Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3691	4.4	警告 Local	オラクル	Oracle Linux	オラクルのOracle Linuxにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-35233	2026-05-7 10:51	2026-05-1	Show	GitHub Exploit DB Packet Storm

3692	5.2	警告 Network	オラクル	Hyperion Infrastructure Technology	オラクルのHyperion Infrastructure Technologyにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-35244	2026-05-7 10:51	2026-04-21	Show	GitHub Exploit DB Packet Storm

3693	9.1	緊急 Network	Volcengine	OpenViking	VolcengineのOpenVikingにおける安全でない失敗処理に関する脆弱性	CWE-636 安全でない失敗処理	CVE-2026-40525	2026-05-7 10:51	2026-04-17	Show	GitHub Exploit DB Packet Storm

3694	7.1	重要 Network	Apache Software Foundation	Apache Atlas	Apache Software FoundationのApache Atlasにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-40563	2026-05-7 10:51	2026-05-4	Show	GitHub Exploit DB Packet Storm

3695	8.8	重要 Adjacent	Espressif Systems	ESP32 Arduino	Espressif SystemsのESP32 Arduinoにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-41429	2026-05-7 10:51	2026-04-24	Show	GitHub Exploit DB Packet Storm

3696	9	緊急 Network	Jenkins プロジェクト	GitHub	JenkinsのGitHubにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42523	2026-05-7 10:51	2026-04-29	Show	GitHub Exploit DB Packet Storm

3697	8	重要 Network	Jenkins プロジェクト	HTML Publisher Plugin	JenkinsのHTML Publisher Pluginにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42524	2026-05-7 10:51	2026-04-29	Show	GitHub Exploit DB Packet Storm

3698	4.3	警告 Network	Jenkins プロジェクト	Azure AD	JenkinsのAzure ADにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2026-42525	2026-05-7 10:51	2026-04-29	Show	GitHub Exploit DB Packet Storm

3699	8.8	重要 Adjacent	TP-LINK Technologies	TL-WR841N ファームウェア	TP-LINK TechnologiesのTL-WR841N ファームウェアにおけるデフォルトの暗号鍵の使用に関する脆弱性	CWE-1394 デフォルトの暗号鍵の使用	CVE-2026-5039	2026-05-7 10:51	2026-04-23	Show	GitHub Exploit DB Packet Storm

3700	7.3	重要 Network	GNU Project	GNU C Library	GNU ProjectのGNU C Libraryにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-5435	2026-05-7 10:51	2026-04-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313651	5.5	MEDIUM Local	google	android	In ppmp_protect_buf of drm_fw.c, there is a possible information disclosure due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges n…	NVD-CWE-noinfo	CVE-2024-47025	2024-10-29 02:59	2024-10-25	Show	GitHub Exploit DB Packet Storm

313652	4.4	MEDIUM Local	google	android	In ffu_flash_pack of ffu.c, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure with System execution privileges needed. User interactio…	CWE-190 Integer Overflow or Wraparound	CVE-2024-47028	2024-10-29 02:58	2024-10-25	Show	GitHub Exploit DB Packet Storm

313653	7.8	HIGH Local	google	android	In sm_mem_compat_get_vmm_obj of lib/sm/shared_mem.c, there is a possible arbitrary physical memory access due to improper input validation. This could lead to local escalation of privilege with no ad…	NVD-CWE-noinfo	CVE-2024-47027	2024-10-29 02:58	2024-10-25	Show	GitHub Exploit DB Packet Storm

313654	7.8	HIGH Local	google	android	In lwis_allocator_free of lwis_allocator.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges nee…	CWE-416 Use After Free	CVE-2024-47033	2024-10-29 02:57	2024-10-25	Show	GitHub Exploit DB Packet Storm

313655	5.5	MEDIUM Local	google	android	In TrustySharedMemoryManager::GetSharedMemory of ondevice/trusty/trusty_shared_memory_manager.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local inf…	CWE-125 Out-of-bounds Read	CVE-2024-47029	2024-10-29 02:57	2024-10-25	Show	GitHub Exploit DB Packet Storm

313656	5.5	MEDIUM Local	google	android	there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed fo…	CWE-125 Out-of-bounds Read	CVE-2024-47034	2024-10-29 02:56	2024-10-25	Show	GitHub Exploit DB Packet Storm

313657	7.8	HIGH Local	google	android	In ufshc_scsi_cmd of ufs.c, there is a possible stack variable use after free due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed.…	CWE-416 Use After Free	CVE-2024-47017	2024-10-29 02:56	2024-10-25	Show	GitHub Exploit DB Packet Storm

313658	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid overflow assignment in link_dp_cts sampling_rate is an uint8_t but is assigned an unsigned int, and thus i…	CWE-190 Integer Overflow or Wraparound	CVE-2024-50016	2024-10-29 02:17	2024-10-22	Show	GitHub Exploit DB Packet Storm

313659	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ext4: dax: fix overflowing extents beyond inode size when partially writing The dax_iomap_rw() does two things in each iteration:…	NVD-CWE-noinfo	CVE-2024-50015	2024-10-29 02:13	2024-10-22	Show	GitHub Exploit DB Packet Storm

313660	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ext4: fix access to uninitialised lock in fc replay path The following kernel trace can be triggered with fstest generic/629 when…	CWE-908 Use of Uninitialized Resource	CVE-2024-50014	2024-10-29 02:12	2024-10-22	Show	GitHub Exploit DB Packet Storm