Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 12:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
351	7.5	重要 Network	Cesanta	Mongoose	CesantaのMongooseにおける複数の脆弱性	CWE-404 CWE-835	CVE-2026-6985	2026-05-1 10:41	2026-04-25	Show	GitHub Exploit DB Packet Storm

352	3.7	低 Network	Cesanta	Mongoose	CesantaのMongooseにおける複数の脆弱性	CWE-345 CWE-347	CVE-2026-6986	2026-05-1 10:41	2026-04-25	Show	GitHub Exploit DB Packet Storm

353	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	HG10 Firmware	Shenzhen Tenda Technology Co.,Ltd.のHG10 Firmwareにおける複数の脆弱性	CWE-119 CWE-120	CVE-2026-6988	2026-05-1 10:41	2026-04-25	Show	GitHub Exploit DB Packet Storm

354	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	F453 Firmware	Shenzhen Tenda Technology Co.,Ltd.のF453 Firmwareにおける複数の脆弱性	CWE-74 CWE-77	CVE-2026-6989	2026-05-1 10:41	2026-04-25	Show	GitHub Exploit DB Packet Storm

355	7.2	重要 Network	シスコシステムズ (Linksys)	mr9600 ファームウェア	Linksysのmr9600 ファームウェアにおける複数の脆弱性	CWE-77 CWE-78	CVE-2026-6992	2026-05-1 10:41	2026-04-25	Show	GitHub Exploit DB Packet Storm

356	4.8	警告 Network	D-Link Systems, Inc.	DSL-2740R ファームウェア	D-Link CorporationのDSL-2740R ファームウェアにおける複数の脆弱性	CWE-79 CWE-94	CVE-2026-7027	2026-05-1 10:41	2026-04-26	Show	GitHub Exploit DB Packet Storm

357	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	FH1202 ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のFH1202 ファームウェアにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-7034	2026-05-1 10:41	2026-04-26	Show	GitHub Exploit DB Packet Storm

358	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	FH1202 ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のFH1202 ファームウェアにおける複数の脆弱性	CWE-119 CWE-121	CVE-2026-7035	2026-05-1 10:41	2026-04-26	Show	GitHub Exploit DB Packet Storm

359	9.8	緊急 Network	Shenzhen Tenda Technology Co.,Ltd.	i9 ファームウェア	Shenzhen Tenda Technology Co.,Ltd.のi9 ファームウェアにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-7036	2026-05-1 10:41	2026-04-26	Show	GitHub Exploit DB Packet Storm

360	7.3	重要 Network	D-Link Systems, Inc.	DIR-822 ファームウェア	D-Link CorporationのDIR-822 ファームウェアにおける複数の脆弱性	CWE-74 CWE-77	CVE-2026-7067	2026-05-1 10:41	2026-04-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312791	-	-	-	In ensureSetPipAspectRatioQuotaTracker of ActivityClientController.java, there is a possible way to generate unmovable and undeletable pip windows due to a logic error in the code. This could lead to…	-	CVE-2024-34737	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

312792	-	-	-	In multiple functions of TranscodingResourcePolicy.cpp, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with no additional execution pr…	-	CVE-2024-34731	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

312793	-	-	-	In _MMU_AllocLevel of mmu_common.c, there is a possible arbitrary code execution due to an integer overflow. This could lead to local escalation of privilege in the kernel with no additional executio…	-	CVE-2024-31333	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

312794	-	-	-	AVEVA Historian Server has a vulnerability, if exploited, could allow a malicious SQL command to execute under the privileges of an interactive Historian REST Interface user who had been socially eng…	CWE-89 SQL Injection	CVE-2024-6456	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

312795	-	-	-	Boa is an embeddable and experimental Javascript engine written in Rust. Starting in version 0.16 and prior to version 0.19.0, a wrong assumption made when handling ECMAScript's `AsyncGenerator` oper…	-	CVE-2024-43367	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

312796	-	-	-	In the OAuth library for nim prior to version 0.11, the Authorization Code grant and Implicit grant both rely on the `state` parameter to prevent cross-site request forgery (CSRF) attacks where a res…	-	CVE-2024-42476	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

312797	-	-	-	In the OAuth library for nim prior to version 0.11, the `state` values generated by the `generateState` function do not have sufficient entropy. These can be successfully guessed by an attacker allow…	-	CVE-2024-42475	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

312798	-	-	-	ECMA-262 is the language specification for the scripting language ECMAScript. A problem in the ECMAScript (JavaScript) specification of async generators, introduced by a May 2021 spec refactor, may l…	-	CVE-2024-43357	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

312799	-	-	-	Cross Site Scripting vulnerability in Friendica v.2023.12 allows a remote attacker to obtain sensitive information via the lack of file type filtering in the file attachment parameter.	-	CVE-2024-27731	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

312800	-	-	-	Insecure Permissions vulnerability in Friendica v.2023.12 allows a remote attacker to obtain sensitive information and execute arbitrary code via the cid parameter of the calendar event feature.	-	CVE-2024-27730	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm