Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2571	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-31437	2026-05-21 10:53	2026-04-22	Show	GitHub Exploit DB Packet Storm

2572	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-31438	2026-05-21 10:53	2026-04-22	Show	GitHub Exploit DB Packet Storm

2573	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-31439	2026-05-21 10:53	2026-04-22	Show	GitHub Exploit DB Packet Storm

2574	6.1	警告 Network	Apache Software Foundation	Apache OFBiz	Apache Software FoundationのApache OFBizにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-31906	2026-05-21 10:53	2026-05-19	Show	GitHub Exploit DB Packet Storm

2575	7.5	重要 Network	Apache Software Foundation	Apache OFBiz	Apache Software FoundationのApache OFBizにおける情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2026-31909	2026-05-21 10:53	2026-05-19	Show	GitHub Exploit DB Packet Storm

2576	7.5	重要 Network	Apache Software Foundation	Apache OFBiz	Apache Software FoundationのApache OFBizにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-31910	2026-05-21 10:53	2026-05-19	Show	GitHub Exploit DB Packet Storm

2577	9.1	緊急 Network	Apache Software Foundation	Apache OFBiz	Apache Software FoundationのApache OFBizにおけるハードコードされた暗号鍵の使用に関する脆弱性	CWE-321 ハードコードされた暗号鍵の使用	CVE-2026-31986	2026-05-21 10:53	2026-05-19	Show	GitHub Exploit DB Packet Storm

2578	4.8	警告 Network	Mattermost, Inc.	Mattermost Server	Mattermost, Inc.のMattermost Serverにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-3495	2026-05-21 10:53	2026-05-18	Show	GitHub Exploit DB Packet Storm

2579	6.5	警告 Network	Apache Software Foundation	Apache OFBiz	Apache Software FoundationのApache OFBizにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-35086	2026-05-21 10:52	2026-05-19	Show	GitHub Exploit DB Packet Storm

2580	8.8	重要 Local	マイクロソフト	Microsoft 365 Apps Microsoft Office Office Long Term Servicing Channel (LTSC)	Microsoft Office クイック実行の特権の昇格の脆弱性	CWE-1220 アクセス制御の不十分な粒度	CVE-2026-35436	2026-05-21 10:52	2026-05-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
318911	-		-	-	Mattermost versions 9.5.x <= 9.5.8 fail to properly authorize access to archived channels when viewing archived channels is disabled, which allows an attacker to view posts and files of archived chan…	-	CVE-2024-47145	2024-09-26 17:15	2024-09-26	Show	GitHub Exploit DB Packet Storm

318912	-		-	-	Mattermost versions 9.11.x <= 9.11.0 and 9.5.x <= 9.5.8 fail to validate that the message of the permalink post is a string, which allows an attacker to send a non-string value as the message of a pe…	-	CVE-2024-47003	2024-09-26 17:15	2024-09-26	Show	GitHub Exploit DB Packet Storm

318913	-		-	-	Mattermost versions 9.5.x <= 9.5.8 fail to include the metadata endpoints of Oracle Cloud and Alibaba in the SSRF denylist, which allows an attacker to possibly cause an SSRF if Mattermost was deploy…	-	CVE-2024-45843	2024-09-26 17:15	2024-09-26	Show	GitHub Exploit DB Packet Storm

318914	-		-	-	User interface (UI) misrepresentation of critical information issue exists in multiple Home GateWay/Hikari Denwa routers provided by NIPPON TELEGRAPH AND TELEPHONE EAST CORPORATION. If this vulnerabi…	-	CVE-2024-47045	2024-09-26 13:15	2024-09-26	Show	GitHub Exploit DB Packet Storm

318915	-		-	-	Incorrect Privilege Assignment vulnerability in favethemes Houzez allows Privilege Escalation.This issue affects Houzez: from n/a through 3.2.4.	CWE-266 Incorrect Privilege Assignment	CVE-2024-22303	2024-09-26 12:15	2024-09-17	Show	GitHub Exploit DB Packet Storm

318916	9.8	CRITICAL Network	microsoft	windows_10_1507	Microsoft is aware of a vulnerability in Servicing Stack that has rolled back the fixes for some vulnerabilities affecting Optional Components on Windows 10, version 1507 (initial version released Ju…	NVD-CWE-noinfo	CVE-2024-43491	2024-09-26 10:00	2024-09-11	Show	GitHub Exploit DB Packet Storm

318917	-		-	-	Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: It is a duplicate of CVE-2010-2799.	-	CVE-2010-10005	2024-09-26 08:15	2023-01-16	Show	GitHub Exploit DB Packet Storm

318918	-		-	-	PingCAP TiDB v8.1.0 was discovered to contain a buffer overflow via the component expression.ExplainExpressionList. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafte…	-	CVE-2024-41433	2024-09-26 06:15	2024-09-4	Show	GitHub Exploit DB Packet Storm

318919	-		-	-	PingCAP TiDB v8.1.0 was discovered to contain a buffer overflow via the component (*Column).GetDecimal. This allows attackers to cause a Denial of Service (DoS) via a crafted input to the 'RemoveUnne…	-	CVE-2024-41434	2024-09-26 06:15	2024-09-4	Show	GitHub Exploit DB Packet Storm

318920	6.5	MEDIUM Network	fortinet	fortianalyzer fortimanager fortianalyzer-bigdata	An authorization bypass through user-controlled key [CWE-639] vulnerability in FortiAnalyzer version 7.4.1 and before 7.2.5 and FortiManager version 7.4.1 and before 7.2.5 may allow a remote attacker…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2023-44254	2024-09-26 05:17	2024-09-11	Show	GitHub Exploit DB Packet Storm