Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3101 7.5 重要
Network 		Linux Foundation tekton pipelines Linux Foundationのtekton pipelinesにおける引数の挿入または変更に関する脆弱性 CWE-88
引数の挿入または変更 		CVE-2026-40938 2026-04-30 12:27 2026-04-21 Show GitHub Exploit DB Packet Storm
3102 6.5 警告
Network 		Apache Software Foundation ActiveMQ Web
Apache ActiveMQ 		Apache Software FoundationのApache ActiveMQ等の複数製品における複数の脆弱性 CWE-79
CWE-79
CWE-915
CVE-2026-41043 2026-04-30 12:27 2026-04-24 Show GitHub Exploit DB Packet Storm
3103 8.8 重要
Network 		Apache Software Foundation Apache ActiveMQ
ActiveMQ Broker 		Apache Software FoundationのApache ActiveMQ等の複数製品における複数の脆弱性 CWE-20
CWE-94
CVE-2026-41044 2026-04-30 12:27 2026-04-24 Show GitHub Exploit DB Packet Storm
3104 8.2 重要
Network 		oauth2_proxy project oauth2_proxy oauth2_proxy projectのoauth2_proxyにおける代替パスまたはチャネルを使用した認証回避に関する脆弱性 CWE-288
代替パスまたはチャネルを使用した認証回避 		CVE-2026-41059 2026-04-30 12:27 2026-04-22 Show GitHub Exploit DB Packet Storm
3105 7.5 重要
Network 		lxml lxml lxmlにおけるXML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2026-41066 2026-04-30 12:27 2026-04-24 Show GitHub Exploit DB Packet Storm
3106 7.7 重要
Network 		The Kyverno Authors Kyverno The Kyverno AuthorsのKyvernoにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-41068 2026-04-30 12:27 2026-04-24 Show GitHub Exploit DB Packet Storm
3107 8.8 重要
Network 		pyLoad pyLoad pyLoadにおけるセッション期限に関する脆弱性 CWE-613
不適切なセッション期限 		CVE-2026-41133 2026-04-30 12:27 2026-04-22 Show GitHub Exploit DB Packet Storm
3108 8.2 重要
Network 		Minio Inc. Minio Minio Inc.のMinioにおける認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2026-41145 2026-04-30 12:27 2026-04-22 Show GitHub Exploit DB Packet Storm
3109 9.8 緊急
Network 		JetBrains Junie JetBrainsのJunieにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-41153 2026-04-30 12:27 2026-04-17 Show GitHub Exploit DB Packet Storm
3110 8.1 重要
Network 		Statamic Statamic Statamicにおけるクラスまたはコードを選択する外部から制御された入力の使用に関する脆弱性 CWE-470
クラスまたはコードを選択する外部から制御された入力の使用 		CVE-2026-41175 2026-04-30 12:27 2026-04-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
315561 7.5 HIGH
Network 		gitlab gitlab An issue was discovered in GitLab CE/EE affecting all versions starting from 8.16 prior to 17.0.6, starting from 17.1 prior to 17.1.4, and starting from 17.2 prior to 17.2.2, which causes the web int… CWE-116
 Improper Encoding or Escaping of Output 		CVE-2024-6329 2024-08-24 02:01 2024-08-8 Show GitHub Exploit DB Packet Storm
315562 5.4 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab EE starting from version 16.7 before 17.0.6, version 17.1 before 17.1.4 and 17.2 before 17.2.2 that allowed bypassing the password re-entry requirement to approve a … CWE-287
Improper Authentication 		CVE-2024-4784 2024-08-24 01:59 2024-08-8 Show GitHub Exploit DB Packet Storm
315563 7.5 HIGH
Network 		dell insightiq Dell InsightIQ, Verion 5.0.0, contains a use of a broken or risky cryptographic algorithm vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability, leading to in… CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2024-28972 2024-08-24 01:59 2024-08-1 Show GitHub Exploit DB Packet Storm
315564 7.8 HIGH
Local 		autodesk revit A maliciously crafted DWG file, when parsed in Revit, can force a stack-based buffer overflow. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the curren… CWE-787
 Out-of-bounds Write 		CVE-2024-37008 2024-08-24 01:57 2024-08-21 Show GitHub Exploit DB Packet Storm
315565 7.8 HIGH
Local 		dell repository_manager Dell Repository Manager version 3.4.2 and earlier, contain a Local Privilege Escalation Vulnerability in Installation module. A local low privileged attacker may potentially exploit this vulnerabilit… NVD-CWE-noinfo
CVE-2023-22576 2024-08-24 01:56 2024-08-21 Show GitHub Exploit DB Packet Storm
315566 6.5 MEDIUM
Network 		gitlab gitlab A Denial of Service (DoS) condition has been discovered in GitLab CE/EE affecting all versions starting with 12.6 before 17.0.6, 17.1 prior to 17.1.4, and 17.2 prior to 17.2.2. It is possible for an … NVD-CWE-noinfo
CVE-2024-4210 2024-08-24 01:56 2024-08-8 Show GitHub Exploit DB Packet Storm
315567 8.0 HIGH
Adjacent 		magnetforensics axiom Magnet Forensics AXIOM Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Magnet Forens… CWE-78
OS Command  		CVE-2024-7448 2024-08-24 01:54 2024-08-22 Show GitHub Exploit DB Packet Storm
315568 7.8 HIGH
Local 		windscribe windscribe Windscribe Directory Traversal Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Windscribe. An attacker must fir… CWE-22
Path Traversal 		CVE-2024-6141 2024-08-24 01:53 2024-08-22 Show GitHub Exploit DB Packet Storm
315569 5.3 MEDIUM
Network 		tvt
provision-isr
artion-sec 		dvr_firmware A vulnerability has been found in TVT DVR TD-2104TS-CL, DVR TD-2108TS-HP, Provision-ISR DVR SH-4050A5-5L(MM) and AVISION DVR AV108T and classified as problematic. This vulnerability affects unknown c… NVD-CWE-noinfo
CVE-2024-7339 2024-08-24 01:53 2024-08-1 Show GitHub Exploit DB Packet Storm
315570 7.8 HIGH
Local 		vipre advanced_security VIPRE Advanced Security Incorrect Permission Assignment Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of VIPRE A… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2024-5930 2024-08-24 01:48 2024-08-22 Show GitHub Exploit DB Packet Storm