Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3091	4.3	警告 Network	Kimai project	kimai	Kimai projectのKimaiにおける動的に決定されたオブジェクト属性の不適切に制御された変更に関する脆弱性	CWE-915 動的に決定されたオブジェクト属性の不適切に制御された変更	CVE-2026-40486	2026-04-30 12:28	2026-04-17	Show	GitHub Exploit DB Packet Storm

3092	6.8	警告 Network	oauth2_proxy project	oauth2_proxy	oauth2_proxy projectのoauth2_proxyにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-40574	2026-04-30 12:28	2026-04-21	Show	GitHub Exploit DB Packet Storm

3093	9.1	緊急 Network	oauth2_proxy project	oauth2_proxy	oauth2_proxy projectのoauth2_proxyにおけるスプーフィングによる認証回避に関する脆弱性	CWE-290 スプーフィングによる認証回避	CVE-2026-40575	2026-04-30 12:28	2026-04-22	Show	GitHub Exploit DB Packet Storm

3094	4.8	警告 Network	pyLoad-ng project	pyLoad-ng	pyLoad-ng projectのpyLoad-ngにおける同一生成元ポリシー違反に関する脆弱性	CWE-346 同一生成元ポリシー違反	CVE-2026-40594	2026-04-30 12:28	2026-04-21	Show	GitHub Exploit DB Packet Storm

3095	8.1	重要 Network	The Kyverno Authors	Kyverno	The Kyverno AuthorsのKyvernoにおける重要な情報のセキュアでない格納に関する脆弱性	CWE-922 重要な情報のセキュアでない格納	CVE-2026-40868	2026-04-30 12:28	2026-04-21	Show	GitHub Exploit DB Packet Storm

3096	8.1	重要 Network	goshs	goshs	goshsにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-40883	2026-04-30 12:28	2026-04-21	Show	GitHub Exploit DB Packet Storm

3097	9.8	緊急 Network	goshs	goshs	goshsにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-40884	2026-04-30 12:28	2026-04-21	Show	GitHub Exploit DB Packet Storm

3098	8.8	重要 Network	goshs	goshs	goshsにおける情報漏えいに関する脆弱性	CWE-200 CWE-noinfo	CVE-2026-40885	2026-04-30 12:28	2026-04-21	Show	GitHub Exploit DB Packet Storm

3099	7.5	重要 Network	gomarkdown	markdown	gomarkdownのMarkdownにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-40890	2026-04-30 12:28	2026-04-21	Show	GitHub Exploit DB Packet Storm

3100	10	緊急 Network	WWBN	AVideo	WWBNのAVideoにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-40911	2026-04-30 12:28	2026-04-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
315611	9.8	CRITICAL Network	totolink	t10_firmware	A vulnerability classified as critical has been found in TOTOLINK T10 AC1200 4.1.8cu.5207. Affected is an unknown function of the file /squashfs-root/web_cste/cgi-bin/product.ini of the component Tel…	CWE-798 Use of Hard-coded Credentials	CVE-2024-8162	2024-08-27 23:28	2024-08-26	Show	GitHub Exploit DB Packet Storm

315612	9.8	CRITICAL Network	tenda	ax1806_firmware	Tenda AX1806 v1.0.0.1 contains a stack overflow via the adv.iptv.stbpvid parameter in the function setIptvInfo.	CWE-787 Out-of-bounds Write	CVE-2024-44558	2024-08-27 23:28	2024-08-26	Show	GitHub Exploit DB Packet Storm

315613	9.8	CRITICAL Network	tenda	ax1806_firmware	Tenda AX1806 v1.0.0.1 contains a stack overflow via the adv.iptv.stballvlans parameter in the function setIptvInfo.	CWE-787 Out-of-bounds Write	CVE-2024-44556	2024-08-27 23:28	2024-08-26	Show	GitHub Exploit DB Packet Storm

315614	9.8	CRITICAL Network	tenda	ax1806_firmware	Tenda AX1806 v1.0.0.1 contains a stack overflow via the serverName parameter in the function form_fast_setting_internet_set.	CWE-787 Out-of-bounds Write	CVE-2024-44565	2024-08-27 22:43	2024-08-26	Show	GitHub Exploit DB Packet Storm

315615	9.8	CRITICAL Network	tenda	ax1806_firmware	Tenda AX1806 v1.0.0.1 contains a stack overflow via the iptv.stb.port parameter in the function setIptvInfo.	CWE-787 Out-of-bounds Write	CVE-2024-44563	2024-08-27 22:43	2024-08-26	Show	GitHub Exploit DB Packet Storm

315616	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/pm: Fix the null pointer dereference for smu7 optimize the code to avoid pass a null pointer (hwmgr->backend) to funct…	CWE-476 NULL Pointer Dereference	CVE-2024-43909	2024-08-27 22:41	2024-08-26	Show	GitHub Exploit DB Packet Storm

315617	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix the null pointer dereference to ras_manager Check ras_manager before using it	CWE-476 NULL Pointer Dereference	CVE-2024-43908	2024-08-27 22:41	2024-08-26	Show	GitHub Exploit DB Packet Storm

315618	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/pm: Fix the null pointer dereference in apply_state_adjust_rules Check the pointer value to fix potential null pointer…	CWE-476 NULL Pointer Dereference	CVE-2024-43907	2024-08-27 22:41	2024-08-26	Show	GitHub Exploit DB Packet Storm

315619	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/admgpu: fix dereferencing null pointer context When user space sets an invalid ta type, the pointer context will be empty. So…	CWE-476 NULL Pointer Dereference	CVE-2024-43906	2024-08-27 22:41	2024-08-26	Show	GitHub Exploit DB Packet Storm

315620	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add NULL check for 'afb' before dereferencing in amdgpu_dm_plane_handle_cursor_update This commit adds a null ch…	CWE-476 NULL Pointer Dereference	CVE-2024-43903	2024-08-27 22:39	2024-08-26	Show	GitHub Exploit DB Packet Storm