Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3701	9.3	緊急 Network	GeoVision	GV-IP Device Utility	GeoVisionのGV-IP Device Utilityにおける隠蔽によるセキュリティへの依存に関する脆弱性	CWE-656 隠蔽によるセキュリティへの依存	CVE-2026-7161	2026-05-7 11:31	2026-05-4	Show	GitHub Exploit DB Packet Storm

3702	6.1	警告 Network	GeoVision	GV-LPC2211 Firmware GV-LPC2011 Firmware	GeoVisionのGV-LPC2011 Firmware等の複数製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-7371	2026-05-7 11:31	2026-05-4	Show	GitHub Exploit DB Packet Storm

3703	9	緊急 Network	GeoVision	GV-VMS Firmware	GeoVisionのGV-VMS Firmwareにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-7372	2026-05-7 11:31	2026-05-4	Show	GitHub Exploit DB Packet Storm

3704	7.8	重要 Local	Zurich Instruments	LabOne Q	Zurich InstrumentsのLabOne Qにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-7584	2026-05-7 11:31	2026-05-1	Show	GitHub Exploit DB Packet Storm

3705	9.8	緊急 Network	Shenzhen Tenda Technology Co.,Ltd.	W308R Firmware	Shenzhen Tenda Technology Co.,Ltd.のW308R Firmwareにおけるスプーフィングによる認証回避に関する脆弱性	CWE-290 スプーフィングによる認証回避	CVE-2018-25316	2026-05-7 11:31	2026-04-29	Show	GitHub Exploit DB Packet Storm

3706	9.8	緊急 Network	Shenzhen Tenda Technology Co.,Ltd.	W3002R Firmware A302 Firmware W309R Firmware	Shenzhen Tenda Technology Co.,Ltd.のA302 Firmware等の複数製品におけるスプーフィングによる認証回避に関する脆弱性	CWE-290 スプーフィングによる認証回避	CVE-2018-25317	2026-05-7 11:31	2026-04-29	Show	GitHub Exploit DB Packet Storm

3707	9.8	緊急 Network	Shenzhen Tenda Technology Co.,Ltd.	FH303 Firmware A300 Firmware	Shenzhen Tenda Technology Co.,Ltd.のA300 Firmware等の複数製品におけるスプーフィングによる認証回避に関する脆弱性	CWE-290 スプーフィングによる認証回避	CVE-2018-25318	2026-05-7 11:31	2026-04-29	Show	GitHub Exploit DB Packet Storm

3708	9.8	緊急 Network	DeanWu (pylixm)	Django-mdeditor	DeanWu (pylixm)のDjango-mdeditorにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2025-13030	2026-05-7 11:31	2026-04-30	Show	GitHub Exploit DB Packet Storm

3709	7.8	重要 Local	The Qt Company	qtdeclarative	The Qt Companyのqtdeclarativeにおける複数の脆弱性	CWE-20 CWE-94 CWE-94	CVE-2025-14576	2026-05-7 11:30	2026-04-30	Show	GitHub Exploit DB Packet Storm

3710	6.4	警告 Local	レッドハット	OpenShift Update Service (OSUS)	レッドハットのOpenShift Update Service (OSUS)における不適切なデフォルトパーミッションに関する脆弱性	CWE-276 不適切なデフォルトパーミッション	CVE-2025-57854	2026-05-7 11:30	2026-04-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313651	5.5	MEDIUM Local	google	android	In ppmp_protect_buf of drm_fw.c, there is a possible information disclosure due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges n…	NVD-CWE-noinfo	CVE-2024-47025	2024-10-29 02:59	2024-10-25	Show	GitHub Exploit DB Packet Storm

313652	4.4	MEDIUM Local	google	android	In ffu_flash_pack of ffu.c, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure with System execution privileges needed. User interactio…	CWE-190 Integer Overflow or Wraparound	CVE-2024-47028	2024-10-29 02:58	2024-10-25	Show	GitHub Exploit DB Packet Storm

313653	7.8	HIGH Local	google	android	In sm_mem_compat_get_vmm_obj of lib/sm/shared_mem.c, there is a possible arbitrary physical memory access due to improper input validation. This could lead to local escalation of privilege with no ad…	NVD-CWE-noinfo	CVE-2024-47027	2024-10-29 02:58	2024-10-25	Show	GitHub Exploit DB Packet Storm

313654	7.8	HIGH Local	google	android	In lwis_allocator_free of lwis_allocator.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges nee…	CWE-416 Use After Free	CVE-2024-47033	2024-10-29 02:57	2024-10-25	Show	GitHub Exploit DB Packet Storm

313655	5.5	MEDIUM Local	google	android	In TrustySharedMemoryManager::GetSharedMemory of ondevice/trusty/trusty_shared_memory_manager.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local inf…	CWE-125 Out-of-bounds Read	CVE-2024-47029	2024-10-29 02:57	2024-10-25	Show	GitHub Exploit DB Packet Storm

313656	5.5	MEDIUM Local	google	android	there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed fo…	CWE-125 Out-of-bounds Read	CVE-2024-47034	2024-10-29 02:56	2024-10-25	Show	GitHub Exploit DB Packet Storm

313657	7.8	HIGH Local	google	android	In ufshc_scsi_cmd of ufs.c, there is a possible stack variable use after free due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed.…	CWE-416 Use After Free	CVE-2024-47017	2024-10-29 02:56	2024-10-25	Show	GitHub Exploit DB Packet Storm

313658	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid overflow assignment in link_dp_cts sampling_rate is an uint8_t but is assigned an unsigned int, and thus i…	CWE-190 Integer Overflow or Wraparound	CVE-2024-50016	2024-10-29 02:17	2024-10-22	Show	GitHub Exploit DB Packet Storm

313659	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ext4: dax: fix overflowing extents beyond inode size when partially writing The dax_iomap_rw() does two things in each iteration:…	NVD-CWE-noinfo	CVE-2024-50015	2024-10-29 02:13	2024-10-22	Show	GitHub Exploit DB Packet Storm

313660	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ext4: fix access to uninitialised lock in fc replay path The following kernel trace can be triggered with fstest generic/629 when…	CWE-908 Use of Uninitialized Resource	CVE-2024-50014	2024-10-29 02:12	2024-10-22	Show	GitHub Exploit DB Packet Storm