Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 12:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3501	7.1	重要 Local	Open CASCADE Technology (OCCT)	Open CASCADE Technology (OCCT)	Open CASCADE Technology (OCCT)における境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-42477	2026-05-7 12:00	2026-05-1	Show	GitHub Exploit DB Packet Storm

3502	7.5	重要 Network	Open CASCADE Technology (OCCT)	Open CASCADE Technology (OCCT)	Open CASCADE Technology (OCCT)における複数の脆弱性	CWE-125 CWE-476	CVE-2026-42478	2026-05-7 12:00	2026-05-1	Show	GitHub Exploit DB Packet Storm

3503	5.5	警告 Local	Open CASCADE Technology (OCCT)	Open CASCADE Technology (OCCT)	Open CASCADE Technology (OCCT)における境界外読み取りに関する脆弱性	CWE-125 CWE-125	CVE-2026-42479	2026-05-7 12:00	2026-05-1	Show	GitHub Exploit DB Packet Storm

3504	9.8	緊急 Network	hashcat	hashcat	hashcatにおける複数の脆弱性	CWE-121 CWE-787	CVE-2026-42482	2026-05-7 12:00	2026-05-1	Show	GitHub Exploit DB Packet Storm

3505	9.8	緊急 Network	hashcat	hashcat	hashcatにおける複数の脆弱性	CWE-122 CWE-787	CVE-2026-42483	2026-05-7 12:00	2026-05-1	Show	GitHub Exploit DB Packet Storm

3506	9.8	緊急 Network	hashcat	hashcat	hashcatにおける境界外書き込みに関する脆弱性	CWE-787 CWE-787	CVE-2026-42484	2026-05-7 12:00	2026-05-1	Show	GitHub Exploit DB Packet Storm

3507	9.1	緊急 Network	Technostrobe	HI-LED-WR120-G2 Firmware	TechnostrobeのHI-LED-WR120-G2 Firmwareにおける複数の脆弱性	CWE-862 CWE-863	CVE-2026-5574	2026-05-7 12:00	2026-04-5	Show	GitHub Exploit DB Packet Storm

3508	7.1	重要 Local	レッドハット Xiph.Org	Red Hat Enterprise Linux Theora	レッドハット等の複数ベンダの製品における境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-5673	2026-05-7 12:00	2026-04-6	Show	GitHub Exploit DB Packet Storm

3509	9.8	緊急 Network	Sipeed	Picoclaw	SipeedのPicoclawにおける複数の脆弱性	CWE-74 CWE-77	CVE-2026-6987	2026-05-7 12:00	2026-04-25	Show	GitHub Exploit DB Packet Storm

3510	8.8	重要 Network	Coze	Coze Studio	CozeのCoze Studioにおける複数の脆弱性	CWE-74 CWE-89	CVE-2026-7023	2026-05-7 12:00	2026-04-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
316971	6.1	MEDIUM Network	mlewand	open_link	ckeditor-plugin-openlink is a plugin for the CKEditor JavaScript text editor that extends the context menu with a possibility to open a link in a new tab. A vulnerability in versions of the plugin pr…	CWE-79 Cross-site Scripting	CVE-2024-45400	2024-09-20 03:04	2024-09-6	Show	GitHub Exploit DB Packet Storm

316972	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: erofs: fix out-of-bound access when z_erofs_gbuf_growsize() partially fails If z_erofs_gbuf_growsize() partially fails on a globa…	CWE-787 Out-of-bounds Write	CVE-2024-46688	2024-09-20 03:01	2024-09-13	Show	GitHub Exploit DB Packet Storm

316973	5.3	MEDIUM Network	apple	visionos	The issue was addressed by suspending Persona when the virtual keyboard is active. This issue is fixed in visionOS 1.3. Inputs to the virtual keyboard may be inferred from Persona.	NVD-CWE-noinfo	CVE-2024-40865	2024-09-20 02:58	2024-09-6	Show	GitHub Exploit DB Packet Storm

316974	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: nfsd: ensure that nfsd4_fattr_args.context is zeroed out If nfsd4_encode_fattr4 ends up doing a "goto out" before we get to check…	CWE-665 Improper Initialization	CVE-2024-46697	2024-09-20 02:53	2024-09-13	Show	GitHub Exploit DB Packet Storm

316975	9.8	CRITICAL Network	flycass	flycass	FlyCASS CASS and KCM systems did not correctly filter SQL queries, which made them vulnerable to attack by outside attackers with no authentication.	CWE-89 SQL Injection	CVE-2024-8395	2024-09-20 02:53	2024-09-6	Show	GitHub Exploit DB Packet Storm

316976	4.4	MEDIUM Local	tcpdump	libpcap	In affected libpcap versions during the setup of a remote packet capture the internal function sock_initaddress() calls getaddrinfo() and possibly freeaddrinfo(), but does not clearly indicate to the…	CWE-415 Double Free	CVE-2023-7256	2024-09-20 02:53	2024-08-31	Show	GitHub Exploit DB Packet Storm

316977	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: tty: serial: fsl_lpuart: mark last busy before uart_add_one_port With "earlycon initcall_debug=1 loglevel=8" in bootargs, kernel …	NVD-CWE-noinfo	CVE-2024-46706	2024-09-20 02:51	2024-09-13	Show	GitHub Exploit DB Packet Storm

316978	4.4	MEDIUM Local	tcpdump	libpcap	Remote packet capture support is disabled by default in libpcap. When a user builds libpcap with remote packet capture support enabled, one of the functions that become available is pcap_findalldevs…	CWE-476 NULL Pointer Dereference	CVE-2024-8006	2024-09-20 02:46	2024-08-31	Show	GitHub Exploit DB Packet Storm

316979	4.9	MEDIUM Network	jpress	jpress	A vulnerability has been found in jpress up to 5.1.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/template/edit of the component Template …	CWE-22 Path Traversal	CVE-2024-8304	2024-09-20 02:39	2024-08-30	Show	GitHub Exploit DB Packet Storm

316980	6.5	MEDIUM Network	openzeppelin	contracts	Cairo-Contracts are OpenZeppelin Contracts written in Cairo for Starknet, a decentralized ZK Rollup. This vulnerability can lead to unauthorized ownership transfer, contrary to the original owner's i…	CWE-670 Always-Incorrect Control Flow Implementation	CVE-2024-45304	2024-09-20 02:26	2024-08-31	Show	GitHub Exploit DB Packet Storm