Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 28, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 2591 | 6.1 |
警告
Network |
Apache Software Foundation | Apache Wicket | Apache Software FoundationのApache Wicketにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2026-42509 | 2026-05-8 12:22 | 2026-05-6 | Show | GitHub Exploit DB Packet Storm |
| 2592 | 4.3 |
警告
Network |
Jenkins プロジェクト | Script Security | JenkinsのScript Securityにおける認証の欠如に関する脆弱性 |
CWE-862
認証の欠如 |
CVE-2026-42519 | 2026-05-8 12:22 | 2026-04-29 | Show | GitHub Exploit DB Packet Storm |
| 2593 | 7.5 |
重要
Network |
Jenkins プロジェクト | Credentials Binding | JenkinsのCredentials Bindingにおけるパストラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2026-42520 | 2026-05-8 12:22 | 2026-04-29 | Show | GitHub Exploit DB Packet Storm |
| 2594 | 6.5 |
警告
Network |
Jenkins プロジェクト | Matrix Authorization Strategy | JenkinsのMatrix Authorization Strategyにおける信頼できないデータのデシリアライゼーションに関する脆弱性 |
CWE-502
信頼性のないデータのデシリアライゼーション |
CVE-2026-42521 | 2026-05-8 12:22 | 2026-04-29 | Show | GitHub Exploit DB Packet Storm |
| 2595 | 4.3 |
警告
Network |
Jenkins プロジェクト | GitHub Branch Source | JenkinsのGitHub Branch Sourceにおける認証の欠如に関する脆弱性 |
CWE-862
認証の欠如 |
CVE-2026-42522 | 2026-05-8 12:22 | 2026-04-29 | Show | GitHub Exploit DB Packet Storm |
| 2596 | 7.5 |
重要
Network |
Linux | Linux Kernel | LinuxのLinux Kernelにおける不特定の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2026-43057 | 2026-05-8 12:22 | 2026-05-1 | Show | GitHub Exploit DB Packet Storm |
| 2597 | 9.3 |
緊急
Network |
OpenClaw | OpenClaw | OpenClawにおけるサーバサイドのリクエストフォージェリの脆弱性 |
CWE-918
サーバサイドリクエストフォージェリ |
CVE-2026-43526 | 2026-05-8 12:22 | 2026-05-5 | Show | GitHub Exploit DB Packet Storm |
| 2598 | 7.7 |
重要
Network |
OpenClaw | OpenClaw | OpenClawにおける複数の脆弱性 |
CWE-1188 CWE-918 |
CVE-2026-43527 | 2026-05-8 12:21 | 2026-05-5 | Show | GitHub Exploit DB Packet Storm |
| 2599 | 6.5 |
警告
Network |
OpenClaw | OpenClaw | OpenClawにおける保存または転送前の重要な情報の削除に関する脆弱性 |
CWE-212
保存または転送前の重要な情報の不適切な削除 |
CVE-2026-43528 | 2026-05-8 12:21 | 2026-05-5 | Show | GitHub Exploit DB Packet Storm |
| 2600 | 2.5 |
低
Local |
OpenClaw | OpenClaw | OpenClawにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 |
CWE-367
Time-of-check Time-of-use (TOCTOU) 競合状態 |
CVE-2026-43529 | 2026-05-8 12:21 | 2026-05-5 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 28, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 312711 | 8.8 |
HIGH
Network |
microsoft |
windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2022_23h2 windows_server_2022 windows_server_2019 |
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2024-43549 | 2024-10-18 04:51 | 2024-10-9 | Show | GitHub Exploit DB Packet Storm |
| 312712 | 7.5 |
HIGH
Network |
znuny | znuny | Znuny before LTS 6.5.1 through 6.5.10 and 7.0.1 through 7.0.16 allows DoS/ReDos via email. Parsing the content of emails where HTML code is copied from Microsoft Word could lead to high CPU usage and… |
CWE-1333
Inefficient Regular Expression Complexity |
CVE-2024-48938 | 2024-10-18 04:49 | 2024-10-12 | Show | GitHub Exploit DB Packet Storm |
| 312713 | 7.4 |
HIGH
Network |
microsoft |
windows_server_2012 windows_10_1507 windows_server_2016 windows_server_2022_23h2 windows_10_1809 windows_server_2022 windows_10_1607 windows_server_2019 windows_11_21h2 win… |
Windows Secure Channel Spoofing Vulnerability |
NVD-CWE-noinfo
|
CVE-2024-43550 | 2024-10-18 04:49 | 2024-10-9 | Show | GitHub Exploit DB Packet Storm |
| 312714 | 6.1 |
MEDIUM
Network |
znuny | znuny | Znuny before LTS 6.5.1 through 6.5.10 and 7.0.1 through 7.0.16 allows XSS. JavaScript code in the short description of the SLA field in Activity Dialogues is executed. |
CWE-79
Cross-site Scripting |
CVE-2024-48937 | 2024-10-18 04:48 | 2024-10-12 | Show | GitHub Exploit DB Packet Storm |
| 312715 | 7.8 |
HIGH
Local |
microsoft |
windows_server_2016 windows_server_2022_23h2 windows_10_1809 windows_server_2022 windows_10_1607 windows_server_2019 windows_11_21h2 windows_10_21h2 windows_11_22h2 windows… |
Windows Storage Elevation of Privilege Vulnerability |
NVD-CWE-noinfo
|
CVE-2024-43551 | 2024-10-18 04:48 | 2024-10-9 | Show | GitHub Exploit DB Packet Storm |
| 312716 | 7.0 |
HIGH
Local |
microsoft |
windows_server_2008 windows_server_2012 windows_10_1507 windows_server_2016 windows_server_2022_23h2 windows_10_1809 windows_server_2022 windows_10_1607 windows_server_2019
NT OS Kernel Elevation of Privilege Vulnerability
|
NVD-CWE-noinfo
|
CVE-2024-43553
|
2024-10-18 04:47 |
2024-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 312717 | 7.3 |
HIGH
Local |
microsoft |
windows_server_2022_23h2 windows_11_22h2 windows_11_23h2 windows_11_24h2 |
Windows Shell Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2024-43552 | 2024-10-18 04:47 | 2024-10-9 | Show | GitHub Exploit DB Packet Storm |
| 312718 | 5.5 |
MEDIUM
Local |
microsoft |
windows_10_1507 windows_server_2016 windows_server_2022_23h2 windows_10_1809 windows_server_2022 windows_10_1607 windows_server_2019 windows_11_21h2 windows_10_21h2 windows… |
Windows Kernel-Mode Driver Information Disclosure Vulnerability |
NVD-CWE-noinfo
|
CVE-2024-43554 | 2024-10-18 04:42 | 2024-10-9 | Show | GitHub Exploit DB Packet Storm |
| 312719 | 7.8 |
HIGH
Local |
lenovo | app_store | A DLL hijack vulnerability was reported in Lenovo App Store that could allow a local attacker to execute code with elevated privileges. |
CWE-427
Uncontrolled Search Path Element |
CVE-2024-4130 | 2024-10-18 04:41 | 2024-10-12 | Show | GitHub Exploit DB Packet Storm |
| 312720 | 7.8 |
HIGH
Local |
lenovo | superfile | A DLL hijack vulnerability was reported in Lenovo Super File that could allow a local attacker to execute code with elevated privileges. |
CWE-427
Uncontrolled Search Path Element |
CVE-2024-4089 | 2024-10-18 04:41 | 2024-10-12 | Show | GitHub Exploit DB Packet Storm |