Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3321 5.5 警告
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける関数の戻り値に対する不適切なチェックに関する脆弱性 CWE-253
関数の戻り値に対する不適切なチェック 		CVE-2026-35340 2026-05-7 11:27 2026-04-22 Show GitHub Exploit DB Packet Storm
3322 3.3
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける安全でない一時ファイルに関する脆弱性 CWE-377
安全でない一時ファイル 		CVE-2026-35342 2026-05-7 11:27 2026-04-22 Show GitHub Exploit DB Packet Storm
3323 3.3
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける常に不適切な制御フローの実装に関する脆弱性 CWE-670
常に不適切な制御フローの実装 		CVE-2026-35343 2026-05-7 11:27 2026-04-22 Show GitHub Exploit DB Packet Storm
3324 3.3
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける未チェックの戻り値に関する脆弱性 CWE-252
未チェックの戻り値 		CVE-2026-35344 2026-05-7 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
3325 5.3 警告
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける複数の脆弱性 CWE-367
CWE-59
CVE-2026-35345 2026-05-7 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
3326 5.5 警告
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける誤って解決された名前や参照の使用に関する脆弱性 CWE-706
誤って解決された名前や参照の使用 		CVE-2026-35358 2026-05-7 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
3327 6.6 警告
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおけるリンク解釈に関する脆弱性 CWE-59
リンク解釈の問題 		CVE-2026-35365 2026-05-7 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
3328 4.4 警告
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける例外的な状態のチェックに関する脆弱性 CWE-754
例外的な状態における不適切なチェック 		CVE-2026-35366 2026-05-7 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
3329 5.5 警告
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-35369 2026-05-7 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
3330 4.4 警告
Local 		Uutils uutils coreutils Uutilsのuutils coreutilsにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-35370 2026-05-7 11:26 2026-04-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313391 9.8 CRITICAL
Network 		microsoft visual_studio_code Missing authentication for critical function in Visual Studio Code extension for Arduino allows an unauthenticated attacker to perform remote code execution through network attack vector. NVD-CWE-noinfo
CVE-2024-43488 2024-10-22 06:05 2024-10-9 Show GitHub Exploit DB Packet Storm
313392 6.1 MEDIUM
Network 		comfy comfyui A stored cross-site scripting (XSS) vulnerability exists in comfyanonymous/comfyui version 0.2.2 and possibly earlier. The vulnerability occurs when an attacker uploads an HTML file containing a mali… CWE-79
Cross-site Scripting 		CVE-2024-10099 2024-10-22 06:03 2024-10-18 Show GitHub Exploit DB Packet Storm
313393 7.1 HIGH
Network 		microsoft windows_server_2022_23h2
windows_server_2022
windows_server_2019
windows_10_1809
windows_11_21h2
windows_10_21h2
windows_11_22h2
windows_10_22h2
windows_11_23h2
windows_11_… 		Microsoft OpenSSH for Windows Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2024-43615 2024-10-22 06:00 2024-10-9 Show GitHub Exploit DB Packet Storm
313394 5.4 MEDIUM
Network 		fahadmahmood rss_feed_widget The RSS Feed Widget plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's rfw-youtube-videos shortcode in all versions up to, and including, 2.9.9 due to insufficient inp… CWE-79
Cross-site Scripting 		CVE-2024-10057 2024-10-22 05:53 2024-10-18 Show GitHub Exploit DB Packet Storm
313395 5.5 MEDIUM
Local 		microsoft defender_for_endpoint Microsoft Defender for Endpoint for Linux Spoofing Vulnerability NVD-CWE-noinfo
CVE-2024-43614 2024-10-22 05:50 2024-10-9 Show GitHub Exploit DB Packet Storm
313396 4.7 MEDIUM
Network 		microsoft power_bi_report_server Power BI Report Server Spoofing Vulnerability NVD-CWE-noinfo
CVE-2024-43612 2024-10-22 05:48 2024-10-9 Show GitHub Exploit DB Packet Storm
313397 7.8 HIGH
Local 		microsoft office
365_apps
office_long_term_servicing_channel 		Microsoft Office Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2024-43616 2024-10-22 05:47 2024-10-9 Show GitHub Exploit DB Packet Storm
313398 9.8 CRITICAL
Network 		rittal iot_interface_firmware
cmc_iii_processing_units_firmware 		The devices are vulnerable to session hijacking due to insufficient entropy in its session ID generation algorithm. The session IDs are predictable, with only 32,768 possible values per user, which… CWE-331
 Insufficient Entropy 		CVE-2024-47945 2024-10-22 04:41 2024-10-15 Show GitHub Exploit DB Packet Storm
313399 7.8 HIGH
Local 		autodesk revit A maliciously crafted RFA file, when parsed through Autodesk Revit, can force a Stack-Based Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, o… CWE-787
 Out-of-bounds Write 		CVE-2024-7994 2024-10-22 03:35 2024-10-17 Show GitHub Exploit DB Packet Storm
313400 7.8 HIGH
Local 		autodesk revit A maliciously crafted PDF file, when parsed through Autodesk Revit, can force an Out-of-Bounds Write. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or exec… CWE-787
 Out-of-bounds Write 		CVE-2024-7993 2024-10-22 03:27 2024-10-17 Show GitHub Exploit DB Packet Storm