Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
731	9.8	緊急 Network	GNU Project	inetutils	GNU Projectのinetutilsにおける古典的バッファオーバーフローの脆弱性 New	CWE-120 古典的バッファオーバーフロー	CVE-2026-32746	2026-05-7 10:52	2026-03-13	Show	GitHub Exploit DB Packet Storm

732	4.7	警告 Network	GNU Project	inetutils	GNU Projectのinetutilsにおける領域間での誤ったリソース移動に関する脆弱性 New	CWE-669 領域間での誤ったリソース移動	CVE-2026-32772	2026-05-7 10:52	2026-03-16	Show	GitHub Exploit DB Packet Storm

733	9.8	緊急 Network	マイクロソフト	Bing	Microsoft Bing のリモートでコードが実行される脆弱性 New	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-33819	2026-05-7 10:52	2026-04-23	Show	GitHub Exploit DB Packet Storm

734	5	警告 Local	オラクル	MySQL	オラクルのMySQLにおけるリソースの不適切なシャットダウンおよびリリースに関する脆弱性 New	CWE-404 リソースの不適切なシャットダウンおよびリリース	CVE-2026-34317	2026-05-7 10:51	2026-04-21	Show	GitHub Exploit DB Packet Storm

735	5.8	警告 Network	オラクル	MySQL	オラクルのMySQLにおける情報漏えいに関する脆弱性 New	CWE-200 情報漏えい	CVE-2026-34318	2026-05-7 10:51	2026-04-21	Show	GitHub Exploit DB Packet Storm

736	5	警告 Local	オラクル	MySQL	オラクルのMySQLにおけるリクエストに対するレスポンス内容の違いに起因する情報漏えいに関する脆弱性 New	CWE-204 リクエストに対するレスポンス内容の違いに起因する情報漏えい	CVE-2026-34319	2026-05-7 10:51	2026-04-21	Show	GitHub Exploit DB Packet Storm

737	7.5	重要 Network	オラクル	Java VM	オラクルのJava VMにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-35229	2026-05-7 10:51	2026-04-21	Show	GitHub Exploit DB Packet Storm

738	4.4	警告 Local	オラクル	Oracle Linux	オラクルのOracle Linuxにおける境界外読み取りに関する脆弱性 New	CWE-125 境界外読み取り	CVE-2026-35233	2026-05-7 10:51	2026-05-1	Show	GitHub Exploit DB Packet Storm

739	5.2	警告 Network	オラクル	Hyperion Infrastructure Technology	オラクルのHyperion Infrastructure Technologyにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-35244	2026-05-7 10:51	2026-04-21	Show	GitHub Exploit DB Packet Storm

740	9.1	緊急 Network	Volcengine	OpenViking	VolcengineのOpenVikingにおける安全でない失敗処理に関する脆弱性 New	CWE-636 安全でない失敗処理	CVE-2026-40525	2026-05-7 10:51	2026-04-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
701	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: sched_ext: Fix stale direct dispatch state in ddsp_dsq_id @p->scx.ddsp_dsq_id can be left set (non-SCX_DSQ_INVALID) triggering a … Update	NVD-CWE-noinfo	CVE-2026-31733	2026-05-8 01:44	2026-05-2	Show	GitHub Exploit DB Packet Storm

702	5.7	MEDIUM Network	hcltech	bigfix_service_management	HHCL BigFix Service Management (SM) is affected by a Cross‑Site Request Forgery (CSRF) vulnerability. This could lead to unauthorized changes or exposure of sensitive data. New	CWE-352 Origin Validation Error	CVE-2025-31957	2026-05-8 01:35	2026-05-7	Show	GitHub Exploit DB Packet Storm

703	3.5	LOW Network	hcltech	bigfix_service_management	HCL BigFix Service Management (SM) application fails to strip EXIF metadata from uploaded images. This could lead to confidentiality and privacy risks if sensitive location information is unintentio… New	CWE-1230 Exposure of Sensitive Information Through Metadata	CVE-2025-31959	2026-05-8 01:35	2026-05-7	Show	GitHub Exploit DB Packet Storm

704	5.3	MEDIUM Network	hcltech	bigfix_service_management	HCL BigFix Service Management (SM) is affected by an Information Disclosure – Server Banner issue was identified. Exposed server banners may reveal software versions and system details, potentially a… New	CWE-200 Information Exposure	CVE-2025-31975	2026-05-8 01:33	2026-05-7	Show	GitHub Exploit DB Packet Storm

705	7.5	HIGH Network	hcltech	bigfix_service_management	HCL BigFix Service Management (SM) is vulnerable to insufficiently protected credentials for a short duration while communicating with a backend, internal application which could allow an attacker to… New	CWE-200 CWE-522 Information Exposure Insufficiently Protected Credentials	CVE-2025-31976	2026-05-8 01:30	2026-05-7	Show	GitHub Exploit DB Packet Storm

706	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uvc: fix NULL pointer dereference during unbind race Commit b81ac4395bbe ("usb: gadget: uvc: allow for application t… Update	CWE-476 NULL Pointer Dereference	CVE-2026-31726	2026-05-8 01:26	2026-05-2	Show	GitHub Exploit DB Packet Storm

707	4.6	MEDIUM Network	hcltech	bigfix_service_management	HCL BigFix Service Management (SM) does not adequately sanitize or safely render spreadsheet files (CSV, XLS, XLSX) before processing or distributing them. An attacker could populate data fields whic… New	CWE-201 Insertion of Sensitive Information Into Sent Data	CVE-2025-31978	2026-05-8 01:26	2026-05-7	Show	GitHub Exploit DB Packet Storm

708	5.4	MEDIUM Network	hcltech	bigfix_service_management	HCL BigFix Service Management (SM) is affected by a security misconfiguration due to a missing or insecure “X-Content-Type-Options” header. This could allow browsers to perform MIME-type sniffing, p… New	CWE-200 Information Exposure	CVE-2025-31984	2026-05-8 01:25	2026-05-7	Show	GitHub Exploit DB Packet Storm

709	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: usb: gadget: u_ether: Fix NULL pointer deref in eth_get_drvinfo Commit ec35c1969650 ("usb: gadget: f_ncm: Fix net_device lifecycl… Update	CWE-476 NULL Pointer Dereference	CVE-2026-31727	2026-05-8 01:20	2026-05-2	Show	GitHub Exploit DB Packet Storm

710	-		-	-	Incorrect boundary conditions in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 150, Thunderbird 150, Firefox ESR 140.10.1, Thunderbird 140.10.1, and Firefox ESR 115.35.… New	-	CVE-2026-8091	2026-05-8 01:16	2026-05-7	Show	GitHub Exploit DB Packet Storm