Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3421 8.2 重要
Network 		libssh
レッドハット		 Red Hat OpenShift Container Platform
Red Hat Enterprise Linux
libssh
Red Hat Hardened Images 		libssh等の複数ベンダの製品におけるバッファアンダーフローの脆弱性 CWE-124
バッファアンダーフロー 		CVE-2026-0966 2026-05-1 10:49 2026-03-26 Show GitHub Exploit DB Packet Storm
3422 5.3 警告
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける整数アンダーフローの脆弱性 CWE-191
整数アンダーフロー 		CVE-2026-1005 2026-05-1 10:49 2026-03-19 Show GitHub Exploit DB Packet Storm
3423 7.8 重要
Local 		マイクロソフト Microsoft 365 Apps
Office Long Term Servicing Channel (LTSC) 		Microsoft Word のリモートでコードが実行される脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-23657 2026-05-1 10:49 2026-04-14 Show GitHub Exploit DB Packet Storm
3424 7.5 重要
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおけるセキュリティチェックに関する脆弱性 CWE-358
不適切に実装されたセキュリティチェック 		CVE-2026-2645 2026-05-1 10:48 2026-03-19 Show GitHub Exploit DB Packet Storm
3425 8.1 重要
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける複数の脆弱性 CWE-122
CWE-787
CVE-2026-2646 2026-05-1 10:48 2026-03-19 Show GitHub Exploit DB Packet Storm
3426 7.5 重要
Network 		Linux Linux Kernel LinuxのLinux Kernelにおけるリソースのロックに関する脆弱性 CWE-667
不適切なロック 		CVE-2026-31598 2026-05-1 10:48 2026-04-24 Show GitHub Exploit DB Packet Storm
3427 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-31599 2026-05-1 10:48 2026-04-24 Show GitHub Exploit DB Packet Storm
3428 7.5 重要
Network 		Linux Linux Kernel LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-31600 2026-05-1 10:48 2026-04-24 Show GitHub Exploit DB Packet Storm
3429 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-31601 2026-05-1 10:48 2026-04-24 Show GitHub Exploit DB Packet Storm
3430 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-31602 2026-05-1 10:48 2026-04-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313791 - - - mlocate's %post script allows RUN_UPDATEDB_AS user to make arbitrary files world readable by abusing insecure file operations that run with root privileges. - CVE-2023-32190 2024-10-17 01:38 2024-10-16 Show GitHub Exploit DB Packet Storm
313792 6.4 MEDIUM
Network 		- - The Zita Elementor Site Library plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.6.3 due to insufficient input sanitizati… CWE-79
Cross-site Scripting 		CVE-2024-8921 2024-10-17 01:38 2024-10-16 Show GitHub Exploit DB Packet Storm
313793 6.4 MEDIUM
Network 		- - The ElementsReady Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 6.4.3 due to insufficient input san… CWE-79
Cross-site Scripting 		CVE-2024-9444 2024-10-17 01:38 2024-10-16 Show GitHub Exploit DB Packet Storm
313794 - - - Opening an external link to an HTTP website when Firefox iOS was previously closed and had an HTTPS tab open could in some cases result in the padlock icon showing an HTTPS indicator incorrectly This… - CVE-2024-10004 2024-10-17 01:38 2024-10-16 Show GitHub Exploit DB Packet Storm
313795 - - - Use after free in ParcelTracking in Google Chrome on iOS prior to 130.0.6723.58 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption… - CVE-2024-9961 2024-10-17 01:38 2024-10-16 Show GitHub Exploit DB Packet Storm
313796 - - - Use after free in Dawn in Google Chrome prior to 130.0.6723.58 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium) - CVE-2024-9960 2024-10-17 01:38 2024-10-16 Show GitHub Exploit DB Packet Storm
313797 - - - Use after free in DevTools in Google Chrome prior to 130.0.6723.58 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted Chrome Exten… - CVE-2024-9959 2024-10-17 01:38 2024-10-16 Show GitHub Exploit DB Packet Storm
313798 - - - Use after free in UI in Google Chrome on iOS prior to 130.0.6723.58 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a craft… - CVE-2024-9957 2024-10-17 01:38 2024-10-16 Show GitHub Exploit DB Packet Storm
313799 - - - Inappropriate implementation in WebAuthentication in Google Chrome on Android prior to 130.0.6723.58 allowed a local attacker to perform privilege escalation via a crafted HTML page. (Chromium securi… - CVE-2024-9956 2024-10-17 01:38 2024-10-16 Show GitHub Exploit DB Packet Storm
313800 - - - Use after free in WebAuthentication in Google Chrome prior to 130.0.6723.58 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medi… - CVE-2024-9955 2024-10-17 01:38 2024-10-16 Show GitHub Exploit DB Packet Storm