Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
451	7.3	重要 Network	Apache Software Foundation	HttpClient	Apache Software FoundationのHttpClientにおける認証の重要なステップの欠如に関する脆弱性 New	CWE-304 認証の重要なステップの欠如	CVE-2026-40542	2026-05-7 12:05	2026-04-22	Show	GitHub Exploit DB Packet Storm

452	9.1	緊急 Network	goshs	goshs	goshsにおける信頼できない制御領域からの機能の組み込みに関する脆弱性 New	CWE-829 信頼性のない制御領域からの機能の組み込み	CVE-2026-40903	2026-05-7 12:05	2026-04-21	Show	GitHub Exploit DB Packet Storm

453	8.2	重要 Network	traefik	traefik	traefikにおける誤って解決された名前や参照の使用に関する脆弱性 New	CWE-706 誤って解決された名前や参照の使用	CVE-2026-40912	2026-05-7 12:05	2026-04-30	Show	GitHub Exploit DB Packet Storm

454	5.9	警告 Network	Apache Software Foundation	Apache Airflow	Apache Software FoundationのApache Airflowにおける証明書検証に関する脆弱性 New	CWE-295 不正な証明書検証	CVE-2026-41016	2026-05-7 12:05	2026-04-30	Show	GitHub Exploit DB Packet Storm

455	6.4	警告 Network	traefik	traefik	traefikにおける複数の脆弱性 New	CWE-653 CWE-863	CVE-2026-41174	2026-05-7 12:05	2026-04-30	Show	GitHub Exploit DB Packet Storm

456	3.7	低 Network	traefik	traefik	traefikにおけるタイミングの違いに起因する情報漏えいに関する脆弱性 New	CWE-208 タイミングの違いに起因する情報漏えい	CVE-2026-41263	2026-05-7 12:05	2026-04-30	Show	GitHub Exploit DB Packet Storm

457	8.1	重要 Network	OpenClaw	OpenClaw	OpenClawにおける不変と仮定される Web パラメータの外部制御に関する脆弱性 New	CWE-472 不変と仮定される Web パラメータの外部制御	CVE-2026-41353	2026-05-7 12:05	2026-04-23	Show	GitHub Exploit DB Packet Storm

458	5.3	警告 Network	OpenClaw	OpenClaw	OpenClawにおける誤って解決された名前や参照の使用に関する脆弱性 New	CWE-706 誤って解決された名前や参照の使用	CVE-2026-41354	2026-05-7 12:05	2026-04-23	Show	GitHub Exploit DB Packet Storm

459	7.3	重要 Local	OpenClaw	OpenClaw	OpenClawにおける信頼できない制御領域からの機能の組み込みに関する脆弱性 New	CWE-829 信頼性のない制御領域からの機能の組み込み	CVE-2026-41355	2026-05-7 12:05	2026-04-23	Show	GitHub Exploit DB Packet Storm

460	5.4	警告 Network	OpenClaw	OpenClaw	OpenClawにおける同一生成元ポリシー違反に関する脆弱性 New	CWE-346 同一生成元ポリシー違反	CVE-2026-41358	2026-05-7 12:05	2026-04-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312691	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Fix use-after-free and race in fastrpc_map_find Currently, there is a race window between the point when the mutex…	CWE-416 Use After Free	CVE-2022-48874	2024-08-29 11:42	2024-08-21	Show	GitHub Exploit DB Packet Storm

312692	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix initialization of rx->link and rx->link_sta There are some codepaths that do not initialize rx->link_sta prop…	CWE-476 NULL Pointer Dereference	CVE-2022-48876	2024-08-29 11:41	2024-08-21	Show	GitHub Exploit DB Packet Storm

312693	7.1	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: platform/x86/amd: Fix refcount leak in amd_pmc_probe pci_get_domain_bus_and_slot() takes reference, the caller should release the…	NVD-CWE-Other	CVE-2022-48881	2024-08-29 11:39	2024-08-21	Show	GitHub Exploit DB Packet Storm

312694	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: efi: fix NULL-deref in init error path In cases where runtime services are not supported or have been disabled, the runtime servi…	CWE-476 NULL Pointer Dereference	CVE-2022-48879	2024-08-29 11:39	2024-08-21	Show	GitHub Exploit DB Packet Storm

312695	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_qca: Fix driver shutdown on closed serdev The driver shutdown callback (which sends EDL_SOC_RESET to the device ov…	CWE-416 Use After Free	CVE-2022-48878	2024-08-29 11:39	2024-08-21	Show	GitHub Exploit DB Packet Storm

312696	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: Fix memory leak in msm_mdss_parse_data_bus_icc_path of_icc_get() alloc resources for path1, we should release it whe…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2022-48888	2024-08-29 11:36	2024-08-21	Show	GitHub Exploit DB Packet Storm

312697	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix macsec possible null dereference when updating MAC security entity (SecY) Upon updating MAC security entity (SecY)…	CWE-476 NULL Pointer Dereference	CVE-2022-48882	2024-08-29 11:36	2024-08-21	Show	GitHub Exploit DB Packet Storm

312698	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: sched/core: Fix use-after-free bug in dup_user_cpus_ptr() Since commit 07ec77a1d4e8 ("sched: Allow task CPU affinity to be restri…	CWE-415 CWE-416 Double Free Use After Free	CVE-2022-48892	2024-08-29 11:35	2024-08-21	Show	GitHub Exploit DB Packet Storm

312699	9.8	CRITICAL Network	tenda	g3_firmware	A vulnerability, which was classified as critical, has been found in Tenda G3 15.11.0.20. This issue affects the function formSetDebugCfg of the file /goform/setDebugCfg. The manipulation of the argu…	CWE-787 Out-of-bounds Write	CVE-2024-8224	2024-08-29 09:16	2024-08-28	Show	GitHub Exploit DB Packet Storm

312700	9.8	CRITICAL Network	tenda	g3_firmware	A vulnerability, which was classified as critical, was found in Tenda G3 15.11.0.20. Affected is the function formSetSysTime of the file /goform/SetSysTimeCfg. The manipulation of the argument sysTim…	CWE-787 Out-of-bounds Write	CVE-2024-8225	2024-08-29 09:14	2024-08-28	Show	GitHub Exploit DB Packet Storm