Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
541	8.2	重要 Network	Quantum Nous	New API	Quantum NousのNew APIにおける複数の脆弱性	CWE-1188 CWE-345 CWE-863	CVE-2026-41432	2026-05-20 13:31	2026-05-8	Show	GitHub Exploit DB Packet Storm

542	8.8	重要 Network	anyscale	ray	anyscaleのrayにおける複数の脆弱性	CWE-502 CWE-94	CVE-2026-41486	2026-05-20 13:31	2026-05-8	Show	GitHub Exploit DB Packet Storm

543	4.4	警告 Local	cilium	cilium	ciliumにおける複数の脆弱性	CWE-200 CWE-312 CWE-312	CVE-2026-41520	2026-05-20 13:31	2026-05-8	Show	GitHub Exploit DB Packet Storm

544	7	重要 Local	VMware	VMware Fusion	VMwareのVMware FusionにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-41702	2026-05-20 13:31	2026-05-15	Show	GitHub Exploit DB Packet Storm

545	4.3	警告 Network	Timo Sirainen Open-Xchange	Dovecot Pro Dovecot	Timo Sirainen等の複数ベンダの製品におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-42006	2026-05-20 13:31	2026-05-12	Show	GitHub Exploit DB Packet Storm

546	4.3	警告 Network	getkirby	kirby	getkirbyのkirbyにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-42051	2026-05-20 13:30	2026-05-9	Show	GitHub Exploit DB Packet Storm

547	6.5	警告 Network	getkirby	kirby	getkirbyのkirbyにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-42069	2026-05-20 13:30	2026-05-9	Show	GitHub Exploit DB Packet Storm

548	6.5	警告 Network	getkirby	kirby	getkirbyのkirbyにおける複数の脆弱性	CWE-862 CWE-863	CVE-2026-42137	2026-05-20 13:30	2026-05-9	Show	GitHub Exploit DB Packet Storm

549	7.8	重要 Local	Nullsoft	Nullsoft Scriptable Install System	NullsoftのNullsoft Scriptable Install Systemにおける制御されていない検索パスの要素に関する脆弱性	CWE-427 制御されていない検索パスの要素	CVE-2026-42171	2026-05-20 13:30	2026-04-24	Show	GitHub Exploit DB Packet Storm

550	4.3	警告 Network	getkirby	kirby	getkirbyのkirbyにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-42174	2026-05-20 13:30	2026-05-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311351	9.8	CRITICAL Network	totolink	n350rt_firmware	Incorrect access control in TOTOLINK N350RT V9.3.5u.6139_B20201216 allows attackers to obtain the apmib configuration file, which contains the username and the password, via a crafted request to /cgi…	NVD-CWE-noinfo	CVE-2024-42966	2024-10-25 05:35	2024-08-16	Show	GitHub Exploit DB Packet Storm

311352	-		-	-	Micro-Star International Z-series motherboards (Z590, Z490, and Z790) and B-series motherboards (B760, B560, B660, and B460) with firmware 7D25v14, 7D25v17 to 7D25v19, and 7D25v1A to 7D25v1H was disc…	-	CVE-2024-36877	2024-10-25 05:35	2024-08-13	Show	GitHub Exploit DB Packet Storm

311353	-		-	-	In certain Sonos products before S1 Release 11.12 and S2 release 15.9, the mt_7615.ko wireless driver does not properly validate an information element during negotiation of a WPA2 four-way handshake…	-	CVE-2023-50809	2024-10-25 05:35	2024-08-12	Show	GitHub Exploit DB Packet Storm

311354	5.3	MEDIUM Network	lopalopa	responsive_school_management_system	An Incorrect Access Control vulnerability was found in /smsa/view_students.php in Kashipara Responsive School Management System v3.2.0, which allows remote unauthenticated attackers to view STUDENT d…	NVD-CWE-Other	CVE-2024-41250	2024-10-25 05:35	2024-08-8	Show	GitHub Exploit DB Packet Storm

311355	6.5	MEDIUM Network	lopalopa	responsive_school_management_system	An Incorrect Access Control vulnerability was found in /smsa/admin_teacher_register_approval.php and /smsa/admin_teacher_register_approval_submit.php in Kashipara Responsive School Management System …	NVD-CWE-Other	CVE-2024-41251	2024-10-25 05:35	2024-08-8	Show	GitHub Exploit DB Packet Storm

311356	9.8	CRITICAL Network	ivanti	endpoint_manager_mobile	An insufficient authorization vulnerability in web component of EPMM prior to 12.1.0.1 allows an unauthorized attacker within the network to execute arbitrary commands on the underlying operating sys…	CWE-287 Improper Authentication	CVE-2024-36130	2024-10-25 05:35	2024-08-7	Show	GitHub Exploit DB Packet Storm

311357	8.8	HIGH Network	google	chrome	Inappropriate implementation in V8 in Google Chrome prior to 127.0.6533.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	CWE-787 Out-of-bounds Write	CVE-2024-7535	2024-10-25 05:35	2024-08-7	Show	GitHub Exploit DB Packet Storm

311358	-		-	-	A mass assignment vulnerability exists in Pantera CRM versions 401.152 and 402.072. This flaw allows authenticated users to modify any user attribute, including roles, by injecting additional paramet…	-	CVE-2024-40531	2024-10-25 05:35	2024-08-6	Show	GitHub Exploit DB Packet Storm

311359	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: btrfs: send: fix buffer overflow detection when copying path to cache entry Starting with commit c0247d289e73 ("btrfs: send: anno…	CWE-120 Classic Buffer Overflow	CVE-2024-49869	2024-10-25 05:28	2024-10-22	Show	GitHub Exploit DB Packet Storm

311360	7.0	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: i3c: master: svc: Fix use after free vulnerability in svc_i3c_master Driver Due to Race Condition In the svc_i3c_master_probe fun…	CWE-416 Use After Free	CVE-2024-49874	2024-10-25 05:27	2024-10-22	Show	GitHub Exploit DB Packet Storm