Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3481 7.8 重要
Local 		OpenClaw OpenClaw OpenClawにおける信頼できない制御領域からの機能の組み込みに関する脆弱性 CWE-829
信頼性のない制御領域からの機能の組み込み 		CVE-2026-41295 2026-04-30 12:26 2026-04-21 Show GitHub Exploit DB Packet Storm
3482 8.2 重要
Network 		OpenClaw OpenClaw OpenClawにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 CWE-367
Time-of-check Time-of-use (TOCTOU) 競合状態 		CVE-2026-41296 2026-04-30 12:26 2026-04-21 Show GitHub Exploit DB Packet Storm
3483 7.6 重要
Network 		OpenClaw OpenClaw OpenClawにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-41297 2026-04-30 12:26 2026-04-21 Show GitHub Exploit DB Packet Storm
3484 5.4 警告
Network 		OpenClaw OpenClaw OpenClawにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-41298 2026-04-30 12:26 2026-04-21 Show GitHub Exploit DB Packet Storm
3485 7.1 重要
Network 		OpenClaw OpenClaw OpenClawにおけるセキュリティ決定の信頼できない入力への依存に関する脆弱性 CWE-807
セキュリティ決定の信頼できない入力への依存 		CVE-2026-41299 2026-04-30 12:26 2026-04-21 Show GitHub Exploit DB Packet Storm
3486 6.5 警告
Network 		OpenClaw OpenClaw OpenClawにおける不完全な内部状態の区別に関する脆弱性 CWE-372
不完全な内部状態の区別 		CVE-2026-41300 2026-04-30 12:26 2026-04-21 Show GitHub Exploit DB Packet Storm
3487 5.3 警告
Network 		OpenClaw OpenClaw OpenClawにおけるデジタル署名の検証に関する脆弱性 CWE-347
デジタル署名の不適切な検証 		CVE-2026-41301 2026-04-30 12:26 2026-04-21 Show GitHub Exploit DB Packet Storm
3488 6.3 警告
Network 		OpenClaw OpenClaw OpenClawにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-41302 2026-04-30 12:26 2026-04-21 Show GitHub Exploit DB Packet Storm
3489 8.8 重要
Network 		OpenClaw OpenClaw OpenClawにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-41303 2026-04-30 12:26 2026-04-21 Show GitHub Exploit DB Packet Storm
3490 6.5 警告
Network 		pypdf project pypdf pypdf projectのpypdfにおける過剰なサイズ値のメモリ割り当てに関する脆弱性 CWE-789
過剰なサイズ値のメモリ割り当て 		CVE-2026-41312 2026-04-30 12:26 2026-04-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
315491 4.6 MEDIUM
Network 		xwiki xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. When uploading an attachment with a malicious filename, malicious JavaScript code could be exe… CWE-94
Code Injection 		CVE-2024-37900 2024-09-7 06:06 2024-08-1 Show GitHub Exploit DB Packet Storm
315492 8.8 HIGH
Network 		xwiki xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Any user with edit right on any page can perform arbitrary remote code execution by adding ins… CWE-94
Code Injection 		CVE-2024-37901 2024-09-7 05:54 2024-08-1 Show GitHub Exploit DB Packet Storm
315493 5.4 MEDIUM
Network 		xwiki xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. By creating a conflict when another user with more rights is currently editing a page, it is p… CWE-79
Cross-site Scripting 		CVE-2024-41947 2024-09-7 05:46 2024-08-1 Show GitHub Exploit DB Packet Storm
315494 7.5 HIGH
Network 		intel ethernet_800_series_controllers_driver Protection mechanism failure in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters E810 Series before version 28.3 may allow an unauthenticated user to potentially e… NVD-CWE-noinfo
CVE-2024-23499 2024-09-7 05:43 2024-08-14 Show GitHub Exploit DB Packet Storm
315495 7.8 HIGH
Local 		intel oneapi_dpc\+\+\/c\+\+_compiler
high_level_synthesis_compiler
quartus_prime 		Uncontrolled search path in some Intel(R) High Level Synthesis Compiler software before version 23.4 may allow an authenticated user to potentially enable escalation of privilege via local access. CWE-427
 Uncontrolled Search Path Element 		CVE-2024-23907 2024-09-7 05:38 2024-08-14 Show GitHub Exploit DB Packet Storm
315496 7.8 HIGH
Local 		intel field_programmable_gate_array_software_development_kit_for_opencl Uncontrolled search path in some Intel(R) FPGA SDK for OpenCL(TM) software technology may allow an authenticated user to potentially enable escalation of privilege via local access. CWE-427
 Uncontrolled Search Path Element 		CVE-2024-23909 2024-09-7 05:33 2024-08-14 Show GitHub Exploit DB Packet Storm
315497 8.8 HIGH
Local 		intel ethernet_800_series_controllers_driver Wrap-around error in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters before version 28.3 may allow an authenticated user to potentially enable escalation of privi… CWE-682
 Incorrect Calculation 		CVE-2024-23981 2024-09-7 05:27 2024-08-14 Show GitHub Exploit DB Packet Storm
315498 8.8 HIGH
Local 		intel ethernet_800_series_controllers_driver Improper access control in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters before version 28.3 may allow an authenticated user to potentially enable escalation of… NVD-CWE-noinfo
CVE-2024-24986 2024-09-7 05:23 2024-08-14 Show GitHub Exploit DB Packet Storm
315499 7.9 HIGH
Local 		intel agilex_7_fpga_firmware improper access control in firmware for some Intel(R) FPGA products before version 24.1 may allow a privileged user to enable escalation of privilege via local access. NVD-CWE-noinfo
CVE-2024-25576 2024-09-7 05:17 2024-08-14 Show GitHub Exploit DB Packet Storm
315500 7.8 HIGH
Local 		intel aptio_v_uefi_firmware_integrator_tools Improper access control in some Intel(R) UEFI Integrator Tools on Aptio V for Intel(R) NUC may allow an authenticated user to potentially enable escalation of privilege via local access. NVD-CWE-noinfo
CVE-2024-26022 2024-09-7 05:16 2024-08-14 Show GitHub Exploit DB Packet Storm