Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 7, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4091	8.8	重要 Network	Nexxt Solutions	Nebula300Plus Firmware	Nexxt SolutionsのNebula300Plus Firmwareにおける非公開の機能に関する脆弱性	CWE-912 非公開の機能	CVE-2026-31847	2026-05-1 10:38	2026-03-23	Show	GitHub Exploit DB Packet Storm

4092	9.8	緊急 Network	Nexxt Solutions	Nebula300Plus Firmware	Nexxt SolutionsのNebula300Plus Firmwareにおける重要な情報の平文保存に関する脆弱性	CWE-312 重要な情報の平文保存	CVE-2026-31848	2026-05-1 10:38	2026-03-23	Show	GitHub Exploit DB Packet Storm

4093	6.5	警告 Network	Nexxt Solutions	Nebula300Plus Firmware	Nexxt SolutionsのNebula300Plus Firmwareにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-31849	2026-05-1 10:38	2026-03-23	Show	GitHub Exploit DB Packet Storm

4094	4.9	警告 Network	Nexxt Solutions	Nebula300Plus Firmware	Nexxt SolutionsのNebula300Plus Firmwareにおける認証情報の平文保存に関する脆弱性	CWE-256 平文でパスワードを保存	CVE-2026-31850	2026-05-1 10:38	2026-03-23	Show	GitHub Exploit DB Packet Storm

4095	9.8	緊急 Network	Nexxt Solutions	Nebula300Plus Firmware	Nexxt SolutionsのNebula300Plus Firmwareにおける過度な認証試行の不適切な制限に関する脆弱性	CWE-307 過度な認証試行の不適切な制限	CVE-2026-31851	2026-05-1 10:38	2026-03-23	Show	GitHub Exploit DB Packet Storm

4096	6.1	警告 Network	angular	Angular CLI	angularのAngular CLIにおけるオープンリダイレクトの脆弱性	CWE-601 オープンリダイレクト	CVE-2026-33397	2026-05-1 10:38	2026-03-26	Show	GitHub Exploit DB Packet Storm

4097	9.1	緊急 Network	Fatedier	FRP	FatedierのFRPにおける認証に関する脆弱性	CWE-287 CWE-noinfo	CVE-2026-40910	2026-05-1 10:38	2026-04-21	Show	GitHub Exploit DB Packet Storm

4098	8.8	重要 Network	VMware	Spring gRPC	VMwareのSpring gRPCにおける隔離または分類に関する脆弱性	CWE-653 不適切な隔離または分類	CVE-2026-40968	2026-05-1 10:38	2026-04-28	Show	GitHub Exploit DB Packet Storm

4099	5.3	警告 Network	VMware	Spring gRPC	VMwareのSpring gRPCにおけるエラーメッセージによる情報漏えいに関する脆弱性	CWE-209 エラーメッセージによる情報漏えい	CVE-2026-40969	2026-05-1 10:38	2026-04-28	Show	GitHub Exploit DB Packet Storm

4100	7.5	重要 Network	Frappe	Press	FrappeのPressにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-41317	2026-05-1 10:38	2026-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
315271	6.1	MEDIUM Network	znuny	znuny	Znuny before LTS 6.5.1 through 6.5.10 and 7.0.1 through 7.0.16 allows XSS. JavaScript code in the short description of the SLA field in Activity Dialogues is executed.	CWE-79 Cross-site Scripting	CVE-2024-48937	2024-10-18 04:48	2024-10-12	Show	GitHub Exploit DB Packet Storm

315272	7.8	HIGH Local	microsoft	windows_server_2016 windows_server_2022_23h2 windows_10_1809 windows_server_2022 windows_10_1607 windows_server_2019 windows_11_21h2 windows_10_21h2 windows_11_22h2 windows…	Windows Storage Elevation of Privilege Vulnerability	NVD-CWE-noinfo	CVE-2024-43551	2024-10-18 04:48	2024-10-9	Show	GitHub Exploit DB Packet Storm

315273	7.0	HIGH Local	microsoft	windows_server_2008 windows_server_2012 windows_10_1507 windows_server_2016 windows_server_2022_23h2 windows_10_1809 windows_server_2022 windows_10_1607 windows_server_2019	NT OS Kernel Elevation of Privilege Vulnerability	NVD-CWE-noinfo	CVE-2024-43553	2024-10-18 04:47	2024-10-9	Show	GitHub Exploit DB Packet Storm

315274	7.3	HIGH Local	microsoft	windows_server_2022_23h2 windows_11_22h2 windows_11_23h2 windows_11_24h2	Windows Shell Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-43552	2024-10-18 04:47	2024-10-9	Show	GitHub Exploit DB Packet Storm

315275	5.5	MEDIUM Local	microsoft	windows_10_1507 windows_server_2016 windows_server_2022_23h2 windows_10_1809 windows_server_2022 windows_10_1607 windows_server_2019 windows_11_21h2 windows_10_21h2 windows…	Windows Kernel-Mode Driver Information Disclosure Vulnerability	NVD-CWE-noinfo	CVE-2024-43554	2024-10-18 04:42	2024-10-9	Show	GitHub Exploit DB Packet Storm

315276	7.8	HIGH Local	lenovo	app_store	A DLL hijack vulnerability was reported in Lenovo App Store that could allow a local attacker to execute code with elevated privileges.	CWE-427 Uncontrolled Search Path Element	CVE-2024-4130	2024-10-18 04:41	2024-10-12	Show	GitHub Exploit DB Packet Storm

315277	7.8	HIGH Local	lenovo	superfile	A DLL hijack vulnerability was reported in Lenovo Super File that could allow a local attacker to execute code with elevated privileges.	CWE-427 Uncontrolled Search Path Element	CVE-2024-4089	2024-10-18 04:41	2024-10-12	Show	GitHub Exploit DB Packet Storm

315278	6.5	MEDIUM Adjacent	microsoft	windows_server_2022_23h2 windows_10_1809 windows_server_2019 windows_11_21h2 windows_10_21h2 windows_11_22h2 windows_10_22h2 windows_11_23h2 windows_11_24h2	Windows Mobile Broadband Driver Denial of Service Vulnerability	NVD-CWE-noinfo	CVE-2024-43555	2024-10-18 04:41	2024-10-9	Show	GitHub Exploit DB Packet Storm

315279	7.8	HIGH Local	lenovo	starstudio	A DLL hijack vulnerability was reported in Lenovo stARstudio that could allow a local attacker to execute code with elevated privileges.	CWE-427 Uncontrolled Search Path Element	CVE-2024-9046	2024-10-18 04:40	2024-10-12	Show	GitHub Exploit DB Packet Storm

315280	7.8	HIGH Local	lenovo	lock_screen	A DLL hijack vulnerability was reported in Lenovo Lock Screen that could allow a local attacker to execute code with elevated privileges.	CWE-427 Uncontrolled Search Path Element	CVE-2024-4132	2024-10-18 04:40	2024-10-12	Show	GitHub Exploit DB Packet Storm