Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 12:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3521 7.5 重要
Network 		The Prosody Team Prosody The Prosody TeamのProsodyにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-43507 2026-05-7 11:59 2026-05-1 Show GitHub Exploit DB Packet Storm
3522 7.5 重要
Network 		Debian
GStreamer
レッドハット		 GStreamer
Debian GNU/Linux
Red Hat Enterprise Linux
GStreamer Good Plug-ins 		Debian等の複数ベンダの製品における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-1940 2026-05-7 11:31 2026-03-23 Show GitHub Exploit DB Packet Storm
3523 9.8 緊急
Network 		OPPO ColorOS Assistant OPPOのColorOS Assistantにおける複数の脆弱性 CWE-22
CWE-23
CVE-2026-22070 2026-05-7 11:31 2026-04-30 Show GitHub Exploit DB Packet Storm
3524 8.8 重要
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-42364 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
3525 7.5 重要
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品における観測された状態からの推測に関する脆弱性 CWE-341
観測された状態からの推測 		CVE-2026-42365 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
3526 6.1 警告
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-42366 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
3527 6.5 警告
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品における認証情報の不十分な保護に関する脆弱性 CWE-522
認証情報の不十分な保護 		CVE-2026-42367 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
3528 9.9 緊急
Network 		GeoVision GV-LPC2211 Firmware
GV-LPC2011 Firmware 		GeoVisionのGV-LPC2011 Firmware等の複数製品における不適切な権限設定に関する脆弱性 CWE-266
不適切な権限設定 		CVE-2026-42368 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
3529 9.8 緊急
Network 		GeoVision GV-VMS Firmware GeoVisionのGV-VMS Firmwareにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-42370 2026-05-7 11:31 2026-05-4 Show GitHub Exploit DB Packet Storm
3530 9.8 緊急
Network 		Bitwarden Bitwarden Command-line Interface BitwardenのBitwarden Command-line Interfaceにおける複数の脆弱性 CWE-78
CWE-94
CVE-2026-42994 2026-05-7 11:31 2026-05-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313321 8.8 HIGH
Local 		apple macos A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS Sequoia 15, macOS Sonoma 14.7.1. An application may be able to break out of its sandbox. NVD-CWE-noinfo
CVE-2024-44122 2024-10-30 02:38 2024-10-29 Show GitHub Exploit DB Packet Storm
313322 5.5 MEDIUM
Local 		hp oneview This vulnerability could be exploited, leading to unauthorized disclosure of information to authenticated users. NVD-CWE-noinfo
CVE-2024-42508 2024-10-30 02:38 2024-10-19 Show GitHub Exploit DB Packet Storm
313323 2.3 LOW
Local 		apple macos
iphone_os
ipados 		A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15, iOS 18 and iPadOS 18. A malicious app with root privileges may be able to access keyboard inpu… NVD-CWE-noinfo
CVE-2024-44123 2024-10-30 02:37 2024-10-29 Show GitHub Exploit DB Packet Storm
313324 - - - Money Manager EX WebApp (web-money-manager-ex) 1.2.2 is vulnerable to SQL Injection in the `transaction_delete_group` function. The vulnerability is due to improper sanitization of user input in the … - CVE-2024-41618 2024-10-30 02:35 2024-10-25 Show GitHub Exploit DB Packet Storm
313325 - - - Money Manager EX WebApp (web-money-manager-ex) 1.2.2 is vulnerable to Incorrect Access Control. The `redirect_if_not_loggedin` function in `functions_security.php` fails to terminate script execution… - CVE-2024-41617 2024-10-30 02:35 2024-10-25 Show GitHub Exploit DB Packet Storm
313326 6.5 MEDIUM
Network 		apple macos
watchos
safari
iphone_os
ipados 		A custom URL scheme handling issue was addressed with improved input validation. This issue is fixed in Safari 18, iOS 17.7.1 and iPadOS 17.7.1, macOS Sequoia 15, watchOS 11, iOS 18 and iPadOS 18. Ma… NVD-CWE-noinfo
CVE-2024-44155 2024-10-30 02:34 2024-10-29 Show GitHub Exploit DB Packet Storm
313327 5.5 MEDIUM
Local 		apple watchos
tvos
iphone_os
ipados
macos 		A buffer overflow was addressed with improved size validation. This issue is fixed in iOS 17.7.1 and iPadOS 17.7.1, macOS Sequoia 15, macOS Sonoma 14.7.1, tvOS 18, watchOS 11, visionOS 2, iOS 18 and … CWE-120
Classic Buffer Overflow 		CVE-2024-44144 2024-10-30 02:34 2024-10-29 Show GitHub Exploit DB Packet Storm
313328 5.4 MEDIUM
Network 		jetbrains youtrack In JetBrains YouTrack before 2024.3.47707 stored XSS was possible via Angular template injection in Hub settings CWE-79
Cross-site Scripting 		CVE-2024-50577 2024-10-30 02:18 2024-10-28 Show GitHub Exploit DB Packet Storm
313329 5.4 MEDIUM
Network 		jetbrains youtrack In JetBrains YouTrack before 2024.3.47707 stored XSS was possible via vendor URL in App manifest CWE-79
Cross-site Scripting 		CVE-2024-50576 2024-10-30 02:18 2024-10-28 Show GitHub Exploit DB Packet Storm
313330 6.1 MEDIUM
Network 		jetbrains youtrack In JetBrains YouTrack before 2024.3.47707 reflected XSS was possible in Widget API CWE-79
Cross-site Scripting 		CVE-2024-50575 2024-10-30 02:18 2024-10-28 Show GitHub Exploit DB Packet Storm