Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2931 8.1 重要
Network 		フォーティネット FortiSOAR フォーティネットのFortiSOARにおける複数の脆弱性 CWE-287
CWE-862
CVE-2026-23708 2026-05-8 12:08 2026-04-14 Show GitHub Exploit DB Packet Storm
2932 8.8 重要
Network 		redis Redis Redis Ltd.のRedisにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-25243 2026-05-8 12:08 2026-05-5 Show GitHub Exploit DB Packet Storm
2933 7.8 重要
Local 		クアルコム X2000094 ファームウェア
XG101002 ファームウェア
Snapdragon AR1 Gen 1 ファームウェア
WSA8835 ファームウェア
XG101032 ファームウェア
WSA8830 ファームウェア
fastconnect 7800&nb… 		クアルコムのCologne ファームウェア等の複数製品における複数の脆弱性 CWE-749
CWE-787
CVE-2026-25266 2026-05-8 12:08 2026-05-4 Show GitHub Exploit DB Packet Storm
2934 9.8 緊急
Network 		クアルコム QCA7005 ファームウェア クアルコムのQCA7005 ファームウェアにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-25293 2026-05-8 12:08 2026-05-4 Show GitHub Exploit DB Packet Storm
2935 10 緊急
Network 		vm2 project vm2 vm2 projectのvm2における複数の脆弱性 CWE-693
CWE-94
CVE-2026-26332 2026-05-8 12:08 2026-05-4 Show GitHub Exploit DB Packet Storm
2936 9.8 緊急
Network 		OpenClaw OpenClaw OpenClawにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-28474 2026-05-8 12:08 2026-03-5 Show GitHub Exploit DB Packet Storm
2937 9.8 緊急
Network 		Apache Software Foundation Apache HTTP Server Apache Software FoundationのApache HTTP Serverにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-28780 2026-05-8 12:08 2026-05-5 Show GitHub Exploit DB Packet Storm
2938 7.3 重要
Network 		Apache Software Foundation Apache HTTP Server Apache Software FoundationのApache HTTP Serverにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-29168 2026-05-8 12:08 2026-05-5 Show GitHub Exploit DB Packet Storm
2939 4.3 警告
Network 		Mozilla Foundation Mozilla Firefox Focus Mozilla FoundationのMozilla Firefox Focusにおけるユーザインターフェースにおける重要情報の誤った表示に関する脆弱性 CWE-451
ユーザインターフェースにおける重要情報の誤った表示 		CVE-2026-2919 2026-05-8 12:08 2026-03-9 Show GitHub Exploit DB Packet Storm
2940 7.5 重要
Network 		OWASP ModSecurity OWASPのModSecurityにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-30923 2026-05-8 12:08 2026-05-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
318171 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: mm: list_lru: fix UAF for memory cgroup The mem_cgroup_from_slab_obj() is supposed to be called under rcu lock or cgroup_mutex or… CWE-416
 Use After Free 		CVE-2024-43888 2024-08-27 23:37 2024-08-26 Show GitHub Exploit DB Packet Storm
318172 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add null check in resource_log_pipe_topology_update [WHY] When switching from "Extend" to "Second Display Only" … CWE-476
 NULL Pointer Dereference 		CVE-2024-43886 2024-08-27 23:37 2024-08-26 Show GitHub Exploit DB Packet Storm
318173 8.8 HIGH
Network 		zohocorp manageengine_adaudit_plus Zohocorp ManageEngine ADAudit Plus versions below 8121 are vulnerable to the authenticated SQL injection in extranet lockouts report option. CWE-89
SQL Injection 		CVE-2024-5586 2024-08-27 23:37 2024-08-23 Show GitHub Exploit DB Packet Storm
318174 8.8 HIGH
Network 		zohocorp manageengine_adaudit_plus Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL injection in reports module. CWE-89
SQL Injection 		CVE-2024-5556 2024-08-27 23:36 2024-08-23 Show GitHub Exploit DB Packet Storm
318175 8.8 HIGH
Network 		zohocorp manageengine_adaudit_plus Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL injection in aggregate reports option. CWE-89
SQL Injection 		CVE-2024-5490 2024-08-27 23:36 2024-08-23 Show GitHub Exploit DB Packet Storm
318176 - - - A cross-site scripting (XSS) vulnerability in the Create Product function of fastapi-admin pro v0.1.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the… - CVE-2024-42816 2024-08-27 23:35 2024-08-27 Show GitHub Exploit DB Packet Storm
318177 6.1 MEDIUM
Network 		zohocorp manageengine_servicedesk_plus_msp
manageengine_servicedesk_plus
manageengine_supportcenter_plus 		An Stored Cross-site Scripting vulnerability in request module affects Zohocorp ManageEngine ServiceDesk Plus, ServiceDesk Plus MSP and SupportCenter Plus.This issue affects ServiceDesk Plus versions… CWE-79
Cross-site Scripting 		CVE-2024-41150 2024-08-27 23:35 2024-08-24 Show GitHub Exploit DB Packet Storm
318178 8.8 HIGH
Network 		zohocorp manageengine_adaudit_plus Zohocorp ManageEngine ADAudit Plus versions below 8121 are vulnerable to the authenticated SQL injection in account lockout report. CWE-89
SQL Injection 		CVE-2024-5467 2024-08-27 23:35 2024-08-23 Show GitHub Exploit DB Packet Storm
318179 6.1 MEDIUM
Network 		blood_bank_system_project blood_bank_system A vulnerability has been found in code-projects Blood Bank System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /login.php of the component… CWE-79
Cross-site Scripting 		CVE-2024-8174 2024-08-27 23:32 2024-08-27 Show GitHub Exploit DB Packet Storm
318180 9.8 CRITICAL
Network 		tenda ax1806_firmware Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.stb.mode parameter in the function setIptvInfo. CWE-787
 Out-of-bounds Write 		CVE-2024-44557 2024-08-27 23:30 2024-08-27 Show GitHub Exploit DB Packet Storm