Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3221 6.5 警告
Network 		The Prosody Team Prosody The Prosody TeamのProsodyにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-43504 2026-05-7 12:00 2026-05-1 Show GitHub Exploit DB Packet Storm
3222 6.5 警告
Network 		The Prosody Team Prosody The Prosody TeamのProsodyにおける保護されていない代替チャネルに関する脆弱性 CWE-420
保護されていない代替チャネル 		CVE-2026-43505 2026-05-7 12:00 2026-05-1 Show GitHub Exploit DB Packet Storm
3223 7.5 重要
Network 		The Prosody Team Prosody The Prosody TeamのProsodyにおける有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2026-43506 2026-05-7 11:59 2026-05-1 Show GitHub Exploit DB Packet Storm
3224 7.5 重要
Network 		The Prosody Team Prosody The Prosody TeamのProsodyにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-43507 2026-05-7 11:59 2026-05-1 Show GitHub Exploit DB Packet Storm
3225 7.5 重要
Network 		Debian
GStreamer
レッドハット		 GStreamer
Debian GNU/Linux
Red Hat Enterprise Linux
GStreamer Good Plug-ins 		Debian等の複数ベンダの製品における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-1940 2026-05-7 11:31 2026-03-23 Show GitHub Exploit DB Packet Storm
3226 9.8 緊急
Network 		OPPO ColorOS Assistant OPPOのColorOS Assistantにおける複数の脆弱性 CWE-22
CWE-23
CVE-2026-22070 2026-05-7 11:31 2026-04-30 Show GitHub Exploit DB Packet Storm
3227 8.8 重要
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-42364 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
3228 7.5 重要
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品における観測された状態からの推測に関する脆弱性 CWE-341
観測された状態からの推測 		CVE-2026-42365 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
3229 6.1 警告
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42366 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
3230 6.5 警告
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品における認証情報の不十分な保護に関する脆弱性 CWE-522
認証情報の不十分な保護 		CVE-2026-42367 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
316571 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: char: xillybus: Check USB endpoints when probing device Ensure, as the driver probes the device, that all endpoints that the driv… NVD-CWE-noinfo
CVE-2024-45011 2024-09-14 01:36 2024-09-12 Show GitHub Exploit DB Packet Storm
316572 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: only decrement add_addr_accepted for MPJ req Adding the following warning ... WARN_ON_ONCE(msk->pm.add_addr_accepte… NVD-CWE-noinfo
CVE-2024-45009 2024-09-14 01:36 2024-09-12 Show GitHub Exploit DB Packet Storm
316573 - - - An External XML Entity (XXE) vulnerability in the provisioning web service of Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote unauthenticated attacker to leak API secrets. - CVE-2024-37397 2024-09-14 01:35 2024-09-12 Show GitHub Exploit DB Packet Storm
316574 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: s390/boot: Avoid possible physmem_info segment corruption When physical memory for the kernel image is allocated it does not cons… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2024-45014 2024-09-14 01:35 2024-09-12 Show GitHub Exploit DB Packet Storm
316575 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: move dpu_encoder's connector assignment to atomic_enable() For cases where the crtc's connectors_changed was set wit… CWE-476
 NULL Pointer Dereference 		CVE-2024-45015 2024-09-14 01:35 2024-09-12 Show GitHub Exploit DB Packet Storm
316576 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: nvme: move stopping keep-alive into nvme_uninit_ctrl() Commit 4733b65d82bd ("nvme: start keep-alive after admin queue setup") mov… CWE-416
 Use After Free 		CVE-2024-45013 2024-09-14 01:35 2024-09-12 Show GitHub Exploit DB Packet Storm
316577 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: nouveau/firmware: use dma non-coherent allocator Currently, enabling SG_DEBUG in the kernel will cause nouveau to hit a BUG() on … CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2024-45012 2024-09-14 01:35 2024-09-12 Show GitHub Exploit DB Packet Storm
316578 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: only mark 'subflow' endp as available Adding the following warning ... WARN_ON_ONCE(msk->pm.local_addr_used == 0) … NVD-CWE-noinfo
CVE-2024-45010 2024-09-14 01:35 2024-09-12 Show GitHub Exploit DB Packet Storm
316579 5.4 MEDIUM
Network 		perfexcrm perfex_crm A stored cross-site scripting (XSS) vulnerability in the Discussion section of Perfex CRM v1.1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Cont… CWE-79
Cross-site Scripting 		CVE-2024-44851 2024-09-14 01:34 2024-09-12 Show GitHub Exploit DB Packet Storm
316580 9.8 CRITICAL
Network 		comfast cf-xr11_firmware COMFAST CF-XR11 V2.7.2 has a command injection vulnerability in function sub_424CB4. Attackers can send POST request messages to /usr/bin/webmgnt and inject commands into parameter iface. CWE-77
Command Injection 		CVE-2024-44466 2024-09-14 01:32 2024-09-12 Show GitHub Exploit DB Packet Storm