Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3401	10	緊急 Network	traefik	traefik	traefikにおける複数の脆弱性	CWE-290 CWE-306	CVE-2026-39858	2026-05-7 12:05	2026-04-30	Show	GitHub Exploit DB Packet Storm

3402	7.2	重要 Network	Progress Software Corporation	ECS Connection Manager loadmaster Connection Manager for ObjectScale	Progress Software CorporationのConnection Manager for ObjectScale等の複数製品におけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-4048	2026-05-7 12:05	2026-04-20	Show	GitHub Exploit DB Packet Storm

3403	7.8	重要 Local	radare	radare2	radareのradare2におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-40499	2026-05-7 12:05	2026-04-15	Show	GitHub Exploit DB Packet Storm

3404	7.3	重要 Network	Apache Software Foundation	HttpClient	Apache Software FoundationのHttpClientにおける認証の重要なステップの欠如に関する脆弱性	CWE-304 認証の重要なステップの欠如	CVE-2026-40542	2026-05-7 12:05	2026-04-22	Show	GitHub Exploit DB Packet Storm

3405	9.1	緊急 Network	goshs	goshs	goshsにおける信頼できない制御領域からの機能の組み込みに関する脆弱性	CWE-829 信頼性のない制御領域からの機能の組み込み	CVE-2026-40903	2026-05-7 12:05	2026-04-21	Show	GitHub Exploit DB Packet Storm

3406	8.2	重要 Network	traefik	traefik	traefikにおける誤って解決された名前や参照の使用に関する脆弱性	CWE-706 誤って解決された名前や参照の使用	CVE-2026-40912	2026-05-7 12:05	2026-04-30	Show	GitHub Exploit DB Packet Storm

3407	5.9	警告 Network	Apache Software Foundation	Apache Airflow	Apache Software FoundationのApache Airflowにおける証明書検証に関する脆弱性	CWE-295 不正な証明書検証	CVE-2026-41016	2026-05-7 12:05	2026-04-30	Show	GitHub Exploit DB Packet Storm

3408	6.4	警告 Network	traefik	traefik	traefikにおける複数の脆弱性	CWE-653 CWE-863	CVE-2026-41174	2026-05-7 12:05	2026-04-30	Show	GitHub Exploit DB Packet Storm

3409	3.7	低 Network	traefik	traefik	traefikにおけるタイミングの違いに起因する情報漏えいに関する脆弱性	CWE-208 タイミングの違いに起因する情報漏えい	CVE-2026-41263	2026-05-7 12:05	2026-04-30	Show	GitHub Exploit DB Packet Storm

3410	8.1	重要 Network	OpenClaw	OpenClaw	OpenClawにおける不変と仮定される Web パラメータの外部制御に関する脆弱性	CWE-472 不変と仮定される Web パラメータの外部制御	CVE-2026-41353	2026-05-7 12:05	2026-04-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
317161	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: erofs: fix out-of-bound access when z_erofs_gbuf_growsize() partially fails If z_erofs_gbuf_growsize() partially fails on a globa…	CWE-787 Out-of-bounds Write	CVE-2024-46688	2024-09-20 03:01	2024-09-13	Show	GitHub Exploit DB Packet Storm

317162	5.3	MEDIUM Network	apple	visionos	The issue was addressed by suspending Persona when the virtual keyboard is active. This issue is fixed in visionOS 1.3. Inputs to the virtual keyboard may be inferred from Persona.	NVD-CWE-noinfo	CVE-2024-40865	2024-09-20 02:58	2024-09-6	Show	GitHub Exploit DB Packet Storm

317163	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: nfsd: ensure that nfsd4_fattr_args.context is zeroed out If nfsd4_encode_fattr4 ends up doing a "goto out" before we get to check…	CWE-665 Improper Initialization	CVE-2024-46697	2024-09-20 02:53	2024-09-13	Show	GitHub Exploit DB Packet Storm

317164	9.8	CRITICAL Network	flycass	flycass	FlyCASS CASS and KCM systems did not correctly filter SQL queries, which made them vulnerable to attack by outside attackers with no authentication.	CWE-89 SQL Injection	CVE-2024-8395	2024-09-20 02:53	2024-09-6	Show	GitHub Exploit DB Packet Storm

317165	4.4	MEDIUM Local	tcpdump	libpcap	In affected libpcap versions during the setup of a remote packet capture the internal function sock_initaddress() calls getaddrinfo() and possibly freeaddrinfo(), but does not clearly indicate to the…	CWE-415 Double Free	CVE-2023-7256	2024-09-20 02:53	2024-08-31	Show	GitHub Exploit DB Packet Storm

317166	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: tty: serial: fsl_lpuart: mark last busy before uart_add_one_port With "earlycon initcall_debug=1 loglevel=8" in bootargs, kernel …	NVD-CWE-noinfo	CVE-2024-46706	2024-09-20 02:51	2024-09-13	Show	GitHub Exploit DB Packet Storm

317167	4.4	MEDIUM Local	tcpdump	libpcap	Remote packet capture support is disabled by default in libpcap. When a user builds libpcap with remote packet capture support enabled, one of the functions that become available is pcap_findalldevs…	CWE-476 NULL Pointer Dereference	CVE-2024-8006	2024-09-20 02:46	2024-08-31	Show	GitHub Exploit DB Packet Storm

317168	4.9	MEDIUM Network	jpress	jpress	A vulnerability has been found in jpress up to 5.1.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/template/edit of the component Template …	CWE-22 Path Traversal	CVE-2024-8304	2024-09-20 02:39	2024-08-30	Show	GitHub Exploit DB Packet Storm

317169	6.5	MEDIUM Network	openzeppelin	contracts	Cairo-Contracts are OpenZeppelin Contracts written in Cairo for Starknet, a decentralized ZK Rollup. This vulnerability can lead to unauthorized ownership transfer, contrary to the original owner's i…	CWE-670 Always-Incorrect Control Flow Implementation	CVE-2024-45304	2024-09-20 02:26	2024-08-31	Show	GitHub Exploit DB Packet Storm

317170	4.3	MEDIUM Network	teamviewer	meeting teamviewer	Improper access control in the clipboard synchronization feature in TeamViewer Full Client prior version 15.57 and TeamViewer Meeting prior version 15.55.3 can lead to unintentional sharing of the cl…	NVD-CWE-Other	CVE-2024-6053	2024-09-20 02:22	2024-08-29	Show	GitHub Exploit DB Packet Storm