Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 25, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 4921 | 5.4 |
警告
Network |
Langfuse GmbH | Langfuse | Langfuse GmbHのLangfuseにおけるアクセス制御に関する脆弱性 |
CWE-284
不適切なアクセス制御 |
CVE-2026-41487 | 2026-05-15 11:00 | 2026-05-8 | Show | GitHub Exploit DB Packet Storm |
| 4922 | 9.8 |
緊急
Network |
Nhost | Nhost/auth | NhostのNhost/authにおける認証に関する脆弱性 |
CWE-287 CWE-noinfo |
CVE-2026-41574 | 2026-05-15 11:00 | 2026-05-8 | Show | GitHub Exploit DB Packet Storm |
| 4923 | 7.5 |
重要
Network |
Web Technologies | Change Detection | Web TechnologiesのChange DetectionにおけるXML 外部エンティティの脆弱性 |
CWE-611
XML 外部エンティティ参照の不適切な制限 |
CVE-2026-41895 | 2026-05-15 11:00 | 2026-05-12 | Show | GitHub Exploit DB Packet Storm |
| 4924 | 9.8 |
緊急
Network |
レッドハット GNU Project |
Red Hat OpenShift Container Platform Red Hat Hardened Images GnuTLS Red Hat Enterprise Linux |
GNU Project等の複数ベンダの製品におけるNull バイト相互作用エラー (Poison Null Byte) の脆弱性 |
CWE-626
Null バイト相互作用エラー (Poison Null Byte) |
CVE-2026-42010 | 2026-05-15 11:00 | 2026-05-7 | Show | GitHub Exploit DB Packet Storm |
| 4925 | 9.6 |
緊急
Network |
langflow | langflow | langflowにおけるパストラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2026-42048 | 2026-05-15 11:00 | 2026-05-12 | Show | GitHub Exploit DB Packet Storm |
| 4926 | 5.5 |
警告
Local |
ImageMagick | ImageMagick | ImageMagickにおけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-121
スタックオーバーフロー |
CVE-2026-42050 | 2026-05-15 11:00 | 2026-05-11 | Show | GitHub Exploit DB Packet Storm |
| 4927 | 8.1 |
重要
Network |
- | OpenC3のOpenC3 COSMOSにおける不要な特権による実行に関する脆弱性 |
CWE-250
不要な特権による実行 |
CVE-2026-42088 | 2026-05-15 11:00 | 2026-05-4 | Show | GitHub Exploit DB Packet Storm | |
| 4928 | 8.8 |
重要
Network |
litellm | litellm | LiteLLMにおけるテンプレートエンジンで使用される特殊な要素の不適切な無効化に関する脆弱性 |
CWE-1336
テンプレートエンジンで使用される特殊な要素の不適切な無効化 |
CVE-2026-42203 | 2026-05-15 11:00 | 2026-05-8 | Show | GitHub Exploit DB Packet Storm |
| 4929 | 9.1 |
緊急
Network |
axios project | axios | axios projectのaxiosにおけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性 |
CWE-1321
オブジェクトプロトタイプ属性の不適切に制御された変更 (プロトタイプの汚染) |
CVE-2026-42264 | 2026-05-15 11:00 | 2026-05-8 | Show | GitHub Exploit DB Packet Storm |
| 4930 | 5.7 |
警告
Network |
Kimai project | kimai | Kimai projectのKimaiにおけるCSV ファイル内の数式要素の中和に関する脆弱性 |
CWE-1236
CSV ファイル内の数式要素の不適切な中和 |
CVE-2026-42267 | 2026-05-15 11:00 | 2026-05-8 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 26, 2026, 4 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 313381 | 5.5 |
MEDIUM
Local |
linux | linux_kernel | In the Linux kernel, the following vulnerability has been resolved: io_uring: check if we need to reschedule during overflow flush In terms of normal application usage, this list will always be emp… |
NVD-CWE-noinfo
|
CVE-2024-50060 | 2024-11-21 05:25 | 2024-10-22 | Show | GitHub Exploit DB Packet Storm |
| 313382 | 5.5 |
MEDIUM
Local |
linux | linux_kernel | In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uvc: Fix ERR_PTR dereference in uvc_v4l2.c Fix potential dereferencing of ERR_PTR() in find_format_by_pix() and uvc_… |
CWE-476
NULL Pointer Dereference |
CVE-2024-50056 | 2024-11-21 05:18 | 2024-10-22 | Show | GitHub Exploit DB Packet Storm |
| 313383 | 5.5 |
MEDIUM
Local |
linux | linux_kernel | In the Linux kernel, the following vulnerability has been resolved: ntfs3: Change to non-blocking allocation in ntfs_d_hash d_hash is done while under "rcu-walk" and should not sleep. __get_name() … |
NVD-CWE-noinfo
|
CVE-2024-50065 | 2024-11-21 05:07 | 2024-10-22 | Show | GitHub Exploit DB Packet Storm |
| 313384 | 7.5 |
HIGH
Network |
qualcomm |
ar8035_firmware csr8811_firmware fastconnect_6200_firmware fastconnect_6700_firmware fastconnect_6900_firmware fastconnect_7800_firmware flight_rb5_5g_platform_firmware immersive… |
Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report. |
CWE-125
Out-of-bounds Read |
CVE-2024-33015 | 2024-11-21 04:57 | 2024-08-6 | Show | GitHub Exploit DB Packet Storm |
| 313385 | 7.5 |
HIGH
Network |
qualcomm |
csr8811_firmware fastconnect_6800_firmware fastconnect_6900_firmware fastconnect_7800_firmware flight_rb5_5g_platform_firmware immersive_home_214_platform_firmware immersive_home_21… |
Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE. |
CWE-125
Out-of-bounds Read |
CVE-2024-33025 | 2024-11-21 04:53 | 2024-08-6 | Show | GitHub Exploit DB Packet Storm |
| 313386 | 7.5 |
HIGH
Network |
qualcomm |
ar8035_firmware csr8811_firmware fastconnect_6700_firmware fastconnect_6800_firmware fastconnect_6900_firmware fastconnect_7800_firmware flight_rb5_5g_platform_firmware immersive… |
Transient DOS while parsing the ML IE when a beacon with length field inside the common info of ML IE greater than the ML IE length. |
CWE-190
Integer Overflow or Wraparound |
CVE-2024-33024 | 2024-11-21 04:42 | 2024-08-6 | Show | GitHub Exploit DB Packet Storm |
| 313387 | 7.5 |
HIGH
Network |
qualcomm |
ar8035_firmware csr8811_firmware fastconnect_6700_firmware fastconnect_6900_firmware fastconnect_7800_firmware immersive_home_214_platform_firmware immersive_home_216_platform_firmw… |
Transient DOS while parsing the received TID-to-link mapping element of the TID-to-link mapping action frame. |
CWE-125
Out-of-bounds Read |
CVE-2024-33018 | 2024-11-21 04:40 | 2024-08-6 | Show | GitHub Exploit DB Packet Storm |
| 313388 | 7.5 |
HIGH
Network |
qualcomm |
ar8035_firmware csr8811_firmware fastconnect_6700_firmware fastconnect_6900_firmware fastconnect_7800_firmware flight_rb5_5g_platform_firmware immersive_home_214_platform_firmware
Transient DOS while parsing probe response and assoc response frame when received frame length is less than max size of timestamp.
|
CWE-125
|
Out-of-bounds Read
CVE-2024-33026
|
2024-11-21 04:37 |
2024-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 313389 | 7.8 |
HIGH
Local |
qualcomm |
ar8035_firmware csra6620_firmware csra6640_firmware fastconnect_6200_firmware fastconnect_6700_firmware fastconnect_6800_firmware fastconnect_6900_firmware fastconnect_7800_firmw… |
Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events. |
CWE-416
Use After Free |
CVE-2024-33023 | 2024-11-21 04:34 | 2024-08-6 | Show | GitHub Exploit DB Packet Storm |
| 313390 | 7.8 |
HIGH
Local |
qualcomm |
ar8035_firmware csra6620_firmware csra6640_firmware fastconnect_6200_firmware fastconnect_6700_firmware fastconnect_6900_firmware fastconnect_7800_firmware flight_rb5_5g_platform… |
Memory corruption while allocating memory in HGSL driver. |
CWE-190
Integer Overflow or Wraparound |
CVE-2024-33022 | 2024-11-21 04:30 | 2024-08-6 | Show | GitHub Exploit DB Packet Storm |