Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249711	9	危険	シスコシステムズ	-	Cisco TelePresence エンドポイントデバイスにおける任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2011-0373	2011-11-29 09:50	2011-02-23	Show	GitHub Exploit DB Packet Storm

249712	10	危険	シスコシステムズ	-	Cisco TelePresence エンドポイントデバイスにおける任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2011-0372	2011-11-29 09:49	2011-02-23	Show	GitHub Exploit DB Packet Storm

249713	10	危険	シスコシステムズ	-	Cisco Security Agent の Management Console における任意のファイルを作られる脆弱性	CWE-94 コード・インジェクション	CVE-2011-0364	2011-11-29 09:48	2011-02-16	Show	GitHub Exploit DB Packet Storm

249714	7.8	危険	VMware シスコシステムズ	-	Cisco Nexus 1000V Virtual Ethernet Module におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0355	2011-11-29 09:46	2011-02-7	Show	GitHub Exploit DB Packet Storm

249715	7.5	危険	日本電気アップルアライドテレシスサン・マイクロシステムズ BEAシステムズレッドハット	-	Java Web Start において許可されていないシステムクラスが実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-2435	2011-11-28 16:52	2007-04-30	Show	GitHub Exploit DB Packet Storm

249716	4	警告	サイボウズ	-	サイボウズ Office におけるアクセス制限不備の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2677	2011-11-28 16:45	2011-10-7	Show	GitHub Exploit DB Packet Storm

249717	6.8	警告	Zenprise Inc.	-	Zenprise Device Manager にクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-4498	2011-11-28 14:56	2011-11-21	Show	GitHub Exploit DB Packet Storm

249718	7.5	危険	アップル	-	Apple iTunes における脆弱性に対するアップデート	CWE-94 コード・インジェクション	CVE-2008-3434	2011-11-28 14:56	2011-11-15	Show	GitHub Exploit DB Packet Storm

249719	7.5	危険	アップル	-	Apple Time Capsule および AirPort Base Station (802.11n) における複数の脆弱性に対するアップデート	CWE-20 不適切な入力確認	CVE-2011-0997	2011-11-28 14:52	2011-11-11	Show	GitHub Exploit DB Packet Storm

249720	9.3	危険	Aviosoft	-	Aviosoft DTV Player にバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-4496	2011-11-28 14:49	2011-10-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
531	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: net/packet: fix TOCTOU race on mmap'd vnet_hdr in tpacket_snd() In tpacket_snd(), when PACKET_VNET_HDR is enabled, vnet_hdr point…	-	CVE-2026-31700	2026-05-3 16:16	2026-05-1	Show	GitHub Exploit DB Packet Storm

532	7.1	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: crypto: ccp: Don't attempt to copy CSR to userspace if PSP command failed When retrieving the PEK CSR, don't attempt to copy the …	-	CVE-2026-31699	2026-05-3 16:16	2026-05-1	Show	GitHub Exploit DB Packet Storm

533	7.1	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: crypto: ccp: Don't attempt to copy PDH cert to userspace if PSP command failed When retrieving the PDH cert, don't attempt to cop…	-	CVE-2026-31698	2026-05-3 16:16	2026-05-1	Show	GitHub Exploit DB Packet Storm

534	7.1	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: crypto: ccp: Don't attempt to copy ID to userspace if PSP command failed When retrieving the ID for the CPU, don't attempt to cop…	-	CVE-2026-31697	2026-05-3 16:16	2026-05-1	Show	GitHub Exploit DB Packet Storm

535	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: wifi: virt_wifi: remove SET_NETDEV_DEV to avoid use-after-free Currently we execute `SET_NETDEV_DEV(dev, &priv->lowerdev->dev)` f…	-	CVE-2026-31695	2026-05-3 16:16	2026-05-1	Show	GitHub Exploit DB Packet Storm

536	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: fuse: reject oversized dirents in page cache fuse_add_dirent_to_cache() computes a serialized dirent size from the server-control…	-	CVE-2026-31694	2026-05-3 16:16	2026-05-1	Show	GitHub Exploit DB Packet Storm

537	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: cifs: some missing initializations on replay In several places in the code, we have a label to signify the start of the code wher…	-	CVE-2026-31693	2026-05-3 16:16	2026-04-30	Show	GitHub Exploit DB Packet Storm

538	6.5	MEDIUM Network	-	-	A security vulnerability has been detected in jsbroks COCO Annotator up to 0.11.1. Affected by this vulnerability is an unknown functionality of the file backend/webserver/api/datasets.py of the comp…	CWE-285 CWE-639 Improper Authorization Authorization Bypass Through User-Controlled Key	CVE-2026-7681	2026-05-3 15:15	2026-05-3	Show	GitHub Exploit DB Packet Storm

539	4.3	MEDIUM Network	-	-	A weakness has been identified in jsbroks COCO Annotator up to 0.11.1. Affected is an unknown function of the file backend/webserver/api/datasets.py of the component Data Endpoint. Executing a manipu…	CWE-22 Path Traversal	CVE-2026-7680	2026-05-3 15:15	2026-05-3	Show	GitHub Exploit DB Packet Storm

540	7.2	HIGH Network	-	-	The NEX-Forms – Ultimate Forms Plugin for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via POST parameter key names in the submit_nex_form() function in versions up to,…	CWE-79 Cross-site Scripting	CVE-2026-5063	2026-05-3 15:15	2026-05-3	Show	GitHub Exploit DB Packet Storm