Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3431 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおけるゼロ除算に関する脆弱性 CWE-369
ゼロ除算 		CVE-2026-31603 2026-05-1 10:48 2026-04-24 Show GitHub Exploit DB Packet Storm
3432 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2026-31604 2026-05-1 10:48 2026-04-24 Show GitHub Exploit DB Packet Storm
3433 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおけるゼロ除算に関する脆弱性 CWE-369
ゼロ除算 		CVE-2026-31605 2026-05-1 10:48 2026-04-24 Show GitHub Exploit DB Packet Storm
3434 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2026-31606 2026-05-1 10:48 2026-04-24 Show GitHub Exploit DB Packet Storm
3435 9.8 緊急
Network 		Linux Linux Kernel LinuxのLinux Kernelにおける二重解放に関する脆弱性 CWE-415
二重解放 		CVE-2026-31608 2026-05-1 10:48 2026-04-24 Show GitHub Exploit DB Packet Storm
3436 7.1 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-31614 2026-05-1 10:48 2026-04-24 Show GitHub Exploit DB Packet Storm
3437 7.5 重要
Network 		Tinyproxy project Tinyproxy Tinyproxy projectのTinyproxyにおけるHTTP リクエストスマグリングに関する脆弱性 CWE-444
HTTP リクエストスマグリング 		CVE-2026-31842 2026-05-1 10:48 2026-04-7 Show GitHub Exploit DB Packet Storm
3438 8 重要
Network 		マイクロソフト Microsoft Power Apps Microsoft Power Apps のリモートでコードが実行される脆弱性 CWE-427
制御されていない検索パスの要素 		CVE-2026-32172 2026-05-1 10:48 2026-04-23 Show GitHub Exploit DB Packet Storm
3439 7.1 重要
Local 		マイクロソフト Microsoft Office
Microsoft Excel
Office Long Term Servicing Channel (LTSC)
Microsoft 365 Apps
Microsoft Office Online Server 		Microsoft Excel の情報漏えいの脆弱性 CWE-125
境界外読み取り 		CVE-2026-32188 2026-05-1 10:48 2026-04-14 Show GitHub Exploit DB Packet Storm
3440 7.8 重要
Local 		マイクロソフト Microsoft Office
Microsoft Excel
Office Long Term Servicing Channel (LTSC)
Microsoft 365 Apps
Microsoft Office Online Server 		Microsoft Excel のリモートでコードが実行される脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-32189 2026-05-1 10:48 2026-04-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
315831 4.7 MEDIUM
Network 		qnap qts
quts_hero 		An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute commands … CWE-78
OS Command  		CVE-2024-21906 2024-09-21 01:49 2024-09-7 Show GitHub Exploit DB Packet Storm
315832 9.8 CRITICAL
Network 		playsms playsms A vulnerability classified as critical has been found in playSMS 1.4.4/1.4.5/1.4.6/1.4.7. Affected is an unknown function of the file /playsms/index.php?app=main&inc=core_auth&route=forgot&op=forgot … CWE-94
Code Injection 		CVE-2024-8880 2024-09-21 01:41 2024-09-16 Show GitHub Exploit DB Packet Storm
315833 7.8 HIGH
Local 		qnap qts
quts_hero 		A missing authorization vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow local authenticated users to access data or perfo… CWE-862
 Missing Authorization 		CVE-2023-39298 2024-09-21 01:39 2024-09-7 Show GitHub Exploit DB Packet Storm
315834 6.1 MEDIUM
Network 		intumit smartrobot_firmware SmartRobot from INTUMIT does not properly validate a specific page parameter, allowing unautheticated remote attackers to inject JavaScript code to the parameter for Reflected Cross-site Scripting at… CWE-79
Cross-site Scripting 		CVE-2024-8776 2024-09-21 01:38 2024-09-16 Show GitHub Exploit DB Packet Storm
315835 2.4 LOW
Adjacent 		qnap qts
quts_hero 		An improper restriction of excessive authentication attempts vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow local networ… CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2024-32771 2024-09-21 01:38 2024-09-7 Show GitHub Exploit DB Packet Storm
315836 7.5 HIGH
Network 		openjsf body-parser body-parser is Node.js body parsing middleware. body-parser <1.20.3 is vulnerable to denial of service when url encoding is enabled. A malicious actor using a specially crafted payload could flood th… NVD-CWE-noinfo
CVE-2024-45590 2024-09-21 01:26 2024-09-11 Show GitHub Exploit DB Packet Storm
315837 2.7 LOW
Network 		fortinet fortiedrmanager An improper access control vulnerability [CWE-284] in FortiEDR Manager API 6.2.0 through 6.2.2, 6.0 all versions may allow in a shared environment context an authenticated admin with REST API permiss… NVD-CWE-Other
CVE-2024-45323 2024-09-21 01:23 2024-09-11 Show GitHub Exploit DB Packet Storm
315838 5.3 MEDIUM
Network 		lizardbyte sunshine Sunshine is a self-hosted game stream host for Moonlight. Clients that experience a MITM attack during the pairing process may inadvertantly allow access to an unintended client rather than failing a… NVD-CWE-noinfo
CVE-2024-45407 2024-09-21 01:18 2024-09-11 Show GitHub Exploit DB Packet Storm
315839 4.7 MEDIUM
Network 		openjsf express Express.js minimalist web framework for node. In express < 4.20.0, passing untrusted user input - even after sanitizing it - to response.redirect() may execute untrusted code. This issue is patched i… CWE-79
Cross-site Scripting 		CVE-2024-43796 2024-09-21 01:07 2024-09-11 Show GitHub Exploit DB Packet Storm
315840 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: nfsd: fix nfsd4_deleg_getattr_conflict in presence of third party lease It is not safe to dereference fl->c.flc_owner without fir… NVD-CWE-noinfo
CVE-2024-46690 2024-09-21 00:55 2024-09-13 Show GitHub Exploit DB Packet Storm