Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 6, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 3331 | 8.8 |
重要
Adjacent |
D-Link Systems, Inc. | DIR-605L ファームウェア | D-Link CorporationのDIR-605L ファームウェアにおけるハードコードされた認証情報の使用に関する脆弱性 |
CWE-798
ハードコードされた認証情報の使用 |
CVE-2026-42373 | 2026-05-8 12:11 | 2026-05-4 | Show | GitHub Exploit DB Packet Storm |
| 3332 | 8.8 |
重要
Adjacent |
D-Link Systems, Inc. | DIR-600L ファームウェア | D-Link CorporationのDIR-600L ファームウェアにおけるハードコードされた認証情報の使用に関する脆弱性 |
CWE-798
ハードコードされた認証情報の使用 |
CVE-2026-42374 | 2026-05-8 12:11 | 2026-05-4 | Show | GitHub Exploit DB Packet Storm |
| 3333 | 8.8 |
重要
Adjacent |
D-Link Systems, Inc. | DIR-600L ファームウェア | D-Link CorporationのDIR-600L ファームウェアにおけるハードコードされた認証情報の使用に関する脆弱性 |
CWE-798
ハードコードされた認証情報の使用 |
CVE-2026-42375 | 2026-05-8 12:11 | 2026-05-4 | Show | GitHub Exploit DB Packet Storm |
| 3334 | 9.8 |
緊急
Network |
MIYAGAWA (Tatsuhiko Miyagawa) | Plack::Middleware::Session::Cookie | MIYAGAWA (Tatsuhiko Miyagawa)のPlack::Middleware::Session::Cookieにおける検証および完全性チェックを行っていない Cookie への依存に関する脆弱性 |
CWE-565
検証および完全性チェックを行っていない Cookie への依存 |
CVE-2014-125112 | 2026-05-8 12:11 | 2026-03-26 | Show | GitHub Exploit DB Packet Storm |
| 3335 | 7.5 |
重要
Network |
Lobster DATA GmbH | Lobster_pro | Lobster DATA GmbHのLobster_proにおけるXML 外部エンティティの脆弱性 |
CWE-611
XML 外部エンティティ参照の不適切な制限 |
CVE-2024-13971 | 2026-05-8 12:11 | 2026-04-30 | Show | GitHub Exploit DB Packet Storm |
| 3336 | 9.8 |
緊急
Network |
D-Link Systems, Inc. | DIR-1253 Firmware | D-Link CorporationのDIR-1253 Firmwareにおける権限管理に関する脆弱性 |
CWE-269
不適切な権限管理 |
CVE-2025-29165 | 2026-05-8 12:11 | 2026-03-5 | Show | GitHub Exploit DB Packet Storm |
| 3337 | 4.4 |
警告
Local |
IBM | Planning Analytics Advanced Certified Containers | IBMのPlanning Analytics Advanced Certified Containersにおける複数の脆弱性 |
CWE-312 CWE-526 |
CVE-2025-36105 | 2026-05-8 12:11 | 2026-03-10 | Show | GitHub Exploit DB Packet Storm |
| 3338 | 6.1 |
警告
Network |
IBM | IBM InfoSphere Data Architect | IBMのIBM InfoSphere Data Architectにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2025-36173 | 2026-05-8 12:11 | 2026-03-10 | Show | GitHub Exploit DB Packet Storm |
| 3339 | 7.5 |
重要
Network |
クアルコム |
QCN5154 ファームウェア QCA6574 ファームウェア SAR2130P Firmware X2000094 ファームウェア SM6650P ファームウェア QCA8102 Firmware QXM1086 Firmware QCA2064 ファームウェア QC… |
クアルコムのAR8035 ファームウェア等の複数製品における複数の脆弱性 |
CWE-125 CWE-126 |
CVE-2025-47401 | 2026-05-8 12:11 | 2026-05-4 | Show | GitHub Exploit DB Packet Storm |
| 3340 | 7.5 |
重要
Network |
クアルコム |
QCN5154 ファームウェア QCA6574 ファームウェア SAR2130P Firmware X2000094 ファームウェア SM6650P ファームウェア QXM1086 Firmware qcn9100 ファームウェア QCA6777AQ ファームウェア Q… |
クアルコムのAR8035 ファームウェア等の複数製品における複数の脆弱性 |
CWE-125 CWE-126 |
CVE-2025-47403 | 2026-05-8 12:11 | 2026-05-4 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 6, 2026, 4:18 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 312921 | 7.8 |
HIGH
Local |
qualcomm |
wsa8845h_firmware wsa8845_firmware wsa8840_firmware wsa8835_firmware wsa8832_firmware wsa8830_firmware wsa8815_firmware wsa8810_firmware wcn7881_firmware wcn7880_firmware
Memory corruption while handling session errors from firmware.
|
CWE-416
|
Use After Free
CVE-2024-38415
|
2024-11-8 04:41 |
2024-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 312922 | 7.8 |
HIGH
Local |
qualcomm |
wsa8845h_firmware wsa8845_firmware wsa8840_firmware wsa8835_firmware wsa8830_firmware wcn3660b_firmware wcn3620_firmware wcd9385_firmware wcd9380_firmware wcd9375_firmware<… |
Memory corruption while station LL statistic handling. |
CWE-120
Classic Buffer Overflow |
CVE-2024-38409 | 2024-11-8 04:40 | 2024-11-4 | Show | GitHub Exploit DB Packet Storm |
| 312923 | 7.0 |
HIGH
Local |
qualcomm |
aqt1000_firmware fastconnect_6200_firmware fastconnect_6700_firmware fastconnect_6800_firmware fastconnect_6900_firmware fastconnect_7800_firmware qca6391_firmware qca6420_firmwa… |
Memory corruption while processing input parameters for any IOCTL call in the JPEG Encoder driver. |
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition |
CVE-2024-38407 | 2024-11-8 04:39 | 2024-11-4 | Show | GitHub Exploit DB Packet Storm |
| 312924 | 7.8 |
HIGH
Local |
qualcomm |
wsa8845h_firmware wsa8845_firmware wsa8840_firmware wsa8835_firmware wsa8832_firmware wsa8830_firmware wcn7880_firmware wcn6755_firmware wcn6650_firmware wcd9395_firmware
Memory corruption while processing IOCTL calls to unmap the buffers.
|
CWE-416
|
Use After Free
CVE-2024-33033
|
2024-11-8 04:39 |
2024-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 312925 | 5.5 |
MEDIUM
Local |
linux | linux_kernel | In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: fix wrong empty schemes assumption under online tuning in damon_sysfs_set_schemes() Commit da87878010e5 ("mm/damo… |
NVD-CWE-noinfo
|
CVE-2022-48996 | 2024-11-8 04:37 | 2024-10-22 | Show | GitHub Exploit DB Packet Storm |
| 312926 | 7.8 |
HIGH
Local |
linux | linux_kernel | In the Linux kernel, the following vulnerability has been resolved: mm/khugepaged: invoke MMU notifiers in shmem/file collapse paths Any codepath that zaps page table entries must invoke MMU notifi… |
CWE-416
Use After Free |
CVE-2022-48991 | 2024-11-8 04:36 | 2024-10-22 | Show | GitHub Exploit DB Packet Storm |
| 312927 | 4.7 |
MEDIUM
Local |
linux | linux_kernel | In the Linux kernel, the following vulnerability has been resolved: net: mana: Fix race on per-CQ variable napi work_done After calling napi_complete_done(), the NAPIF_STATE_SCHED bit may be cleare… |
NVD-CWE-noinfo
|
CVE-2022-48985 | 2024-11-8 04:35 | 2024-10-22 | Show | GitHub Exploit DB Packet Storm |
| 312928 | 5.5 |
MEDIUM
Local |
linux | linux_kernel | In the Linux kernel, the following vulnerability has been resolved: bpf: support non-r10 register spill/fill to/from stack in precision tracking Use instruction (jump) history to record instruction… |
CWE-476
NULL Pointer Dereference |
CVE-2023-52920 | 2024-11-8 04:31 | 2024-11-5 | Show | GitHub Exploit DB Packet Storm |
| 312929 | 5.5 |
MEDIUM
Local |
linux | linux_kernel | In the Linux kernel, the following vulnerability has been resolved: ext4: filesystems without casefold feature cannot be mounted with siphash When mounting the ext4 filesystem, if the default hash … |
NVD-CWE-noinfo
|
CVE-2024-49968 | 2024-11-8 04:28 | 2024-10-22 | Show | GitHub Exploit DB Packet Storm |
| 312930 | 5.5 |
MEDIUM
Local |
linux | linux_kernel | In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: update DML2 policy EnhancedPrefetchScheduleAccelerationFinal DCN35 [WHY & HOW] Mismatch in DCN35 DML2 cause bw v… |
NVD-CWE-noinfo
|
CVE-2024-50004 | 2024-11-8 04:27 | 2024-10-22 | Show | GitHub Exploit DB Packet Storm |