Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
271	4.3	警告 Network	SAP	SAP HANA Database Explorer SAP HANA Cockpit	SAPのSAP HANA Cockpit等の複数製品における認証情報の不十分な保護に関する脆弱性 New	CWE-522 認証情報の不十分な保護	CVE-2026-34262	2026-05-7 11:30	2026-04-14	Show	GitHub Exploit DB Packet Storm

272	5.3	警告 Network	Anviz Global	Anviz CX7 Firmware	Anviz GlobalのAnviz CX7 Firmwareにおける認証の欠如に関する脆弱性 New	CWE-862 認証の欠如	CVE-2026-35061	2026-05-7 11:30	2026-04-17	Show	GitHub Exploit DB Packet Storm

273	9.8	緊急 Network	Anviz Global	Anviz CX7 Firmware Anviz CX2 Lite Firmware	Anviz GlobalのAnviz CX2 Lite Firmware等の複数製品における重要な機能に対する認証の欠如に関する脆弱性 New	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-35546	2026-05-7 11:30	2026-04-17	Show	GitHub Exploit DB Packet Storm

274	8.8	重要 Network	Anviz Global	Anviz CX2 Lite Firmware	Anviz GlobalのAnviz CX2 Lite Firmwareにおけるコマンドインジェクションの脆弱性 New	CWE-77 コマンドインジェクション	CVE-2026-35682	2026-05-7 11:29	2026-04-17	Show	GitHub Exploit DB Packet Storm

275	7.5	重要 Network	Belkin International	N300 firmware	U-SpeedのN300 Firmwareにおけるリソースの枯渇に関する脆弱性 New	CWE-400 リソースの枯渇	CVE-2026-36958	2026-05-7 11:29	2026-04-30	Show	GitHub Exploit DB Packet Storm

276	7.5	重要 Network	Belkin International	N300 firmware	U-SpeedのN300 Firmwareにおける過度な認証試行の不適切な制限に関する脆弱性 New	CWE-307 過度な認証試行の不適切な制限	CVE-2026-36959	2026-05-7 11:29	2026-04-30	Show	GitHub Exploit DB Packet Storm

277	8.8	重要 Network	Anviz Global	Anviz CX7 Firmware Anviz CX2 Lite Firmware	Anviz GlobalのAnviz CX2 Lite Firmware等の複数製品におけるダウンロードしたコードの完全性検証不備に関する脆弱性 New	CWE-494 ダウンロードしたコードの完全性検証不備	CVE-2026-40066	2026-05-7 11:29	2026-04-17	Show	GitHub Exploit DB Packet Storm

278	8.1	重要 Adjacent	Anviz Global	Crosschex Standard	Anviz GlobalのCrosschex Standardにおける通信チャネルの送信元の不適切な検証に関する脆弱性 New	CWE-940 通信チャネルの送信元の不適切な検証	CVE-2026-40434	2026-05-7 11:29	2026-04-17	Show	GitHub Exploit DB Packet Storm

279	7.5	重要 Network	Anviz Global	Anviz CX7 Firmware Anviz CX2 Lite Firmware	Anviz GlobalのAnviz CX2 Lite Firmware等の複数製品における重要な機能に対する認証の欠如に関する脆弱性 New	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-40461	2026-05-7 11:29	2026-04-17	Show	GitHub Exploit DB Packet Storm

280	5.3	警告 Network	asrmicro	ASR1901 Firmware ASR1903 Firmware	asrmicroのASR1901 Firmware等の複数製品におけるNULL ポインタデリファレンスに関する脆弱性 New	CWE-476 NULL ポインタデリファレンス	CVE-2026-42800	2026-05-7 11:29	2026-04-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312761	-		-	-	An issue in Silverpeas v.6.4.2 and lower allows a remote attacker to cause a denial of service via the password change function.	-	CVE-2024-42849	2024-08-19 22:00	2024-08-17	Show	GitHub Exploit DB Packet Storm

312762	-		-	-	H3C R3010 v100R002L02 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root.	-	CVE-2024-42637	2024-08-19 22:00	2024-08-17	Show	GitHub Exploit DB Packet Storm

312763	-		-	-	VTiger CRM <= 8.1.0 does not correctly check user privileges. A low-privileged user can interact directly with the "Migration" administrative module to disable arbitrary modules.	-	CVE-2024-42995	2024-08-19 22:00	2024-08-17	Show	GitHub Exploit DB Packet Storm

312764	-		-	-	VTiger CRM <= 8.1.0 does not properly sanitize user input before using it in a SQL statement, leading to a SQL Injection in the "CompanyDetails" operation of the "MailManager" module.	-	CVE-2024-42994	2024-08-19 22:00	2024-08-17	Show	GitHub Exploit DB Packet Storm

312765	-		-	-	A Command Injection vulnerability exists in formWriteFacMac of the httpd binary in Tenda AC9 v15.03.06.42. As a result, attacker can execute OS commands with root privileges.	-	CVE-2024-42634	2024-08-19 22:00	2024-08-17	Show	GitHub Exploit DB Packet Storm

312766	-		-	-	When performing an online tag generation to devices which communicate using the ControlLogix protocol, a machine-in-the-middle, or a device that is not configured correctly, could deliver a respons…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2024-6098	2024-08-19 22:00	2024-08-17	Show	GitHub Exploit DB Packet Storm

312767	6.5	MEDIUM Adjacent	-	-	A denial-of-service vulnerability was reported in some Lenovo printers that could allow an unauthenticated attacker on a shared network to deny printer connections until the system is rebooted.	-	CVE-2024-6004	2024-08-19 22:00	2024-08-17	Show	GitHub Exploit DB Packet Storm

312768	6.5	MEDIUM Adjacent	-	-	A denial-of-service vulnerability was reported in some Lenovo printers that could allow an unauthenticated attacker on a shared network to prevent printer services from being reachable until the syst…	-	CVE-2024-5210	2024-08-19 22:00	2024-08-17	Show	GitHub Exploit DB Packet Storm

312769	6.5	MEDIUM Adjacent	-	-	A denial-of-service vulnerability was reported in some Lenovo printers that could allow an unauthenticated attacker on a shared network to deny printing capabilities until the system is rebooted.	-	CVE-2024-5209	2024-08-19 22:00	2024-08-17	Show	GitHub Exploit DB Packet Storm

312770	6.5	MEDIUM Adjacent	-	-	A denial-of-service vulnerability was reported in some Lenovo printers that could allow an unauthenticated attacker on a shared network to disrupt the printer's functionality until a manual system re…	-	CVE-2024-4782	2024-08-19 22:00	2024-08-17	Show	GitHub Exploit DB Packet Storm