Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
731 9.8 緊急
Network 		GNU Project inetutils GNU Projectのinetutilsにおける古典的バッファオーバーフローの脆弱性 New CWE-120
古典的バッファオーバーフロー 		CVE-2026-32746 2026-05-7 10:52 2026-03-13 Show GitHub Exploit DB Packet Storm
732 4.7 警告
Network 		GNU Project inetutils GNU Projectのinetutilsにおける領域間での誤ったリソース移動に関する脆弱性 New CWE-669
領域間での誤ったリソース移動 		CVE-2026-32772 2026-05-7 10:52 2026-03-16 Show GitHub Exploit DB Packet Storm
733 9.8 緊急
Network 		マイクロソフト Bing Microsoft Bing のリモートでコードが実行される脆弱性 New CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-33819 2026-05-7 10:52 2026-04-23 Show GitHub Exploit DB Packet Storm
734 5 警告
Local 		オラクル MySQL オラクルのMySQLにおけるリソースの不適切なシャットダウンおよびリリースに関する脆弱性 New CWE-404
リソースの不適切なシャットダウンおよびリリース 		CVE-2026-34317 2026-05-7 10:51 2026-04-21 Show GitHub Exploit DB Packet Storm
735 5.8 警告
Network 		オラクル MySQL オラクルのMySQLにおける情報漏えいに関する脆弱性 New CWE-200
情報漏えい 		CVE-2026-34318 2026-05-7 10:51 2026-04-21 Show GitHub Exploit DB Packet Storm
736 5 警告
Local 		オラクル MySQL オラクルのMySQLにおけるリクエストに対するレスポンス内容の違いに起因する情報漏えいに関する脆弱性 New CWE-204
リクエストに対するレスポンス内容の違いに起因する情報漏えい 		CVE-2026-34319 2026-05-7 10:51 2026-04-21 Show GitHub Exploit DB Packet Storm
737 7.5 重要
Network 		オラクル Java VM オラクルのJava VMにおけるアクセス制御に関する脆弱性 New CWE-284
不適切なアクセス制御 		CVE-2026-35229 2026-05-7 10:51 2026-04-21 Show GitHub Exploit DB Packet Storm
738 4.4 警告
Local 		オラクル Oracle Linux オラクルのOracle Linuxにおける境界外読み取りに関する脆弱性 New CWE-125
境界外読み取り 		CVE-2026-35233 2026-05-7 10:51 2026-05-1 Show GitHub Exploit DB Packet Storm
739 5.2 警告
Network 		オラクル Hyperion Infrastructure Technology オラクルのHyperion Infrastructure Technologyにおけるアクセス制御に関する脆弱性 New CWE-284
不適切なアクセス制御 		CVE-2026-35244 2026-05-7 10:51 2026-04-21 Show GitHub Exploit DB Packet Storm
740 9.1 緊急
Network 		Volcengine OpenViking VolcengineのOpenVikingにおける安全でない失敗処理に関する脆弱性 New CWE-636
安全でない失敗処理 		CVE-2026-40525 2026-05-7 10:51 2026-04-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312881 9.8 CRITICAL
Network 		opensecurity mobile_security_framework Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. Before 4.0.7, there is a flaw in the Static L… CWE-22
Path Traversal 		CVE-2024-43399 2024-08-21 01:21 2024-08-20 Show GitHub Exploit DB Packet Storm
312882 9.8 CRITICAL
Network 		dell dns-120_firmware
dnr-202l_firmware
dns-315l_firmware
dns-320_firmware
dns-320l_firmware
dns-320lw_firmware
dns-321_firmware
dnr-322l_firmware
dns-323_firmware
dns-325_firmw… 		A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, … CWE-77
Command Injection 		CVE-2024-7922 2024-08-21 01:20 2024-08-20 Show GitHub Exploit DB Packet Storm
312883 7.5 HIGH
Network 		horizoncloud caterease An issue in Horizon Business Services Inc. Caterease 16.0.1.1663 through 24.0.1.2405 and possibly later versions, allows a remote attacker to perform a Sniffing Network Traffic attack due to the clea… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2024-38891 2024-08-21 01:19 2024-08-3 Show GitHub Exploit DB Packet Storm
312884 8.8 HIGH
Network 		linksys e1500_firmware A Command Injection vulnerability exists in the do_upgrade_post function of the httpd binary in Linksys E1500 v1.0.06.001. As a result, an authenticated attacker can execute OS commands with root pri… CWE-78
OS Command  		CVE-2024-42633 2024-08-21 01:18 2024-08-20 Show GitHub Exploit DB Packet Storm
312885 7.5 HIGH
Network 		nissan-global blind_spot_protection_sensor_ecu_firmware Predictable seed generation in the security access mechanism of UDS in the Blind Spot Protection Sensor ECU in Nissan Altima (2022) allows attackers to predict the requested seeds and bypass security… CWE-330
 Use of Insufficiently Random Values 		CVE-2024-6348 2024-08-21 01:17 2024-08-20 Show GitHub Exploit DB Packet Storm
312886 9.8 CRITICAL
Network 		horizoncloud caterease An issue in Horizon Business Services Inc. Caterease 16.0.1.1663 through 24.0.1.2405 and possibly later versions, allows a remote attacker to expand control over the operating system from the databas… CWE-78
OS Command  		CVE-2024-38887 2024-08-21 01:17 2024-08-3 Show GitHub Exploit DB Packet Storm
312887 7.8 HIGH
Local 		google android In sendDeviceState_1_6 of RadioExt.cpp, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. Us… CWE-416
 Use After Free 		CVE-2024-32927 2024-08-21 01:15 2024-08-20 Show GitHub Exploit DB Packet Storm
312888 7.5 HIGH
Network 		nepstech ntpl-xpon1gfevn_firmware An issue in wishnet Nepstech Wifi Router NTPL-XPON1GFEVN v1.0 allows a remote attacker to obtain sensitive information via the lack of encryption during login process CWE-311
Missing Encryption of Sensitive Data 		CVE-2024-42657 2024-08-21 01:13 2024-08-20 Show GitHub Exploit DB Packet Storm
312889 5.9 MEDIUM
Network 		google
haxx 		nest_mini_firmware
libcurl 		The libcurl CURLOPT_SSL_VERIFYPEER option was disabled on a subset of requests made by Nest production devices which enabled a potential man-in-the-middle attack on requests to Google cloud services … NVD-CWE-noinfo
CVE-2024-32928 2024-08-21 01:13 2024-08-20 Show GitHub Exploit DB Packet Storm
312890 9.8 CRITICAL
Network 		nepstech ntpl-xpon1gfevn_firmware An issue in wishnet Nepstech Wifi Router NTPL-XPON1GFEVN v1.0 allows a remote attacker to obtain sensitive information via the cookie's parameter NVD-CWE-noinfo
CVE-2024-42658 2024-08-21 01:12 2024-08-20 Show GitHub Exploit DB Packet Storm