Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2551	5.9	警告 Network	OpenClaw	OpenClaw	OpenClawにおける不十分なランダム値の使用に関する脆弱性	CWE-330 不十分なランダム値の使用	CVE-2026-34511	2026-04-24 11:44	2026-04-3	Show	GitHub Exploit DB Packet Storm

2552	7.1	重要 Network	Chamilo Association	Chamilo LMS	Chamilo AssociationのChamilo LMSにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-34602	2026-04-24 11:44	2026-04-14	Show	GitHub Exploit DB Packet Storm

2553	8.8	重要 Network	Electron	electron	Electronのelectronにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-34770	2026-04-24 11:44	2026-04-4	Show	GitHub Exploit DB Packet Storm

2554	8.8	重要 Network	Electron	electron	Electronのelectronにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-34771	2026-04-24 11:44	2026-04-4	Show	GitHub Exploit DB Packet Storm

2555	8.8	重要 Network	Electron	electron	Electronのelectronにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-34772	2026-04-24 11:44	2026-04-4	Show	GitHub Exploit DB Packet Storm

2556	7.5	重要 Network	Electron	electron	Electronのelectronにおける複数の脆弱性	CWE-20 CWE-74 CWE-74	CVE-2026-34773	2026-04-24 11:44	2026-04-4	Show	GitHub Exploit DB Packet Storm

2557	8.1	重要 Network	Electron	electron	Electronのelectronにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-34774	2026-04-24 11:44	2026-04-4	Show	GitHub Exploit DB Packet Storm

2558	9.8	緊急 Network	Electron	electron	Electronのelectronにおける隔離または分類に関する脆弱性	CWE-653 不適切な隔離または分類	CVE-2026-34775	2026-04-24 11:44	2026-04-4	Show	GitHub Exploit DB Packet Storm

2559	9.8	緊急 Network	Bruno Software Inc.	Bruno	Bruno Software Inc.のBrunoにおける複数の脆弱性	CWE-494 CWE-506	CVE-2026-34841	2026-04-24 11:44	2026-04-6	Show	GitHub Exploit DB Packet Storm

2560	5.3	警告 Network	Discourse	Discourse	Discourseにおける情報漏えいに関する脆弱性	CWE-200 CWE-noinfo	CVE-2026-34947	2026-04-24 11:44	2026-04-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
321	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: vhost: move vdpa group bound check to vhost_vdpa Remove duplication by consolidating these here. This reduces the posibility of … Update	CWE-787 Out-of-bounds Write	CVE-2026-43248	2026-05-11 22:14	2026-05-6	Show	GitHub Exploit DB Packet Storm

322	8.8	HIGH Adjacent	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: 9p/xen: protect xen_9pfs_front_free against concurrent calls The xenwatch thread can race with other back-end change notification… Update	CWE-415 Double Free	CVE-2026-43249	2026-05-11 22:10	2026-05-6	Show	GitHub Exploit DB Packet Storm

323	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ima: verify the previous kernel's IMA buffer lies in addressable RAM Patch series "Address page fault in ima_restore_measurement_… Update	NVD-CWE-noinfo	CVE-2026-43129	2026-05-11 22:08	2026-05-6	Show	GitHub Exploit DB Packet Storm

324	6.1	MEDIUM Network	jupyter	jupyter_server	Jupyter Server is the backend for Jupyter web applications. In jupyter_server versions through 2.17.0, the next query parameter in the login flow is insufficiently validated in `LoginFormHandler._red… Update	CWE-601 Open Redirect	CVE-2025-61669	2026-05-11 22:01	2026-05-6	Show	GitHub Exploit DB Packet Storm

325	8.8	HIGH Network	tenda	cx12l_firmware	A vulnerability was found in Tenda CX12L 16.03.53.12. This issue affects the function formSetPPTPServer of the file /goform/SetPptpServerCfg”. The manipulation results in stack-based buffer overflow.… Update	CWE-119 CWE-121 Incorrect Access of Indexable Resource ('Range Error') Stack-based Buffer Overflow	CVE-2026-8138	2026-05-11 22:00	2026-05-8	Show	GitHub Exploit DB Packet Storm

326	6.8	MEDIUM Network	jupyter	jupyter_server	Jupyter Server is the backend for Jupyter web applications. In versions 2.17.0 and earlier, the secret used to sign authentication cookies is persisted to a static file at ~/.local/share/jupyter/runt… Update	CWE-613 Insufficient Session Expiration	CVE-2026-40934	2026-05-11 22:00	2026-05-6	Show	GitHub Exploit DB Packet Storm

327	7.8	HIGH Local	navercorp	mybox	NAVER MYBOX Explorer for Windows before 3.0.11.160 allows a local attacker to escalate privileges to NT AUTHORITY\SYSTEM via registry manipulation due to improper privilege checks. Update	CWE-266 Incorrect Privilege Assignment	CVE-2026-8148	2026-05-11 21:59	2026-05-8	Show	GitHub Exploit DB Packet Storm

328	7.3	HIGH Network	jupyter	jupyter_server	Jupyter Server is the backend for Jupyter web applications. In versions 2.17.0 and earlier, the Origin header validation uses Python's re.match() to check incoming origins against the allow_origin_pa… Update	CWE-777	CVE-2026-40110	2026-05-11 21:59	2026-05-6	Show	GitHub Exploit DB Packet Storm

329	5.3	MEDIUM Local	prusa3d	prusaslicer	In libslic3r/GCode/PostProcessor.cpp in Prusa PrusaSlicer through 2.6.1, a crafted 3mf project file can execute arbitrary code on a host where the project is sliced and G-code exported. Update	CWE-77 Command Injection	CVE-2023-47268	2026-05-11 21:58	2026-05-8	Show	GitHub Exploit DB Packet Storm

330	8.1	HIGH Network	apache	cloudstack	Missing MinIO policy cleanup on bucket deletion via Apache CloudStack allows users to retain access to buckets which they previously owned. If another user creates a new bucket with the same name, th… Update	CWE-459 Incomplete Cleanup	CVE-2025-66467	2026-05-11 21:57	2026-05-8	Show	GitHub Exploit DB Packet Storm