Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2921 4.8 警告
Network 		mitmproxy mitmproxy mitmproxyにおけるLDAP インジェクションの脆弱性 CWE-90
LDAP インジェクション 		CVE-2026-40606 2026-04-27 10:47 2026-04-21 Show GitHub Exploit DB Packet Storm
2922 7.5 重要
Network 		coturn project coturn coturn projectのcoturnにおける不正な型変換に関する脆弱性 CWE-704
不正な型変換またはキャスト 		CVE-2026-40613 2026-04-27 10:47 2026-04-21 Show GitHub Exploit DB Packet Storm
2923 8.8 重要
Network 		goshs goshs goshsにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-40876 2026-04-27 10:47 2026-04-21 Show GitHub Exploit DB Packet Storm
2924 7.5 重要
Network 		- NestJSにおける再帰制御に関する脆弱性 CWE-674
不適切な再帰制御 		CVE-2026-40879 2026-04-27 10:47 2026-04-21 Show GitHub Exploit DB Packet Storm
2925 7.6 重要
Network 		openremote openremote openremoteにおけるXML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2026-40882 2026-04-27 10:47 2026-04-22 Show GitHub Exploit DB Packet Storm
2926 8.3 重要
Network 		WWBN AVideo WWBNのAVideoにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2026-40925 2026-04-27 10:47 2026-04-21 Show GitHub Exploit DB Packet Storm
2927 8.3 重要
Network 		RustFS RustFS RustFSにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-40937 2026-04-27 10:47 2026-04-22 Show GitHub Exploit DB Packet Storm
2928 7.1 重要
Network 		WWBN AVideo WWBNのAVideoにおける同一生成元ポリシー違反に関する脆弱性 CWE-346
同一生成元ポリシー違反 		CVE-2026-41057 2026-04-27 10:47 2026-04-21 Show GitHub Exploit DB Packet Storm
2929 8.1 重要
Network 		WWBN AVideo WWBNのAVideoにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-41058 2026-04-27 10:47 2026-04-21 Show GitHub Exploit DB Packet Storm
2930 6.5 警告
Network 		WWBN AVideo WWBNのAVideoにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-41060 2026-04-27 10:47 2026-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314921 - - - Out-of-bounds write in appending paragraph in Samsung Notes prior to version 4.4.21.62 allows local attackers to potentially execute arbitrary code with Samsung Notes privilege. - CVE-2024-34622 2024-08-7 11:15 2024-08-7 Show GitHub Exploit DB Packet Storm
314922 - - - Out-of-bounds read in applying binary with data in Samsung Notes prior to version 4.4.21.62 allows local attackers to potentially read memory. - CVE-2024-34621 2024-08-7 11:15 2024-08-7 Show GitHub Exploit DB Packet Storm
314923 - - - Improper privilege management in SumeNNService prior to SMR Aug-2024 Release 1 allows local attackers to start privileged service. - CVE-2024-34620 2024-08-7 11:15 2024-08-7 Show GitHub Exploit DB Packet Storm
314924 - - - Improper input validation in librtp.so prior to SMR Aug-2024 Release 1 allows remote attackers to execute arbitrary code with system privilege. User interaction is required for triggering this vulner… - CVE-2024-34619 2024-08-7 11:15 2024-08-7 Show GitHub Exploit DB Packet Storm
314925 - - - Improper access control in System property prior to SMR Aug-2024 Release 1 allows local attackers to access cell related information. - CVE-2024-34618 2024-08-7 11:15 2024-08-7 Show GitHub Exploit DB Packet Storm
314926 - - - Improper handling of insufficient permission in Telephony prior to SMR Aug-2024 Release 1 allows local attackers to configure default Message application. - CVE-2024-34617 2024-08-7 11:15 2024-08-7 Show GitHub Exploit DB Packet Storm
314927 - - - Improper handling of insufficient permission in KnoxDualDARPolicy prior to SMR Aug-2024 Release 1 allows local attackers to access sensitive data. - CVE-2024-34616 2024-08-7 11:15 2024-08-7 Show GitHub Exploit DB Packet Storm
314928 - - - Out-of-bound write in libsmat.so prior to SMR Aug-2024 Release 1 allows local attackers to cause memory corruption. - CVE-2024-34615 2024-08-7 11:15 2024-08-7 Show GitHub Exploit DB Packet Storm
314929 - - - Out-of-bound write in libsmat.so prior to SMR Aug-2024 Release 1 allows local attackers to execute arbitrary code. - CVE-2024-34614 2024-08-7 11:15 2024-08-7 Show GitHub Exploit DB Packet Storm
314930 - - - Improper access control in Galaxy Watch prior to SMR Aug-2024 Release 1 allows local attackers to access sensitive information of Galaxy watch. - CVE-2024-34613 2024-08-7 11:15 2024-08-7 Show GitHub Exploit DB Packet Storm