Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4081 8.2 重要
Network 		Timo Sirainen
Open-Xchange		 Dovecot Pro
Dovecot 		Timo Sirainen等の複数ベンダの製品におけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-24031 2026-05-1 10:39 2026-03-27 Show GitHub Exploit DB Packet Storm
4082 5.9 警告
Network 		Timo Sirainen
Open-Xchange		 Dovecot Pro
Dovecot 		Timo Sirainen等の複数ベンダの製品におけるCapture-replay による認証回避に関する脆弱性 CWE-294
Capture-replayによる認証回避 		CVE-2026-27855 2026-05-1 10:39 2026-03-27 Show GitHub Exploit DB Packet Storm
4083 5.9 警告
Network 		Timo Sirainen
Open-Xchange		 Dovecot Pro
Dovecot 		Timo Sirainen等の複数ベンダの製品における認証に関する脆弱性 CWE-287
CWE-Other
CVE-2026-27856 2026-05-1 10:39 2026-03-27 Show GitHub Exploit DB Packet Storm
4084 5.3 警告
Network 		Timo Sirainen
Open-Xchange		 Dovecot Pro
Dovecot 		Timo Sirainen等の複数ベンダの製品におけるLDAP インジェクションの脆弱性 CWE-90
LDAP インジェクション 		CVE-2026-27860 2026-05-1 10:39 2026-03-27 Show GitHub Exploit DB Packet Storm
4085 8.4 重要
Local 		Anthropic PBC Claude Code
Claude Agent SDK 		Anthropic PBCのClaude Agent SDK等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-35020 2026-05-1 10:39 2026-04-6 Show GitHub Exploit DB Packet Storm
4086 7.8 重要
Local 		Anthropic PBC Claude Code
Claude Agent SDK 		Anthropic PBCのClaude Agent SDK等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-35021 2026-05-1 10:39 2026-04-6 Show GitHub Exploit DB Packet Storm
4087 9.8 緊急
Network 		Anthropic PBC Claude Code
Claude Agent SDK 		Anthropic PBCのClaude Agent SDK等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-35022 2026-05-1 10:39 2026-04-6 Show GitHub Exploit DB Packet Storm
4088 7.8 重要
Local 		MAGIX MAGIX MP3 deluxe MAGIXのMAGIX MP3 deluxeにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2018-25260 2026-05-1 10:39 2026-04-22 Show GitHub Exploit DB Packet Storm
4089 7.8 重要
Local 		Enter Srl Iperius Backup Enter SrlのIperius Backupにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2018-25261 2026-05-1 10:39 2026-04-22 Show GitHub Exploit DB Packet Storm
4090 10 緊急
Network 		マイクロソフト Microsoft Purview eDiscovery Microsoft Purview eDiscovery Elevation of Privilege Vulnerability CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-26150 2026-05-1 10:39 2026-04-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314541 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: can: can327: can327_feed_frame_to_netdev(): fix potential skb leak when netdev is down In can327_feed_frame_to_netdev(), it did n… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2022-49008 2024-10-25 23:38 2024-10-22 Show GitHub Exploit DB Packet Storm
314542 5.5 MEDIUM
Local 		trendmicro antivirus_one Trend Micro Antivirus One, version 3.10.4 and below contains a vulnerability that could allow an attacker to use a specifically crafted virus to allow itself to bypass and evade a virus scan detectio… NVD-CWE-noinfo
CVE-2024-45335 2024-10-25 23:37 2024-10-23 Show GitHub Exploit DB Packet Storm
314543 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ext4: avoid use-after-free in ext4_ext_show_leaf() In ext4_find_extent(), path may be freed by error or be reallocated, so using … CWE-416
 Use After Free 		CVE-2024-49889 2024-10-25 23:37 2024-10-22 Show GitHub Exploit DB Packet Storm
314544 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Initialize denominators' default to 1 [WHAT & HOW] Variables used as denominators and maybe not assigned to othe… CWE-369
 Divide By Zero 		CVE-2024-49899 2024-10-25 23:35 2024-10-22 Show GitHub Exploit DB Packet Storm
314545 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix NULL pointer dereference in nilfs_palloc_commit_free_entry() Syzbot reported a null-ptr-deref bug: NILFS (loop0): s… CWE-476
 NULL Pointer Dereference 		CVE-2022-49007 2024-10-25 23:35 2024-10-22 Show GitHub Exploit DB Packet Storm
314546 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix index out of bounds in DCN30 degamma hardware format translation This commit addresses a potential index out… CWE-129
 Improper Validation of Array Index 		CVE-2024-49895 2024-10-25 23:35 2024-10-22 Show GitHub Exploit DB Packet Storm
314547 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check stream_status before it is used [WHAT & HOW] dc_state_get_stream_status can return null, and therefore nul… CWE-476
 NULL Pointer Dereference 		CVE-2024-49893 2024-10-25 23:32 2024-10-22 Show GitHub Exploit DB Packet Storm
314548 8.7 HIGH
Network 		umbraco umbraco_cms Umbraco, a free and open source .NET content management system, has a cross-site scripting vulnerability starting in version 14.0.0 and prior to versions 14.3.1 and 15.0.0. This can be leveraged to g… CWE-79
Cross-site Scripting 		CVE-2024-47819 2024-10-25 23:24 2024-10-23 Show GitHub Exploit DB Packet Storm
314549 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Fix PCI device refcount leak in dmar_dev_scope_init() for_each_pci_dev() is implemented by pci_get_device(). The comm… NVD-CWE-Other
CVE-2022-49002 2024-10-25 23:24 2024-10-22 Show GitHub Exploit DB Packet Storm
314550 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: riscv: Sync efi page table's kernel mappings before switching The EFI page table is initially created as a copy of the kernel pag… NVD-CWE-noinfo
CVE-2022-49004 2024-10-25 23:21 2024-10-22 Show GitHub Exploit DB Packet Storm