Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251351 6.9 警告 レッドハット - Linux-HA の SAPDatabase および SAPInstance スクリプトにおける権限を取得される脆弱性 CWE-DesignError
CVE-2010-3389 2011-08-17 13:29 2010-10-20 Show GitHub Exploit DB Packet Storm
251352 6.5 警告 エイムラック - Aipo における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-1342 2011-08-16 12:02 2011-08-16 Show GitHub Exploit DB Packet Storm
251353 2.6 注意 エイムラック - Aipo におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2011-1341 2011-08-16 12:01 2011-08-16 Show GitHub Exploit DB Packet Storm
251354 5 警告 Opera Software ASA - Opera におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2641 2011-08-16 11:34 2011-05-18 Show GitHub Exploit DB Packet Storm
251355 5 警告 Opera Software ASA - Opera におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2640 2011-08-16 11:33 2011-04-12 Show GitHub Exploit DB Packet Storm
251356 5 警告 Opera Software ASA - Opera におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2639 2011-08-16 11:33 2011-04-12 Show GitHub Exploit DB Packet Storm
251357 5 警告 Opera Software ASA - Opera におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-noinfo
情報不足 		CVE-2011-2638 2011-08-16 11:32 2011-04-12 Show GitHub Exploit DB Packet Storm
251358 5 警告 Opera Software ASA - Opera におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-noinfo
情報不足 		CVE-2011-2637 2011-08-16 11:31 2011-04-12 Show GitHub Exploit DB Packet Storm
251359 5 警告 Opera Software ASA - Opera におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-noinfo
情報不足 		CVE-2011-2636 2011-08-16 11:30 2011-04-12 Show GitHub Exploit DB Packet Storm
251360 5 警告 Opera Software ASA - Opera の Cascading Style Sheets 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2635 2011-08-16 11:30 2011-04-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2461 7.8 HIGH
Local 		- - A flaw was found in the X.Org X server. This integer underflow vulnerability, specifically in the XKB compatibility map handling, allows an attacker with local or remote X11 server access to trigger … CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2026-33999 2026-04-29 23:16 2026-04-24 Show GitHub Exploit DB Packet Storm
2462 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix use-after-free in ocfs2_fault() when VM_FAULT_RETRY filemap_fault() may drop the mmap_lock before returning VM_FAULT_R… CWE-416
 Use After Free 		CVE-2026-31597 2026-04-29 23:15 2026-04-25 Show GitHub Exploit DB Packet Storm
2463 5.3 MEDIUM
Adjacent 		opentelemetry opentelemetry OpenTelemetry dotnet is a dotnet telemetry framework. From 1.13.1 to before 1.15.2, When exporting telemetry over gRPC using the OpenTelemetry Protocol (OTLP), the exporter may parse a server-provide… CWE-789
 Memory Allocation with Excessive Size Value 		CVE-2026-40891 2026-04-29 23:15 2026-04-24 Show GitHub Exploit DB Packet Storm
2464 5.4 MEDIUM
Network 		openclaw openclaw OpenClaw before 2026.3.31 fails to terminate active WebSocket sessions when rotating device tokens. Attackers with previously compromised credentials can maintain unauthorized access through existing… CWE-613
 Insufficient Session Expiration 		CVE-2026-41356 2026-04-29 23:08 2026-04-24 Show GitHub Exploit DB Packet Storm
2465 7.1 HIGH
Network 		openclaw openclaw OpenClaw before 2026.3.28 contains an SSRF guard bypass vulnerability that fails to block four IPv6 special-use ranges. Attackers can exploit this by crafting URLs targeting internal or non-routable … CWE-184
CWE-918
 Incomplete Blacklist
Server-Side Request Forgery (SSRF)  		CVE-2026-41361 2026-04-29 23:08 2026-04-24 Show GitHub Exploit DB Packet Storm
2466 3.3 LOW
Local 		openclaw openclaw OpenClaw before 2026.3.31 contains an environment variable leakage vulnerability in SSH-based sandbox backends that pass unsanitized process.env to child processes. Attackers can exploit this by leve… CWE-214
 Invocation of Process Using Visible Sensitive Information 		CVE-2026-41357 2026-04-29 22:57 2026-04-24 Show GitHub Exploit DB Packet Storm
2467 5.9 MEDIUM
Network 		opentelemetry opentelemetry OpenTelemetry dotnet is a dotnet telemetry framework. From 1.13.1 to before 1.15.2, When exporting telemetry to a back-end/collector over gRPC or HTTP using OpenTelemetry Protocol format (OTLP), if t… CWE-789
 Memory Allocation with Excessive Size Value 		CVE-2026-40182 2026-04-29 22:52 2026-04-24 Show GitHub Exploit DB Packet Storm
2468 8.8 HIGH
Network 		openclaw openclaw OpenClaw before 2026.3.28 contains a privilege escalation vulnerability allowing authenticated operators with write permissions to access admin-class Telegram configuration and cron persistence setti… CWE-269
 Improper Privilege Management 		CVE-2026-41359 2026-04-29 22:44 2026-04-24 Show GitHub Exploit DB Packet Storm
2469 6.5 MEDIUM
Network 		- - When generating an ICMP Destination Unreachable or Packet Too Big response, the handler copies a portion of the original packet into the ICMP error body using the IP header's self-declared total leng… CWE-130
 Improper Handling of Length Parameter Inconsistency 		CVE-2026-5265 2026-04-29 22:16 2026-04-24 Show GitHub Exploit DB Packet Storm
2470 9.8 CRITICAL
Network 		apache pony_mail ** UNSUPPORTED WHEN ASSIGNED ** Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') vulnerability in Pony Mail leading to admin account takeover. This issue affects all … CWE-444
HTTP Request Smuggling 		CVE-2026-41873 2026-04-29 22:16 2026-04-29 Show GitHub Exploit DB Packet Storm