Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2491 4.8 警告
Adjacent 		OpenClaw OpenClaw OpenClawにおける同一生成元ポリシー違反に関する脆弱性 CWE-346
同一生成元ポリシー違反 		CVE-2026-41393 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
2492 8.2 重要
Network 		OpenClaw OpenClaw OpenClawにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-41394 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
2493 7.5 重要
Network 		OpenClaw OpenClaw OpenClawにおける暗号化処理の不備に関する脆弱性 CWE-325
暗号化処理の不備 		CVE-2026-41395 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
2494 7.8 重要
Local 		OpenClaw OpenClaw OpenClawにおける信頼できない制御領域からの機能の組み込みに関する脆弱性 CWE-829
信頼性のない制御領域からの機能の組み込み 		CVE-2026-41396 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
2495 9.6 緊急
Network 		OpenClaw OpenClaw OpenClawにおけるリンク解釈に関する脆弱性 CWE-59
リンク解釈の問題 		CVE-2026-41397 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
2496 4 警告
Local 		OpenClaw OpenClaw OpenClawにおけるセキュリティ決定の信頼できない入力への依存に関する脆弱性 CWE-807
セキュリティ決定の信頼できない入力への依存 		CVE-2026-41403 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
2497 8.8 重要
Network 		OpenClaw OpenClaw OpenClawにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-41404 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
2498 7.5 重要
Network 		OpenClaw OpenClaw OpenClawにおける不適切な動作順序(早期増幅)に関する脆弱性 CWE-408
不適切な動作順序(早期増幅) 		CVE-2026-41405 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
2499 5.4 警告
Network 		OpenClaw OpenClaw OpenClawにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-41406 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
2500 5.3 警告
Network 		OpenClaw OpenClaw OpenClawにおけるタイミングの違いに起因する情報漏えいに関する脆弱性 CWE-208
タイミングの違いに起因する情報漏えい 		CVE-2026-41407 2026-05-7 12:29 2026-04-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313061 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: powerpc/qspinlock: Fix deadlock in MCS queue If an interrupt occurs in queued_spin_lock_slowpath() after we increment qnodesp->co… CWE-667
 Improper Locking 		CVE-2024-46797 2024-09-30 00:15 2024-09-18 Show GitHub Exploit DB Packet Storm
313062 7.5 HIGH
Network 		rapidscada rapid_scada CheckUser in ScadaServerEngine/MainLogic.cs in Rapid SCADA through 5.8.4 allows an empty password. CWE-521
Weak Password Requirements  		CVE-2024-47221 2024-09-29 09:45 2024-09-22 Show GitHub Exploit DB Packet Storm
313063 6.5 MEDIUM
Network 		zte mf296r_firmware There is a buffer overflow vulnerability in ZTE MF296R. Due to insufficient validation of the SMS parameter length, an authenticated attacker could use the vulnerability to perform a denial of servic… CWE-787
 Out-of-bounds Write 		CVE-2022-39068 2024-09-29 09:41 2024-09-18 Show GitHub Exploit DB Packet Storm
313064 4.8 MEDIUM
Network 		decidim decidim decidim is a Free Open-Source participatory democracy, citizen participation and open government for cities and organizations. The WYSWYG editor QuillJS is subject to potential XSS attach in case the… CWE-79
Cross-site Scripting 		CVE-2024-39910 2024-09-29 09:33 2024-09-17 Show GitHub Exploit DB Packet Storm
313065 6.1 MEDIUM
Network 		rws multitrans Multiple stored cross-site scripting (XSS) vulnerabilities in RWS MultiTrans v7.0.23324.2 and earlier allow attackers to execute arbitrary web scripts or HTML via a crafted payload. CWE-79
Cross-site Scripting 		CVE-2024-43024 2024-09-29 09:27 2024-09-19 Show GitHub Exploit DB Packet Storm
313066 5.6 MEDIUM
Local 		microsoft windows_11_22h2
windows_11_23h2 		Windows Kernel Information Disclosure Vulnerability NVD-CWE-noinfo
CVE-2024-37985 2024-09-29 09:26 2024-09-18 Show GitHub Exploit DB Packet Storm
313067 4.9 MEDIUM
Network 		ibm business_automation_workflow IBM Business Automation Workflow 22.0.2, 23.0.1, 23.0.2, and 24.0.0 could allow a privileged user to perform unauthorized activities due to improper client side validation. NVD-CWE-Other
CVE-2024-43188 2024-09-29 09:24 2024-09-18 Show GitHub Exploit DB Packet Storm
313068 9.0 CRITICAL
Network 		acquia mautic Prior to the patched version, there is an XSS vulnerability in the description fields within the Mautic application which could be exploited by a logged in user of Mautic with the appropriate permiss… CWE-79
Cross-site Scripting 		CVE-2021-27915 2024-09-29 09:22 2024-09-17 Show GitHub Exploit DB Packet Storm
313069 7.8 HIGH
Local 		apple xcode This issue was addressed by enabling hardened runtime. This issue is fixed in Xcode 16. A malicious application may gain access to a user's Keychain items. NVD-CWE-noinfo
CVE-2024-44162 2024-09-29 09:16 2024-09-17 Show GitHub Exploit DB Packet Storm
313070 4.8 MEDIUM
Network 		decidim decidim decidim is a Free Open-Source participatory democracy, citizen participation and open government for cities and organizations. The admin panel is subject to potential Cross-site scripting (XSS) attac… CWE-79
Cross-site Scripting 		CVE-2024-32034 2024-09-29 09:14 2024-09-17 Show GitHub Exploit DB Packet Storm