Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3001	7.5	重要 Network		-	アップルのmacOSにおけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2026-39870	2026-05-15 11:01	2026-05-11	Show	GitHub Exploit DB Packet Storm

3002	6.8	警告 Physics	ZTE	ZX297520V3 ファームウェア	ZTEのZX297520V3 ファームウェアにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-40003	2026-05-15 11:01	2026-05-7	Show	GitHub Exploit DB Packet Storm

3003	7.8	重要 Local	ZTE	ZXCLOUD iRAI	ZTEのZXCLOUD iRAIにおける制御されていない検索パスの要素に関する脆弱性	CWE-427 制御されていない検索パスの要素	CVE-2026-40004	2026-05-15 11:01	2026-05-7	Show	GitHub Exploit DB Packet Storm

3004	6.5	警告 Network	Zulip	Zulip Server	ZulipのZulip Serverにおけるアクセス制御に関する脆弱性	CWE-284 CWE-noinfo	CVE-2026-40300	2026-05-15 11:01	2026-05-12	Show	GitHub Exploit DB Packet Storm

3005	6.5	警告 Network	NocoBase	NocoBase	NocoBaseにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-40346	2026-05-15 11:01	2026-04-18	Show	GitHub Exploit DB Packet Storm

3006	8.8	重要 Network	マイクロソフト	Microsoft SharePoint Server	Microsoft SharePoint Server のリモートでコードが実行される脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-40357	2026-05-15 11:01	2026-05-12	Show	GitHub Exploit DB Packet Storm

3007	8.8	重要 Network	マイクロソフト	Microsoft SharePoint Server	Microsoft SharePoint Server のリモートでコードが実行される脆弱性	CWE-1220 アクセス制御の不十分な粒度	CVE-2026-40365	2026-05-15 11:01	2026-05-12	Show	GitHub Exploit DB Packet Storm

3008	8	重要 Network	マイクロソフト	Microsoft SharePoint Server	Microsoft SharePoint Server のリモートでコードが実行される脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-40368	2026-05-15 11:01	2026-05-12	Show	GitHub Exploit DB Packet Storm

3009	5.5	警告 Local	jqlang	jq	jqlangのjqにおける再帰制御に関する脆弱性	CWE-674 不適切な再帰制御	CVE-2026-40612	2026-05-15 11:01	2026-05-11	Show	GitHub Exploit DB Packet Storm

3010	7.5	重要 Network	PHPOffice	PhpSpreadsheet	PHPOfficeのPhpSpreadsheetにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-40863	2026-05-15 11:01	2026-05-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312231	-		-	-	A cross-site scripting (XSS) vulnerability in the component /master/header.php of Ganglia-web v3.73 to v3.76 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected i…	-	CVE-2024-52762	2024-11-21 05:35	2024-11-20	Show	GitHub Exploit DB Packet Storm

312232	-		-	-	In HWCSession::SetColorModeById of hwc_session.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional executio…	-	CVE-2018-9409	2024-11-21 05:35	2024-11-20	Show	GitHub Exploit DB Packet Storm

312233	9.8	CRITICAL Network	tenda	ac6_firmware	Tenda AC6 v2.0 v15.03.06.50 was discovered to contain a buffer overflow in the function 'fromSetSysTime.	CWE-120 Classic Buffer Overflow	CVE-2024-52714	2024-11-21 05:35	2024-11-20	Show	GitHub Exploit DB Packet Storm

312234	7.5	HIGH Network	qualcomm	315_5g_iot_modem_firmware apq8064au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware ar9380_firmware csr8811_firmware csra6620_firmware csra6640_firmware csrb31024…	Transient DOS while parsing ESP IE from beacon/probe response frame.	CWE-125 Out-of-bounds Read	CVE-2024-33014	2024-11-21 05:35	2024-08-6	Show	GitHub Exploit DB Packet Storm

312235	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: io_uring: check if we need to reschedule during overflow flush In terms of normal application usage, this list will always be emp…	NVD-CWE-noinfo	CVE-2024-50060	2024-11-21 05:25	2024-10-22	Show	GitHub Exploit DB Packet Storm

312236	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uvc: Fix ERR_PTR dereference in uvc_v4l2.c Fix potential dereferencing of ERR_PTR() in find_format_by_pix() and uvc_…	CWE-476 NULL Pointer Dereference	CVE-2024-50056	2024-11-21 05:18	2024-10-22	Show	GitHub Exploit DB Packet Storm

312237	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ntfs3: Change to non-blocking allocation in ntfs_d_hash d_hash is done while under "rcu-walk" and should not sleep. __get_name() …	NVD-CWE-noinfo	CVE-2024-50065	2024-11-21 05:07	2024-10-22	Show	GitHub Exploit DB Packet Storm

312238	7.5	HIGH Network	qualcomm	ar8035_firmware csr8811_firmware fastconnect_6200_firmware fastconnect_6700_firmware fastconnect_6900_firmware fastconnect_7800_firmware flight_rb5_5g_platform_firmware immersive…	Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report.	CWE-125 Out-of-bounds Read	CVE-2024-33015	2024-11-21 04:57	2024-08-6	Show	GitHub Exploit DB Packet Storm

312239	7.5	HIGH Network	qualcomm	csr8811_firmware fastconnect_6800_firmware fastconnect_6900_firmware fastconnect_7800_firmware flight_rb5_5g_platform_firmware immersive_home_214_platform_firmware immersive_home_21…	Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.	CWE-125 Out-of-bounds Read	CVE-2024-33025	2024-11-21 04:53	2024-08-6	Show	GitHub Exploit DB Packet Storm

312240	7.5	HIGH Network	qualcomm	ar8035_firmware csr8811_firmware fastconnect_6700_firmware fastconnect_6800_firmware fastconnect_6900_firmware fastconnect_7800_firmware flight_rb5_5g_platform_firmware immersive…	Transient DOS while parsing the ML IE when a beacon with length field inside the common info of ML IE greater than the ML IE length.	CWE-190 Integer Overflow or Wraparound	CVE-2024-33024	2024-11-21 04:42	2024-08-6	Show	GitHub Exploit DB Packet Storm