Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3901 7.1 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-31614 2026-05-1 10:48 2026-04-24 Show GitHub Exploit DB Packet Storm
3902 7.5 重要
Network 		Tinyproxy project Tinyproxy Tinyproxy projectのTinyproxyにおけるHTTP リクエストスマグリングに関する脆弱性 CWE-444
HTTP リクエストスマグリング 		CVE-2026-31842 2026-05-1 10:48 2026-04-7 Show GitHub Exploit DB Packet Storm
3903 8 重要
Network 		マイクロソフト Microsoft Power Apps Microsoft Power Apps のリモートでコードが実行される脆弱性 CWE-427
制御されていない検索パスの要素 		CVE-2026-32172 2026-05-1 10:48 2026-04-23 Show GitHub Exploit DB Packet Storm
3904 7.1 重要
Local 		マイクロソフト Microsoft Office
Microsoft Excel
Office Long Term Servicing Channel (LTSC)
Microsoft 365 Apps
Microsoft Office Online Server 		Microsoft Excel の情報漏えいの脆弱性 CWE-125
境界外読み取り 		CVE-2026-32188 2026-05-1 10:48 2026-04-14 Show GitHub Exploit DB Packet Storm
3905 7.8 重要
Local 		マイクロソフト Microsoft Office
Microsoft Excel
Office Long Term Servicing Channel (LTSC)
Microsoft 365 Apps
Microsoft Office Online Server 		Microsoft Excel のリモートでコードが実行される脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-32189 2026-05-1 10:48 2026-04-14 Show GitHub Exploit DB Packet Storm
3906 8.4 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Office Long Term Servicing Channel (LTSC) 		Microsoft Office のリモート コードが実行される脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-32190 2026-05-1 10:48 2026-04-14 Show GitHub Exploit DB Packet Storm
3907 7.8 重要
Local 		マイクロソフト Microsoft 365 Apps
Office Long Term Servicing Channel (LTSC) 		Microsoft Word のリモートでコードが実行される脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-33095 2026-05-1 10:48 2026-04-14 Show GitHub Exploit DB Packet Storm
3908 9.3 緊急
Network 		マイクロソフト Microsoft 365 Copilot Microsoft 365 Copilot の特権昇格の脆弱性 CWE-601
オープンリダイレクト 		CVE-2026-33102 2026-05-1 10:48 2026-04-23 Show GitHub Exploit DB Packet Storm
3909 8.4 重要
Local 		マイクロソフト Microsoft 365 Apps
Office Long Term Servicing Channel (LTSC) 		Microsoft Word のリモートでコードが実行される脆弱性 CWE-822
信頼性のないポインタデリファレンス 		CVE-2026-33114 2026-05-1 10:48 2026-04-14 Show GitHub Exploit DB Packet Storm
3910 8.4 重要
Local 		マイクロソフト Microsoft 365 Apps
Office Long Term Servicing Channel (LTSC) 		Microsoft Word のリモートでコードが実行される脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-33115 2026-05-1 10:47 2026-04-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313981 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ipv6: avoid use-after-free in ip6_fragment() Blamed commit claimed rcu_read_lock() was held by ip6_fragment() callers. It seems … CWE-416
 Use After Free 		CVE-2022-48956 2024-10-25 04:59 2024-10-22 Show GitHub Exploit DB Packet Storm
313982 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: net: thunderbolt: fix memory leak in tbnet_open() When tb_ring_alloc_rx() failed in tbnet_open(), ida that allocated in tb_xdomai… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2022-48955 2024-10-25 04:58 2024-10-22 Show GitHub Exploit DB Packet Storm
313983 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/xe: fix UAF around queue destruction We currently do stuff like queuing the final destruction step on a random system wq, whi… CWE-416
 Use After Free 		CVE-2024-49876 2024-10-25 04:57 2024-10-22 Show GitHub Exploit DB Packet Storm
313984 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: s390/qeth: fix use-after-free in hsci KASAN found that addr was dereferenced after br2dev_event_work was freed. ================… CWE-416
 Use After Free 		CVE-2022-48954 2024-10-25 04:57 2024-10-22 Show GitHub Exploit DB Packet Storm
313985 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: net/smc: fix lacks of icsk_syn_mss with IPPROTO_SMC Eric report a panic on IPPROTO_SMC, and give the facts that when INET_PROTOSW… CWE-476
 NULL Pointer Dereference 		CVE-2024-50034 2024-10-25 04:56 2024-10-22 Show GitHub Exploit DB Packet Storm
313986 8.6 HIGH
Network 		cisco ios_xe A vulnerability in the Protocol Independent Multicast (PIM) feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affecte… NVD-CWE-noinfo
CVE-2024-20464 2024-10-25 04:47 2024-09-26 Show GitHub Exploit DB Packet Storm
313987 8.6 HIGH
Network 		cisco ios_xe
ios_xe_sd-wan 		A vulnerability in the process that classifies traffic that is going to the Unified Threat Defense (UTD) component of Cisco IOS XE Software in controller mode could allow an unauthenticated, remote a… NVD-CWE-noinfo
CVE-2024-20455 2024-10-25 04:47 2024-09-26 Show GitHub Exploit DB Packet Storm
313988 5.8 MEDIUM
Network 		cisco ios A vulnerability in the access control list (ACL) programming of Cisco IOS Software running on Cisco Industrial Ethernet 4000, 4010, and 5000 Series Switches could allow an unauthenticated, remote att… NVD-CWE-noinfo
CVE-2024-20465 2024-10-25 04:46 2024-09-26 Show GitHub Exploit DB Packet Storm
313989 8.8 HIGH
Network 		cisco ios_xe A vulnerability in the web-based management interface of Cisco IOS XE Software could allow an unauthenticated, remote attacker to perform a cross-site request forgery (CSRF) attack and execute comman… CWE-352
 Origin Validation Error 		CVE-2024-20437 2024-10-25 04:45 2024-09-26 Show GitHub Exploit DB Packet Storm
313990 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Pass non-null to dcn20_validate_apply_pipe_split_flags [WHAT & HOW] "dcn20_validate_apply_pipe_split_flags" dere… CWE-476
 NULL Pointer Dereference 		CVE-2024-49923 2024-10-25 04:43 2024-10-22 Show GitHub Exploit DB Packet Storm