Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3131 6.1 警告
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-31906 2026-05-21 10:53 2026-05-19 Show GitHub Exploit DB Packet Storm
3132 7.5 重要
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-31909 2026-05-21 10:53 2026-05-19 Show GitHub Exploit DB Packet Storm
3133 7.5 重要
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-31910 2026-05-21 10:53 2026-05-19 Show GitHub Exploit DB Packet Storm
3134 9.1 緊急
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおけるハードコードされた暗号鍵の使用に関する脆弱性 CWE-321
ハードコードされた暗号鍵の使用 		CVE-2026-31986 2026-05-21 10:53 2026-05-19 Show GitHub Exploit DB Packet Storm
3135 4.8 警告
Network 		Mattermost, Inc. Mattermost Server Mattermost, Inc.のMattermost Serverにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-3495 2026-05-21 10:53 2026-05-18 Show GitHub Exploit DB Packet Storm
3136 6.5 警告
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-35086 2026-05-21 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
3137 8.8 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Office Long Term Servicing Channel (LTSC) 		Microsoft Office クイック実行の特権の昇格の脆弱性 CWE-1220
アクセス制御の不十分な粒度 		CVE-2026-35436 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
3138 5.5 警告
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Microsoft Word
Office Long Term Servicing Channel (LTSC) 		Microsoft Word の情報漏えいの脆弱性 CWE-552
外部からアクセス可能なファイルまたはディレクトリ 		CVE-2026-35440 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
3139 4.3 警告
Network 		Mattermost, Inc. Mattermost Server Mattermost, Inc.のMattermost Serverにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-3637 2026-05-21 10:52 2026-05-18 Show GitHub Exploit DB Packet Storm
3140 9.8 緊急
Network 		H2O.ai H2O H2O.aiのH2Oにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-3960 2026-05-21 10:52 2026-04-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
318311 9.8 CRITICAL
Network 		dlink dir-860l_firmware In D-Link DIR-860L v2.03, there is a buffer overflow vulnerability due to the lack of length verification for the SID field in gena.cgi. Attackers who successfully exploit this vulnerability can caus… CWE-120
Classic Buffer Overflow 		CVE-2024-42812 2024-10-11 05:18 2024-08-20 Show GitHub Exploit DB Packet Storm
318312 6.1 MEDIUM
Network 		angeljudesuarez placement_management_system itsourcecode Placement Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via the Full Name field in registration.php. CWE-79
Cross-site Scripting 		CVE-2024-46300 2024-10-11 03:52 2024-10-8 Show GitHub Exploit DB Packet Storm
318313 4.9 MEDIUM
Network 		google android In wlan driver, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure with System execution privileges needed. User interaction is … CWE-125
Out-of-bounds Read 		CVE-2024-20102 2024-10-11 03:20 2024-10-7 Show GitHub Exploit DB Packet Storm
318314 4.7 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ALSA: line6: Fix racy access to midibuf There can be concurrent accesses to line6 midibuf from both the URB completion callback a… CWE-362
Race Condition 		CVE-2024-44954 2024-10-11 03:02 2024-09-5 Show GitHub Exploit DB Packet Storm
318315 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Don't refer to dc_sink in is_dsc_need_re_compute [Why] When unplug one of monitors connected after mst hub, enco… CWE-476
 NULL Pointer Dereference 		CVE-2024-44955 2024-10-11 02:57 2024-09-5 Show GitHub Exploit DB Packet Storm
318316 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: sched/smt: Fix unbalance sched_smt_present dec/inc I got the following warn report while doing stress test: jump label: negative… NVD-CWE-noinfo
CVE-2024-44958 2024-10-11 02:56 2024-09-5 Show GitHub Exploit DB Packet Storm
318317 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: tracefs: Use generic inode RCU for synchronizing freeing With structure layout randomization enabled for 'struct inode' we need t… NVD-CWE-noinfo
CVE-2024-44959 2024-10-11 02:54 2024-09-5 Show GitHub Exploit DB Packet Storm
318318 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ata: pata_macio: Fix DMA table overflow Kolbjørn and Jonáš reported that their 32-bit PowerMacs were crashing in pata-macio since… NVD-CWE-noinfo
CVE-2024-44976 2024-10-11 02:50 2024-09-5 Show GitHub Exploit DB Packet Storm
318319 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix missing workqueue destroy in xe_gt_pagefault On driver reload we never free up the memory for the pagefault and acces… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2024-44979 2024-10-11 02:44 2024-09-5 Show GitHub Exploit DB Packet Storm
318320 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix opregion leak Being part o the display, ideally the setup and cleanup would be done by display itself. However this i… NVD-CWE-noinfo
CVE-2024-44980 2024-10-11 02:42 2024-09-5 Show GitHub Exploit DB Packet Storm