Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 12:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3191	7.8	重要 Local	huggingface	transformers	huggingfaceのtransformersにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-1839	2026-04-30 12:17	2026-04-7	Show	GitHub Exploit DB Packet Storm

3192	6.1	警告 Network	シスコシステムズ	Cisco Unity Connection	シスコシステムズのCisco Unity Connectionにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-20059	2026-04-30 12:17	2026-04-15	Show	GitHub Exploit DB Packet Storm

3193	4.7	警告 Network	シスコシステムズ	Cisco Unity Connection	シスコシステムズのCisco Unity Connectionにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2026-20060	2026-04-30 12:17	2026-04-15	Show	GitHub Exploit DB Packet Storm

3194	6.5	警告 Network	シスコシステムズ	Cisco Unity Connection	シスコシステムズのCisco Unity ConnectionにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-20061	2026-04-30 12:17	2026-04-15	Show	GitHub Exploit DB Packet Storm

3195	6.5	警告 Local	シスコシステムズ	Cisco Firepower Threat Defense ソフトウェア	シスコシステムズのCisco Firepower Threat Defense ソフトウェアにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-20064	2026-04-30 12:17	2026-03-4	Show	GitHub Exploit DB Packet Storm

3196	6.5	警告 Network	シスコシステムズ	Cisco Unity Connection	シスコシステムズのCisco Unity Connectionにおける相対パストラバーサルの脆弱性	CWE-23 相対的パストラバーサル	CVE-2026-20078	2026-04-30 12:17	2026-04-15	Show	GitHub Exploit DB Packet Storm

3197	6.5	警告 Network	シスコシステムズ	Cisco Unity Connection	シスコシステムズのCisco Unity Connectionにおける相対パストラバーサルの脆弱性	CWE-23 相対的パストラバーサル	CVE-2026-20081	2026-04-30 12:17	2026-04-15	Show	GitHub Exploit DB Packet Storm

3198	7.2	重要 Network	デル	PowerProtect DP Series Appliance data domain operating system	デルのdata domain operating system等の複数製品におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-22761	2026-04-30 12:17	2026-04-20	Show	GitHub Exploit DB Packet Storm

3199	9.1	緊急 Network	GNOME Project	libsoup	GNOME Projectのlibsoupにおける整数アンダーフローの脆弱性	CWE-191 整数アンダーフロー	CVE-2026-2369	2026-04-30 12:17	2026-03-19	Show	GitHub Exploit DB Packet Storm

3200	9.6	緊急 Network	マイクロソフト	Microsoft Partner Center	Microsoft パートナーセンターの特権昇格の脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-24303	2026-04-30 12:17	2026-04-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
314461	9.8	CRITICAL Network	dlink	di-8100g_firmware	D-Link DI-8100G 17.12.20A1 is vulnerable to Command Injection via msp_info.htm.	CWE-77 Command Injection	CVE-2024-44402	2024-09-11 01:58	2024-09-7	Show	GitHub Exploit DB Packet Storm

314462	7.1	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable: validate vlan header Ensure there is sufficient room to access the protocol field of the VLAN header, valid…	CWE-908 Use of Uninitialized Resource	CVE-2024-44983	2024-09-11 01:57	2024-09-5	Show	GitHub Exploit DB Packet Storm

314463	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/xe: Free job before xe_exec_queue_put Free job depends on job->vm being valid, the last xe_exec_queue_put can destroy the VM.…	CWE-416 Use After Free	CVE-2024-44978	2024-09-11 01:51	2024-09-5	Show	GitHub Exploit DB Packet Storm

314464	8.6	HIGH Network	fogproject	fogproject	FOG is a cloning/imaging/rescue suite/inventory management system. FOG Server 1.5.10.41.2 can leak AD username and password when registering a computer. This vulnerability is fixed in 1.5.10.41.3 an…	CWE-77 Command Injection	CVE-2024-42348	2024-09-11 01:49	2024-08-3	Show	GitHub Exploit DB Packet Storm

314465	5.3	MEDIUM Network	fogproject	fogproject	FOG is a cloning/imaging/rescue suite/inventory management system. FOG Server 1.5.10.41.4 and earlier can leak authorized and rejected logins via logs stored directly on the root of the web server. F…	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2024-42349	2024-09-11 01:44	2024-08-3	Show	GitHub Exploit DB Packet Storm

314466	9.8	CRITICAL Network	horizoncloud	caterease	An issue in Horizon Business Services Inc. Caterease 16.0.1.1663 through 24.0.1.2405 and possibly later versions, allows a remote attacker to perform a Traffic Injection attack due to improper verifi…	NVD-CWE-Other	CVE-2024-38886	2024-09-11 01:40	2024-08-3	Show	GitHub Exploit DB Packet Storm

314467	9.8	CRITICAL Network	horizoncloud	caterease	An issue in Horizon Business Services Inc. Caterease 16.0.1.1663 through 24.0.1.2405 and possibly later versions, allows a remote attacker to perform SQL Injection due to improper neutralization of s…	CWE-89 SQL Injection	CVE-2024-38889	2024-09-11 01:38	2024-08-3	Show	GitHub Exploit DB Packet Storm

314468	-		-	-	Loftware Spectrum before 4.6 HF14 has Missing Authentication for a Critical Function.	-	CVE-2023-37226	2024-09-11 01:35	2024-09-10	Show	GitHub Exploit DB Packet Storm

314469	-		-	-	An issue in Ellevo v.6.2.0.38160 allows a remote attacker to escalate privileges via the /api/usuario/cadastrodesuplente endpoint.	-	CVE-2024-42759	2024-09-11 01:35	2024-09-10	Show	GitHub Exploit DB Packet Storm

314470	-		-	-	Computer Vision Annotation Tool (CVAT) is an interactive video and image annotation tool for computer vision. An attacker with a CVAT account can access webhook delivery information for any webhook r…	-	CVE-2024-45393	2024-09-11 00:50	2024-09-11	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed