Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3141	8.1	重要 Network	OpenClaw	OpenClaw	OpenClawにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-42431	2026-05-1 10:46	2026-04-28	Show	GitHub Exploit DB Packet Storm

3142	7.8	重要 Local	OpenClaw	OpenClaw	OpenClawにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-42432	2026-05-1 10:46	2026-04-28	Show	GitHub Exploit DB Packet Storm

3143	6.3	警告 Network	MetaGPT	MetaGPT	MetaGPTにおける複数の脆弱性	CWE-74 CWE-94	CVE-2026-4515	2026-05-1 10:45	2026-03-21	Show	GitHub Exploit DB Packet Storm

3144	6.3	警告 Network	MetaGPT	MetaGPT	MetaGPTにおける複数の脆弱性	CWE-707 CWE-74	CVE-2026-4516	2026-05-1 10:45	2026-03-21	Show	GitHub Exploit DB Packet Storm

3145	7.8	重要 Local	Linux Foundation	pytorch	Linux Foundationのpytorchにおける複数の脆弱性	CWE-20 CWE-502	CVE-2026-4538	2026-05-1 10:45	2026-03-22	Show	GitHub Exploit DB Packet Storm

3146	6.3	警告 Network	WAVLINK	WL-WN578W2 ファームウェア	WAVLINKのWL-WN578W2 ファームウェアにおける複数の脆弱性	CWE-74 CWE-77	CVE-2026-4543	2026-05-1 10:45	2026-03-22	Show	GitHub Exploit DB Packet Storm

3147	4.8	警告 Network	WAVLINK	WL-WN578W2 ファームウェア	WAVLINKのWL-WN578W2 ファームウェアにおける複数の脆弱性	CWE-79 CWE-94	CVE-2026-4544	2026-05-1 10:45	2026-03-22	Show	GitHub Exploit DB Packet Storm

3148	8.8	重要 Network	シスコシステムズ (Linksys)	mr9600 ファームウェア	Linksysのmr9600 ファームウェアにおける複数の脆弱性	CWE-77 CWE-78	CVE-2026-4558	2026-05-1 10:45	2026-03-22	Show	GitHub Exploit DB Packet Storm

3149	8.8	重要 Network	Belkin International	F9K1122 ファームウェア	Belkin InternationalのF9K1122 ファームウェアにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-4566	2026-05-1 10:45	2026-03-23	Show	GitHub Exploit DB Packet Storm

3150	8.8	重要 Network	WAVLINK	WL-NU516U1 ファームウェア	WAVLINKのWL-NU516U1 ファームウェアにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-4861	2026-05-1 10:45	2026-03-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
316411	-	-	-	In multiple functions of AppOpsService.java, there is a possible way for unprivileged apps to read their own restrictRead app-op states due to a logic error in the code. This could lead to local esca…	-	CVE-2024-34738	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

316412	-	-	-	In ensureSetPipAspectRatioQuotaTracker of ActivityClientController.java, there is a possible way to generate unmovable and undeletable pip windows due to a logic error in the code. This could lead to…	-	CVE-2024-34737	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

316413	-	-	-	In multiple functions of TranscodingResourcePolicy.cpp, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with no additional execution pr…	-	CVE-2024-34731	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

316414	-	-	-	In _MMU_AllocLevel of mmu_common.c, there is a possible arbitrary code execution due to an integer overflow. This could lead to local escalation of privilege in the kernel with no additional executio…	-	CVE-2024-31333	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

316415	-	-	-	AVEVA Historian Server has a vulnerability, if exploited, could allow a malicious SQL command to execute under the privileges of an interactive Historian REST Interface user who had been socially eng…	CWE-89 SQL Injection	CVE-2024-6456	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

316416	-	-	-	Boa is an embeddable and experimental Javascript engine written in Rust. Starting in version 0.16 and prior to version 0.19.0, a wrong assumption made when handling ECMAScript's `AsyncGenerator` oper…	-	CVE-2024-43367	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

316417	-	-	-	In the OAuth library for nim prior to version 0.11, the Authorization Code grant and Implicit grant both rely on the `state` parameter to prevent cross-site request forgery (CSRF) attacks where a res…	-	CVE-2024-42476	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

316418	-	-	-	In the OAuth library for nim prior to version 0.11, the `state` values generated by the `generateState` function do not have sufficient entropy. These can be successfully guessed by an attacker allow…	-	CVE-2024-42475	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

316419	-	-	-	ECMA-262 is the language specification for the scripting language ECMAScript. A problem in the ECMAScript (JavaScript) specification of async generators, introduced by a May 2021 spec refactor, may l…	-	CVE-2024-43357	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

316420	-	-	-	Cross Site Scripting vulnerability in Friendica v.2023.12 allows a remote attacker to obtain sensitive information via the lack of file type filtering in the file attachment parameter.	-	CVE-2024-27731	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm