Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3681 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-31458 2026-05-7 10:52 2026-04-22 Show GitHub Exploit DB Packet Storm
3682 7.5 重要
Network 		マイクロソフト Microsoft Dynamics 365 Microsoft Dynamics 365 (online) Spoofing Vulnerability CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-32210 2026-05-7 10:52 2026-04-23 Show GitHub Exploit DB Packet Storm
3683 9.8 緊急
Network 		GNU Project inetutils GNU Projectのinetutilsにおける古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2026-32746 2026-05-7 10:52 2026-03-13 Show GitHub Exploit DB Packet Storm
3684 4.7 警告
Network 		GNU Project inetutils GNU Projectのinetutilsにおける領域間での誤ったリソース移動に関する脆弱性 CWE-669
領域間での誤ったリソース移動 		CVE-2026-32772 2026-05-7 10:52 2026-03-16 Show GitHub Exploit DB Packet Storm
3685 9.8 緊急
Network 		マイクロソフト Bing Microsoft Bing のリモートでコードが実行される脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-33819 2026-05-7 10:52 2026-04-23 Show GitHub Exploit DB Packet Storm
3686 5 警告
Local 		オラクル MySQL オラクルのMySQLにおけるリソースの不適切なシャットダウンおよびリリースに関する脆弱性 CWE-404
リソースの不適切なシャットダウンおよびリリース 		CVE-2026-34317 2026-05-7 10:51 2026-04-21 Show GitHub Exploit DB Packet Storm
3687 5.8 警告
Network 		オラクル MySQL オラクルのMySQLにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-34318 2026-05-7 10:51 2026-04-21 Show GitHub Exploit DB Packet Storm
3688 5 警告
Local 		オラクル MySQL オラクルのMySQLにおけるリクエストに対するレスポンス内容の違いに起因する情報漏えいに関する脆弱性 CWE-204
リクエストに対するレスポンス内容の違いに起因する情報漏えい 		CVE-2026-34319 2026-05-7 10:51 2026-04-21 Show GitHub Exploit DB Packet Storm
3689 7.5 重要
Network 		オラクル Java VM オラクルのJava VMにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-35229 2026-05-7 10:51 2026-04-21 Show GitHub Exploit DB Packet Storm
3690 4.4 警告
Local 		オラクル Oracle Linux オラクルのOracle Linuxにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-35233 2026-05-7 10:51 2026-05-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313791 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ethernet: aeroflex: fix potential skb leak in greth_init_rings() The greth_init_rings() function won't free the newly allocated s… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2022-48958 2024-10-25 05:00 2024-10-22 Show GitHub Exploit DB Packet Storm
313792 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ipv6: avoid use-after-free in ip6_fragment() Blamed commit claimed rcu_read_lock() was held by ip6_fragment() callers. It seems … CWE-416
 Use After Free 		CVE-2022-48956 2024-10-25 04:59 2024-10-22 Show GitHub Exploit DB Packet Storm
313793 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: net: thunderbolt: fix memory leak in tbnet_open() When tb_ring_alloc_rx() failed in tbnet_open(), ida that allocated in tb_xdomai… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2022-48955 2024-10-25 04:58 2024-10-22 Show GitHub Exploit DB Packet Storm
313794 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/xe: fix UAF around queue destruction We currently do stuff like queuing the final destruction step on a random system wq, whi… CWE-416
 Use After Free 		CVE-2024-49876 2024-10-25 04:57 2024-10-22 Show GitHub Exploit DB Packet Storm
313795 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: s390/qeth: fix use-after-free in hsci KASAN found that addr was dereferenced after br2dev_event_work was freed. ================… CWE-416
 Use After Free 		CVE-2022-48954 2024-10-25 04:57 2024-10-22 Show GitHub Exploit DB Packet Storm
313796 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: net/smc: fix lacks of icsk_syn_mss with IPPROTO_SMC Eric report a panic on IPPROTO_SMC, and give the facts that when INET_PROTOSW… CWE-476
 NULL Pointer Dereference 		CVE-2024-50034 2024-10-25 04:56 2024-10-22 Show GitHub Exploit DB Packet Storm
313797 8.6 HIGH
Network 		cisco ios_xe A vulnerability in the Protocol Independent Multicast (PIM) feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affecte… NVD-CWE-noinfo
CVE-2024-20464 2024-10-25 04:47 2024-09-26 Show GitHub Exploit DB Packet Storm
313798 8.6 HIGH
Network 		cisco ios_xe
ios_xe_sd-wan 		A vulnerability in the process that classifies traffic that is going to the Unified Threat Defense (UTD) component of Cisco IOS XE Software in controller mode could allow an unauthenticated, remote a… NVD-CWE-noinfo
CVE-2024-20455 2024-10-25 04:47 2024-09-26 Show GitHub Exploit DB Packet Storm
313799 5.8 MEDIUM
Network 		cisco ios A vulnerability in the access control list (ACL) programming of Cisco IOS Software running on Cisco Industrial Ethernet 4000, 4010, and 5000 Series Switches could allow an unauthenticated, remote att… NVD-CWE-noinfo
CVE-2024-20465 2024-10-25 04:46 2024-09-26 Show GitHub Exploit DB Packet Storm
313800 8.8 HIGH
Network 		cisco ios_xe A vulnerability in the web-based management interface of Cisco IOS XE Software could allow an unauthenticated, remote attacker to perform a cross-site request forgery (CSRF) attack and execute comman… CWE-352
 Origin Validation Error 		CVE-2024-20437 2024-10-25 04:45 2024-09-26 Show GitHub Exploit DB Packet Storm