2026-05-5 Show GitHub Exploit DB Packet Storm
2392 7.8 重要
Local 		デル Dell ObjectScale
elastic cloud storage 		デルのelastic cloud storage等の複数製品におけるハードコードされた認証情報の使用に関する脆弱性 CWE-798
ハードコードされた認証情報の使用 		CVE-2026-40636 2026-05-14 10:19 2026-05-11 Show GitHub Exploit DB Packet Storm
2393 6.7 警告
Local 		デル insightiq デルのinsightiqにおける不要な特権による実行に関する脆弱性 CWE-250
不要な特権による実行 		CVE-2026-40638 2026-05-14 10:19 2026-05-12 Show GitHub Exploit DB Packet Storm
2394 7.5 重要
Network 		VMware Spring Cloud Config VMwareのSpring Cloud Configにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-40981 2026-05-14 10:19 2026-05-7 Show GitHub Exploit DB Packet Storm
2395 9.1 緊急
Network 		VMware Spring Cloud Config VMwareのSpring Cloud Configにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-40982 2026-05-14 10:19 2026-05-7 Show GitHub Exploit DB Packet Storm
2396 8.1 重要
Network 		VMware Spring Cloud Config VMwareのSpring Cloud ConfigにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 CWE-367
Time-of-check Time-of-use (TOCTOU) 競合状態 		CVE-2026-41002 2026-05-14 10:19 2026-05-7 Show GitHub Exploit DB Packet Storm
2397 4.4 警告
Local 		VMware Spring Cloud Config VMwareのSpring Cloud Configにおけるログファイルからの情報漏えいに関する脆弱性 CWE-532
ログファイルからの情報漏えい 		CVE-2026-41004 2026-05-14 10:19 2026-05-7 Show GitHub Exploit DB Packet Storm
2398 5.3 警告
Network 		Sync-in Sync-in Server Sync-inのSync-in Serverにおけるタイミングの違いに起因する情報漏えいに関する脆弱性 CWE-208
タイミングの違いに起因する情報漏えい 		CVE-2026-41161 2026-05-14 10:19 2026-05-8 Show GitHub Exploit DB Packet Storm
2399 5.3 警告
Network 		angular angular angularにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-41423 2026-05-14 10:19 2026-05-8 Show GitHub Exploit DB Packet Storm
2400 8.1 重要
Network 		Linux Foundation dapr Linux Foundationのdaprにおける複数の脆弱性 CWE-22
CWE-284
CWE-noinfo
CVE-2026-41491 2026-05-14 10:19 2026-05-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312181 9.8 CRITICAL
Network 		siemens ruggedcom_rm1224_lte\(4g\)_eu_firmware
ruggedcom_rm1224_lte\(4g\)_nam_firmware
scalance_m804pb_firmware
scalance_m812-1_\(annex_a\)_firmware
scalance_m812-1_\(annex_b\)_firmware
scalan… 		A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.2), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2) (All versions < V8.2), SCALANCE M804PB… NVD-CWE-noinfo
CVE-2024-50557 2024-11-14 04:54 2024-11-12 Show GitHub Exploit DB Packet Storm
312182 6.1 MEDIUM
Network 		slimselectjs slim_select Slim Select 2.0 versions through 2.9.0 are affected by a potential cross-site scripting vulnerability. In select.ts:createOption(), the text variable from the user-provided Options object is assigned… CWE-79
Cross-site Scripting 		CVE-2024-9440 2024-11-14 04:50 2024-10-3 Show GitHub Exploit DB Packet Storm
312183 6.1 MEDIUM
Network 		microfocus arcsight_management_center
arcsight_platform 		A Reflected Cross-Site Scripting (XSS) vulnerability has been identified in OpenText ArcSight Management Center and ArcSight Platform. The vulnerability could be remotely exploited. CWE-79
Cross-site Scripting 		CVE-2024-9841 2024-11-14 04:34 2024-11-9 Show GitHub Exploit DB Packet Storm
312184 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: iov_iter: fix copy_page_from_iter_atomic() if KMAP_LOCAL_FORCE_MAP generic/077 on x86_32 CONFIG_DEBUG_KMAP_LOCAL_FORCE_MAP=y with… NVD-CWE-noinfo
CVE-2024-50222 2024-11-14 04:23 2024-11-9 Show GitHub Exploit DB Packet Storm
312185 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Vangogh: Fix kernel memory out of bounds write KASAN reports that the GPU metrics table allocated in vangogh_tables_i… CWE-787
 Out-of-bounds Write 		CVE-2024-50221 2024-11-14 04:23 2024-11-9 Show GitHub Exploit DB Packet Storm
312186 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: spi: spi-fsl-dspi: Fix crash when not using GPIO chip select Add check for the return value of spi_get_csgpiod() to avoid passing… CWE-476
 NULL Pointer Dereference 		CVE-2024-50224 2024-11-14 04:22 2024-11-9 Show GitHub Exploit DB Packet Storm
312187 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: sched/numa: Fix the potential null pointer dereference in task_numa_work() When running stress-ng-vm-segv test, we found a null p… CWE-476
 NULL Pointer Dereference 		CVE-2024-50223 2024-11-14 04:22 2024-11-9 Show GitHub Exploit DB Packet Storm
312188 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: btrfs: fix error propagation of split bios The purpose of btrfs_bbio_propagate_error() shall be propagating an error of split bio… CWE-476
 NULL Pointer Dereference 		CVE-2024-50225 2024-11-14 04:21 2024-11-9 Show GitHub Exploit DB Packet Storm
312189 9.8 CRITICAL
Network 		dell enterprise_sonic_distribution Dell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) a Missing Critical Step in Authentication vulnerability. An unauthenticated attacker with remote access could potentially exploit this vu… NVD-CWE-Other
CVE-2024-45764 2024-11-14 04:08 2024-11-9 Show GitHub Exploit DB Packet Storm
312190 7.2 HIGH
Network 		dell enterprise_sonic_distribution Dell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A high privileged attacker w… CWE-78
OS Command  		CVE-2024-45765 2024-11-14 04:06 2024-11-9 Show GitHub Exploit DB Packet Storm