Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 12:09 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2811 8.1 重要
Network 		Project Contour Contour Project ContourのContourにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-41246 2026-04-30 11:01 2026-04-23 Show GitHub Exploit DB Packet Storm
2812 9.8 緊急
Network 		std42 elfinder std42のelfinderにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-41247 2026-04-30 11:01 2026-04-23 Show GitHub Exploit DB Packet Storm
2813 7.5 重要
Network 		joinmastodon Mastodon joinmastodonのMastodonにおける行動ワークフローに関する脆弱性 CWE-841
行動ワークフローの不適切な実施 		CVE-2026-41259 2026-04-30 11:01 2026-04-23 Show GitHub Exploit DB Packet Storm
2814 9.1 緊急
Network 		dgraph dgraph dgraphにおけるデータクエリロジックの特殊要素の不適切な中立化に関する脆弱性 CWE-943
データクエリロジックの特殊要素の不適切な中立化 		CVE-2026-41327 2026-04-30 11:01 2026-04-24 Show GitHub Exploit DB Packet Storm
2815 9.1 緊急
Network 		dgraph dgraph dgraphにおけるデータクエリロジックの特殊要素の不適切な中立化に関する脆弱性 CWE-943
データクエリロジックの特殊要素の不適切な中立化 		CVE-2026-41328 2026-04-30 11:01 2026-04-24 Show GitHub Exploit DB Packet Storm
2816 3.7
Network 		OpenClaw OpenClaw OpenClawにおけるインタラクション頻度の制御に関する脆弱性  CWE-799
インタラクション頻度の不適切な制御 		CVE-2026-41333 2026-04-30 11:01 2026-04-23 Show GitHub Exploit DB Packet Storm
2817 6.5 警告
Network 		OpenClaw OpenClaw OpenClawにおける安全でない失敗処理に関する脆弱性 CWE-636
安全でない失敗処理 		CVE-2026-41334 2026-04-30 11:01 2026-04-23 Show GitHub Exploit DB Packet Storm
2818 5.3 警告
Network 		OpenClaw OpenClaw OpenClawにおける認可されていない制御領域への重要情報の漏えいに関する脆弱性 CWE-497
認可されていない制御領域への重要情報の漏えい 		CVE-2026-41335 2026-04-30 11:01 2026-04-23 Show GitHub Exploit DB Packet Storm
2819 7.8 重要
Local 		OpenClaw OpenClaw OpenClawにおける信頼できない制御領域からの機能の組み込みに関する脆弱性 CWE-829
信頼性のない制御領域からの機能の組み込み 		CVE-2026-41336 2026-04-30 11:01 2026-04-23 Show GitHub Exploit DB Packet Storm
2820 5.3 警告
Network 		OpenClaw OpenClaw OpenClawにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 CWE-367
Time-of-check Time-of-use (TOCTOU) 競合状態 		CVE-2026-41337 2026-04-30 11:01 2026-04-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314301 5.5 MEDIUM
Local 		samsung android Improper Handling of Insufficient Permissions in KnoxMiscPolicy prior to SMR Sep-2024 Release 1 allows local attackers to access sensitive data. CWE-276
Incorrect Default Permissions  		CVE-2024-34648 2024-09-6 03:04 2024-09-4 Show GitHub Exploit DB Packet Storm
314302 3.3 LOW
Local 		samsung android Improper access control vulnerability in BGProtectManager prior to SMR Sep-2024 Release 1 allows local attackers to bypass restriction of process expiration. NVD-CWE-Other
CVE-2024-34640 2024-09-6 03:04 2024-09-4 Show GitHub Exploit DB Packet Storm
314303 4.6 MEDIUM
Physics 		samsung android Improper handling of exceptional conditions in Setupwizard prior to SMR Aug-2024 Release 1 allows physical attackers to bypass proper validation. CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2024-34639 2024-09-6 03:04 2024-09-4 Show GitHub Exploit DB Packet Storm
314304 5.5 MEDIUM
Local 		samsung android Improper access control in item selection related in Dressroom prior to SMR Sep-2024 Release 1 allows local attackers to access protected data. User interaction is required for triggering this vulner… NVD-CWE-Other
CVE-2024-34644 2024-09-6 03:03 2024-09-4 Show GitHub Exploit DB Packet Storm
314305 5.5 MEDIUM
Local 		samsung android Improper access control in key input related function in Dressroom prior to SMR Sep-2024 Release 1 allows local attackers to access protected data. User interaction is required for triggering this vu… NVD-CWE-Other
CVE-2024-34643 2024-09-6 03:03 2024-09-4 Show GitHub Exploit DB Packet Storm
314306 4.6 MEDIUM
Physics 		samsung android Improper authorization in One UI Home prior to SMR Sep-2024 Release 1 allows physical attackers to temporarily access sensitive information. CWE-863
 Incorrect Authorization 		CVE-2024-34642 2024-09-6 03:03 2024-09-4 Show GitHub Exploit DB Packet Storm
314307 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: md/raid5: avoid BUG_ON() while continue reshape after reassembling Currently, mdadm support --revert-reshape to abort the reshape… NVD-CWE-noinfo
CVE-2024-43914 2024-09-6 03:03 2024-08-26 Show GitHub Exploit DB Packet Storm
314308 4.6 MEDIUM
Physics 		samsung android Improper input validation in ThemeCenter prior to SMR Sep-2024 Release 1 allows physical attackers to install privileged applications. NVD-CWE-noinfo
CVE-2024-34645 2024-09-6 03:02 2024-09-4 Show GitHub Exploit DB Packet Storm
314309 5.5 MEDIUM
Local 		samsung android Improper access control in DualDarManagerProxy prior to SMR Sep-2024 Release 1 allows local attackers to cause local permanent denial of service. NVD-CWE-Other
CVE-2024-34646 2024-09-6 03:01 2024-09-4 Show GitHub Exploit DB Packet Storm
314310 5.5 MEDIUM
Local 		samsung android Incorrect use of privileged API in UniversalCredentialManager prior to SMR Sep-2024 Release 1 allows local attackers to access privileged API related to UniversalCredentialManager. NVD-CWE-noinfo
CVE-2024-34655 2024-09-6 03:00 2024-09-4 Show GitHub Exploit DB Packet Storm