Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3011	4.3	警告 Network	Papra	Papra	Papraにおけるセッション期限に関する脆弱性	CWE-613 不適切なセッション期限	CVE-2026-35462	2026-04-27 11:17	2026-04-7	Show	GitHub Exploit DB Packet Storm

3012	8.1	重要 Network	RedwoodSDK	RedwoodSDK	RedwoodSDKにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-39371	2026-04-27 11:17	2026-04-7	Show	GitHub Exploit DB Packet Storm

3013	8.1	重要 Network	Sgbett	BSV Ruby SDK (bsv-sdk) bsv-wallet	Sgbettのbsv-wallet等の複数製品におけるデジタル署名の検証に関する脆弱性	CWE-347 デジタル署名の不適切な検証	CVE-2026-40070	2026-04-27 11:17	2026-04-9	Show	GitHub Exploit DB Packet Storm

3014	8.1	重要 Network	Nimiq	Nimiq Proof of Stake (core-rs-albatross)	NimiqのNimiq Proof of Stake (core-rs-albatross)における入力で指定された数量の不適切な検証に関する脆弱性	CWE-1284 入力で指定された数量の不適切な検証	CVE-2026-40093	2026-04-27 11:17	2026-04-9	Show	GitHub Exploit DB Packet Storm

3015	5.5	警告 Local	Giskard	Giskard	Giskardにおける非効率的な正規表現の複雑さに関する脆弱性	CWE-1333 非効率的な正規表現の複雑さ	CVE-2026-40319	2026-04-27 11:17	2026-04-17	Show	GitHub Exploit DB Packet Storm

3016	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける到達可能なアサーションに関する脆弱性	CWE-617 到達可能なアサーション	CVE-2026-23356	2026-04-27 10:55	2026-03-25	Show	GitHub Exploit DB Packet Storm

3017	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおけるリソースのロックに関する脆弱性	CWE-667 不適切なロック	CVE-2026-23357	2026-04-27 10:55	2026-03-25	Show	GitHub Exploit DB Packet Storm

3018	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける初期化されていないリソースの使用に関する脆弱性	CWE-908 初期化されていないリソースの使用	CVE-2026-23358	2026-04-27 10:55	2026-03-25	Show	GitHub Exploit DB Packet Storm

3019	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-23359	2026-04-27 10:55	2026-03-25	Show	GitHub Exploit DB Packet Storm

3020	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-23360	2026-04-27 10:55	2026-03-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
314751	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: jfs: Fix array-index-out-of-bounds in diFree	CWE-129 Improper Validation of Array Index	CVE-2024-43858	2024-08-23 02:40	2024-08-17	Show	GitHub Exploit DB Packet Storm

314752	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: f2fs: fix null reference error when checking end of zone This patch fixes a potentially null pointer being accessed by is_end_zon…	CWE-476 NULL Pointer Dereference	CVE-2024-43857	2024-08-23 02:38	2024-08-17	Show	GitHub Exploit DB Packet Storm

314753	4.3	MEDIUM Network	google	chrome	Inappropriate implementation in Views in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)	NVD-CWE-noinfo	CVE-2024-7981	2024-08-23 02:36	2024-08-22	Show	GitHub Exploit DB Packet Storm

314754	4.3	MEDIUM Network	google	chrome	Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 128.0.6613.84 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: L…	NVD-CWE-noinfo	CVE-2024-8034	2024-08-23 02:35	2024-08-22	Show	GitHub Exploit DB Packet Storm

314755	4.3	MEDIUM Network	google	chrome	Inappropriate implementation in Extensions in Google Chrome on Windows prior to 128.0.6613.84 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Lo…	NVD-CWE-noinfo	CVE-2024-8035	2024-08-23 02:33	2024-08-22	Show	GitHub Exploit DB Packet Storm

314756	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: remoteproc: imx_rproc: Skip over memory region when node value is NULL In imx_rproc_addr_init() "nph = of_count_phandle_with_args…	CWE-476 NULL Pointer Dereference	CVE-2024-43860	2024-08-23 02:08	2024-08-17	Show	GitHub Exploit DB Packet Storm

314757	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: PCI/DPC: Fix use-after-free on concurrent DPC and hot-removal Keith reports a use-after-free when a DPC event occurs concurrently…	CWE-416 Use After Free	CVE-2024-42302	2024-08-23 01:37	2024-08-17	Show	GitHub Exploit DB Packet Storm

314758	-		-	-	JPress through 5.1.1 on Windows has an arbitrary file upload vulnerability that could cause arbitrary code execution via ::$DATA to AttachmentController, such as a .jsp::$DATA file to io.jpress.web.c…	-	CVE-2024-43033	2024-08-23 01:35	2024-08-22	Show	GitHub Exploit DB Packet Storm

314759	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: dev/parport: fix the array out-of-bounds risk Fixed array out-of-bounds issues caused by sprintf by replacing it with snprintf fo…	CWE-129 Improper Validation of Array Index	CVE-2024-42301	2024-08-23 01:31	2024-08-17	Show	GitHub Exploit DB Packet Storm

314760	-		-	-	memos is a privacy-first, lightweight note-taking service. A CORS misconfiguration exists in memos 0.20.1 and earlier where an arbitrary origin is reflected with Access-Control-Allow-Credentials set …	-	CVE-2024-41659	2024-08-23 01:15	2024-08-21	Show	GitHub Exploit DB Packet Storm