Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3391	5	警告 Local	オラクル	MySQL	オラクルのMySQLにおけるリクエストに対するレスポンス内容の違いに起因する情報漏えいに関する脆弱性	CWE-204 リクエストに対するレスポンス内容の違いに起因する情報漏えい	CVE-2026-34319	2026-05-7 10:51	2026-04-21	Show	GitHub Exploit DB Packet Storm

3392	7.5	重要 Network	オラクル	Java VM	オラクルのJava VMにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-35229	2026-05-7 10:51	2026-04-21	Show	GitHub Exploit DB Packet Storm

3393	4.4	警告 Local	オラクル	Oracle Linux	オラクルのOracle Linuxにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-35233	2026-05-7 10:51	2026-05-1	Show	GitHub Exploit DB Packet Storm

3394	5.2	警告 Network	オラクル	Hyperion Infrastructure Technology	オラクルのHyperion Infrastructure Technologyにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-35244	2026-05-7 10:51	2026-04-21	Show	GitHub Exploit DB Packet Storm

3395	9.1	緊急 Network	Volcengine	OpenViking	VolcengineのOpenVikingにおける安全でない失敗処理に関する脆弱性	CWE-636 安全でない失敗処理	CVE-2026-40525	2026-05-7 10:51	2026-04-17	Show	GitHub Exploit DB Packet Storm

3396	7.1	重要 Network	Apache Software Foundation	Apache Atlas	Apache Software FoundationのApache Atlasにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-40563	2026-05-7 10:51	2026-05-4	Show	GitHub Exploit DB Packet Storm

3397	8.8	重要 Adjacent	Espressif Systems	ESP32 Arduino	Espressif SystemsのESP32 Arduinoにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-41429	2026-05-7 10:51	2026-04-24	Show	GitHub Exploit DB Packet Storm

3398	9	緊急 Network	Jenkins プロジェクト	GitHub	JenkinsのGitHubにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42523	2026-05-7 10:51	2026-04-29	Show	GitHub Exploit DB Packet Storm

3399	8	重要 Network	Jenkins プロジェクト	HTML Publisher Plugin	JenkinsのHTML Publisher Pluginにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42524	2026-05-7 10:51	2026-04-29	Show	GitHub Exploit DB Packet Storm

3400	4.3	警告 Network	Jenkins プロジェクト	Azure AD	JenkinsのAzure ADにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2026-42525	2026-05-7 10:51	2026-04-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
316961	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ixgbe: fix pci device refcount leak As the comment of pci_get_domain_bus_and_slot() says, it returns a PCI device with refcount i…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2022-48896	2024-09-12 01:06	2024-08-21	Show	GitHub Exploit DB Packet Storm

316962	5.3	MEDIUM Network	erjemin	roll_cms	A vulnerability was found in erjemin roll_cms up to 1484fe2c4e0805946a7bcf46218509fcb34883a9. It has been classified as problematic. This affects an unknown part of the file roll_cms/roll_cms/views.p…	CWE-209 Information Exposure Through an Error Message	CVE-2024-8571	2024-09-12 01:05	2024-09-8	Show	GitHub Exploit DB Packet Storm

316963	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: iommu/arm-smmu: Don't unregister on shutdown Michael Walle says he noticed the following stack trace while performing a shutdown …	CWE-476 NULL Pointer Dereference	CVE-2022-48895	2024-09-12 01:01	2024-08-21	Show	GitHub Exploit DB Packet Storm

316964	6.1	MEDIUM Network	gouniverse	golang_cms	A vulnerability was found in Gouniverse GoLang CMS 1.4.0. It has been declared as problematic. This vulnerability affects the function PageRenderHtmlByAlias of the file FrontendHandler.go. The manipu…	CWE-79 Cross-site Scripting	CVE-2024-8572	2024-09-12 00:59	2024-09-8	Show	GitHub Exploit DB Packet Storm

316965	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: iommu/arm-smmu-v3: Don't unregister on shutdown Similar to SMMUv2, this driver calls iommu_device_unregister() from the shutdown …	CWE-476 NULL Pointer Dereference	CVE-2022-48894	2024-09-12 00:58	2024-08-21	Show	GitHub Exploit DB Packet Storm

316966	6.1	MEDIUM Network	loway	queuemetrics	Loway - CWE-601: URL Redirection to Untrusted Site ('Open Redirect')	CWE-601 Open Redirect	CVE-2024-42341	2024-09-12 00:57	2024-09-8	Show	GitHub Exploit DB Packet Storm

316967	7.5	HIGH Network	loway	queuemetrics	Loway - CWE-204: Observable Response Discrepancy	CWE-203 Information Exposure Through Discrepancy	CVE-2024-42343	2024-09-12 00:56	2024-09-8	Show	GitHub Exploit DB Packet Storm

316968	4.3	MEDIUM Network	loway	queuemetrics	Loway - CWE-444: Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')	CWE-444 HTTP Request Smuggling	CVE-2024-42342	2024-09-12 00:56	2024-09-8	Show	GitHub Exploit DB Packet Storm

316969	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/i915/gt: Cleanup partial engine discovery failures If we abort driver initialisation in the middle of gt/engine discovery, so…	CWE-459 Incomplete Cleanup	CVE-2022-48893	2024-09-12 00:55	2024-08-21	Show	GitHub Exploit DB Packet Storm

316970	6.5	MEDIUM Network	learningdigital	orca_hcm	Orca HCM from LEARNING DIGITA does not properly restrict a specific parameter of the file download functionality, allowing a remote attacker with regular privileges to download arbitrary system files.	CWE-22 Path Traversal	CVE-2024-8585	2024-09-12 00:53	2024-09-9	Show	GitHub Exploit DB Packet Storm