Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
701	9.8	緊急 Network	Synway	SMG Gateway Management Software	SynwayのSMG Gateway Management SoftwareにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2025-71284	2026-05-7 10:53	2026-04-30	Show	GitHub Exploit DB Packet Storm

702	7.8	重要 Local	KDE project	KCoreAddons	KDE projectのKCoreAddonsにおけるエスケープ、メタ、またはコントロールシーケンスの不適切な無効化に関する脆弱性	CWE-150 エスケープ、メタ、またはコントロールシーケンスの不適切な無効化	CVE-2026-41526	2026-05-7 10:53	2026-04-28	Show	GitHub Exploit DB Packet Storm

703	8.8	重要 Network	SailPoint Technologies Holdings, Inc.	IdentityIQ	SailPoint Technologies Holdings, Inc.のIdentityIQにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-5712	2026-05-7 10:53	2026-04-29	Show	GitHub Exploit DB Packet Storm

704	5.5	警告 Local	Canonical	pdfunite	Canonicalのpdfuniteにおける古典的バッファオーバーフローの脆弱性	CWE-120 古典的バッファオーバーフロー	CVE-2018-25306	2026-05-7 10:53	2026-04-29	Show	GitHub Exploit DB Packet Storm

705	9.8	緊急 Network	Kvcache-ai	Ktransformers	Kvcache-aiのKtransformersにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-26210	2026-05-7 10:53	2026-04-23	Show	GitHub Exploit DB Packet Storm

706	7.1	重要 Local	デル	Dell/Alienware Purchased Apps	デルのDell/Alienware Purchased Appsにおけるリンク解釈に関する脆弱性	CWE-59 リンク解釈の問題	CVE-2026-27105	2026-05-7 10:53	2026-04-29	Show	GitHub Exploit DB Packet Storm

707	7.8	重要 Local	entechtaiwan	TViPort	entechtaiwanのTViPortにおける複数の脆弱性	CWE-20 CWE-269	CVE-2026-30769	2026-05-7 10:53	2026-04-29	Show	GitHub Exploit DB Packet Storm

708	5.9	警告 Network	Elasticsearch B.V.	Elastic Package Registry	Elasticsearch B.V.のElastic Package Registryにおけるデジタル署名の検証に関する脆弱性	CWE-347 デジタル署名の不適切な検証	CVE-2026-33467	2026-05-7 10:53	2026-04-28	Show	GitHub Exploit DB Packet Storm

709	4.4	警告 Local	Mercurycom	MIPC252W Firmware	MercurycomのMIPC252W Firmwareにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-35901	2026-05-7 10:53	2026-04-27	Show	GitHub Exploit DB Packet Storm

710	6.2	警告 Local	Mercurycom	MIPC252W Firmware	MercurycomのMIPC252W Firmwareにおける過度な認証試行の不適切な制限に関する脆弱性	CWE-307 過度な認証試行の不適切な制限	CVE-2026-35902	2026-05-7 10:53	2026-04-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312671	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix a possible null pointer dereference In function lpfc_xcvr_data_show, the memory allocation with kmalloc might fai…	CWE-476 NULL Pointer Dereference	CVE-2024-43821	2024-09-4 02:49	2024-08-17	Show	GitHub Exploit DB Packet Storm

312672	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: pci-epf-test: Make use of cached 'epc_features' in pci_epf_test_core_init() Instead of getting the epc_features fr…	CWE-476 NULL Pointer Dereference	CVE-2024-43824	2024-09-4 02:48	2024-08-17	Show	GitHub Exploit DB Packet Storm

312673	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: kvm: s390: Reject memory region operations for ucontrol VMs This change rejects the KVM_SET_USER_MEMORY_REGION and KVM_SET_USER_M…	CWE-476 NULL Pointer Dereference	CVE-2024-43819	2024-09-4 02:47	2024-08-17	Show	GitHub Exploit DB Packet Storm

312674	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ASoC: amd: Adjust error handling in case of absent codec device acpi_get_first_physical_node() can return NULL in several cases (…	CWE-476 NULL Pointer Dereference	CVE-2024-43818	2024-09-4 02:45	2024-08-17	Show	GitHub Exploit DB Packet Storm

312675	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net: missing check virtio Two missing check in virtio_net_hdr_to_skb() allowed syzbot to crash kernels again 1. After the skb_se…	NVD-CWE-noinfo	CVE-2024-43817	2024-09-4 02:41	2024-08-17	Show	GitHub Exploit DB Packet Storm

312676	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: hfs: fix to initialize fields of hfs_inode_info after hfs_alloc_inode() Syzbot reports uninitialized value access issue as below:…	CWE-908 Use of Uninitialized Resource	CVE-2024-42311	2024-09-4 02:38	2024-08-17	Show	GitHub Exploit DB Packet Storm

312677	9.8	CRITICAL Network	chartist	chartist	Chartist 1.x through 1.3.0 allows Prototype Pollution via the extend function.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2024-45435	2024-09-4 02:23	2024-08-29	Show	GitHub Exploit DB Packet Storm

312678	-		-	-	MCMS v5.4.1 has front-end file upload vulnerability which can lead to remote command execution.	-	CVE-2024-42991	2024-09-4 01:35	2024-09-4	Show	GitHub Exploit DB Packet Storm

312679	-		-	-	ASIS (aka Aplikasi Sistem Sekolah using CodeIgniter 3) 3.0.0 through 3.2.0 allows index.php username SQL injection for Authentication Bypass.	-	CVE-2024-45622	2024-09-4 01:35	2024-09-3	Show	GitHub Exploit DB Packet Storm

312680	-		-	-	D-Link DAP-2310 Hardware A Firmware 1.16RC028 allows remote attackers to execute arbitrary code via a stack-based buffer overflow in the ATP binary that handles PHP HTTP GET requests for the Apache H…	-	CVE-2024-45623	2024-09-4 00:35	2024-09-3	Show	GitHub Exploit DB Packet Storm