Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
671	5.5	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおける入力確認に関する脆弱性 New	CWE-20 不適切な入力確認	CVE-2026-35369	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

672	4.4	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおける不正な認証に関する脆弱性 New	CWE-863 不正な認証	CVE-2026-35370	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

673	3.3	低 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるユーザインターフェースにおける重要情報の誤った表示に関する脆弱性 New	CWE-451 ユーザインターフェースにおける重要情報の誤った表示	CVE-2026-35371	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

674	5	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるUNIX Symbolic Link のフォローに関する脆弱性 New	CWE-61 UNIX Symbolic Link のフォロー	CVE-2026-35372	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

675	5.5	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるUnicode エンコーディングの処理に関する脆弱性 New	CWE-176 Unicode エンコーディングの不適切な処理	CVE-2026-35373	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

676	6.3	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 New	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-35374	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

677	3.3	低 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるUnicode エンコーディングの処理に関する脆弱性 New	CWE-176 Unicode エンコーディングの不適切な処理	CVE-2026-35375	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

678	5.8	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 New	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-35376	2026-05-7 11:26	2026-04-22	Show	GitHub Exploit DB Packet Storm

679	8.8	重要 Network	DBitNet	N300 T1 Pro ファームウェア	DBitNetのN300 T1 Pro ファームウェアにおけるクロスサイトリクエストフォージェリの脆弱性 New	CWE-352 同一生成元ポリシー違反	CVE-2026-36956	2026-05-7 11:26	2026-04-30	Show	GitHub Exploit DB Packet Storm

680	7.5	重要 Network	DBitNet	N300 T1 Pro ファームウェア	DBitNetのN300 T1 Pro ファームウェアにおけるリソースの枯渇に関する脆弱性 New	CWE-400 リソースの枯渇	CVE-2026-36957	2026-05-7 11:26	2026-04-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
611	6.5	MEDIUM Network	n8n	n8n	n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, the /chat WebSocket endpoint used by the Chat Trigger node's Hosted Chat feature did not verify tha… New	CWE-862 Missing Authorization	CVE-2026-42228	2026-05-7 03:08	2026-05-5	Show	GitHub Exploit DB Packet Storm

612	9.8	CRITICAL Network	n8n	n8n	n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, a flaw in the Oracle Database node's select operation allowed user-controlled input passed into the… New	CWE-89 SQL Injection	CVE-2026-42233	2026-05-7 03:07	2026-05-5	Show	GitHub Exploit DB Packet Storm

613	8.8	HIGH Network	n8n	n8n	n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, an authenticated user with permission to create or modify workflows containing a Python Code Node c… New	CWE-94 Code Injection	CVE-2026-42234	2026-05-7 03:05	2026-05-5	Show	GitHub Exploit DB Packet Storm

614	9.6	CRITICAL Network	n8n	n8n	n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, an unauthenticated attacker could register a malicious MCP OAuth client with a crafted client_name.… New	CWE-79 CWE-87 Cross-site Scripting Improper Neutralization of Alternate XSS Syntax	CVE-2026-42235	2026-05-7 03:05	2026-05-5	Show	GitHub Exploit DB Packet Storm

615	7.3	HIGH Network	apache	thrift	Improper Validation of Certificate with Host Mismatch vulnerability in Apache Thrift. This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixe… New	CWE-297 Improper Validation of Certificate with Host Mismatch	CVE-2026-43869	2026-05-7 03:05	2026-05-5	Show	GitHub Exploit DB Packet Storm

616	5.3	MEDIUM Network	apache	thrift	Memory Allocation with Excessive Size Value vulnerability in Apache Thrift. This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the issu… New	CWE-789 Memory Allocation with Excessive Size Value	CVE-2026-43868	2026-05-7 03:05	2026-05-5	Show	GitHub Exploit DB Packet Storm

617	7.3	HIGH Network	apache	thrift	Origin Validation Error, Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting'),… New	CWE-22 CWE-113 CWE-346 CWE-400 Path Traversal HTTP Response Splitting Origin Validation Error Uncontrolled Resource Consumption	CVE-2026-43870	2026-05-7 03:05	2026-05-5	Show	GitHub Exploit DB Packet Storm

618	7.5	HIGH Network	qualcomm	fastconnect_6200_firmware fastconnect_6700_firmware fastconnect_6900_firmware fastconnect_7800_firmware flight_rb5_5g_firmware fwa_gen_3_ultra_firmware g2_gen_1_firmware g3x_gen_…	Transient DOS when processing target power rate tables during channel configuration. Update	CWE-126 CWE-125 Buffer Over-read Out-of-bounds Read	CVE-2025-47401	2026-05-7 03:03	2026-05-5	Show	GitHub Exploit DB Packet Storm

619	7.5	HIGH Network	qualcomm	snapdragon_x65_5g_modem-rf_firmware snapdragon_x72_5g_modem-rf_firmware snapdragon_x75_5g_modem-rf_firmware srv1h_firmware srv1m_firmware sxr2230p_firmware sxr2250p_firmware sxr2…	Transient DOS when processing a malformed Fast Transition response frame with an invalid header structure during wireless roaming. Update	CWE-126 CWE-125 Buffer Over-read Out-of-bounds Read	CVE-2025-47403	2026-05-7 03:03	2026-05-5	Show	GitHub Exploit DB Packet Storm

620	7.8	HIGH Local	qualcomm	qca8695au_firmware qca9367_firmware qca9377_firmware qcc710_firmware qcm2290_firmware qcm4325_firmware qcm5430_firmware qcm6125_firmware qcm6490_firmware qcn6224_firmware	Memory corruption when dynamically changing the size of a previously allocated buffer while its contents are being modified. Update	CWE-120 CWE-787 Classic Buffer Overflow Out-of-bounds Write	CVE-2025-47404	2026-05-7 03:03	2026-05-5	Show	GitHub Exploit DB Packet Storm