Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
71 7.8 重要
Local 		mullvad mullvad vpn mullvadのmullvad vpnにおける複数の脆弱性 New CWE-269
CWE-345
CWE-427
CWE-noinfo
CVE-2026-32323 2026-05-25 10:23 2026-05-19 Show GitHub Exploit DB Packet Storm
72 6.5 警告
Network 		Faraday Project Faraday Faraday ProjectのFaradayにおけるサーバサイドのリクエストフォージェリの脆弱性 New CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-33637 2026-05-25 10:22 2026-05-19 Show GitHub Exploit DB Packet Storm
73 8.8 重要
Local 		FreeBSD FreeBSD FreeBSDにおけるスタックベースのバッファオーバーフローの脆弱性 New CWE-121
スタックオーバーフロー 		CVE-2026-39461 2026-05-25 10:22 2026-05-21 Show GitHub Exploit DB Packet Storm
74 6.5 警告
Network 		plane plane planeにおけるデータクエリロジックの特殊要素の不適切な中立化に関する脆弱性 New CWE-943
データクエリロジックの特殊要素の不適切な中立化 		CVE-2026-40102 2026-05-25 10:22 2026-05-20 Show GitHub Exploit DB Packet Storm
75 7.5 重要
Network 		マイクロソフト Microsoft Entra ID Microsoft Entra ID のスプーフィングの脆弱性 New CWE-200
情報漏えい 		CVE-2026-40379 2026-05-25 10:22 2026-05-12 Show GitHub Exploit DB Packet Storm
76 4.3 警告
Network 		Mattermost, Inc. Mattermost Server Mattermost, Inc.のMattermost Serverにおける不正な認証に関する脆弱性 New CWE-863
不正な認証 		CVE-2026-4055 2026-05-25 10:22 2026-05-21 Show GitHub Exploit DB Packet Storm
77 7.8 重要
Local 		Samba Project rsync Samba Projectのrsyncにおけるレングスパラメーターの不整合による処理に関する脆弱性 New CWE-130
レングスパラメーターの不整合による不適切な処理 		CVE-2026-41035 2026-05-25 10:22 2026-04-16 Show GitHub Exploit DB Packet Storm
78 9.8 緊急
Network 		NASA F Prime NASAのF Primeにおける複数の脆弱性 New CWE-190
CWE-787
CVE-2026-41144 2026-05-25 10:22 2026-04-22 Show GitHub Exploit DB Packet Storm
79 7.8 重要
Local 		DevSpace DevSpace DevSpaceにおける複数の脆弱性 New CWE-200
CWE-306
CVE-2026-42283 2026-05-25 10:22 2026-05-14 Show GitHub Exploit DB Packet Storm
80 10 緊急
Network 		マイクロソフト
The Foreman		 Azure Resource Manager
Azure Local 		Azure Local 向けディスコネクテッド オペレーション サービスの特権昇格の脆弱性 New CWE-287
CWE-noinfo
CVE-2026-42822 2026-05-25 10:22 2026-05-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311371 8.6 HIGH
Network 		cisco ios_xe A vulnerability in the Protocol Independent Multicast (PIM) feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affecte… NVD-CWE-noinfo
CVE-2024-20464 2024-10-25 04:47 2024-09-26 Show GitHub Exploit DB Packet Storm
311372 8.6 HIGH
Network 		cisco ios_xe
ios_xe_sd-wan 		A vulnerability in the process that classifies traffic that is going to the Unified Threat Defense (UTD) component of Cisco IOS XE Software in controller mode could allow an unauthenticated, remote a… NVD-CWE-noinfo
CVE-2024-20455 2024-10-25 04:47 2024-09-26 Show GitHub Exploit DB Packet Storm
311373 5.8 MEDIUM
Network 		cisco ios A vulnerability in the access control list (ACL) programming of Cisco IOS Software running on Cisco Industrial Ethernet 4000, 4010, and 5000 Series Switches could allow an unauthenticated, remote att… NVD-CWE-noinfo
CVE-2024-20465 2024-10-25 04:46 2024-09-26 Show GitHub Exploit DB Packet Storm
311374 8.8 HIGH
Network 		cisco ios_xe A vulnerability in the web-based management interface of Cisco IOS XE Software could allow an unauthenticated, remote attacker to perform a cross-site request forgery (CSRF) attack and execute comman… CWE-352
 Origin Validation Error 		CVE-2024-20437 2024-10-25 04:45 2024-09-26 Show GitHub Exploit DB Packet Storm
311375 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Pass non-null to dcn20_validate_apply_pipe_split_flags [WHAT & HOW] "dcn20_validate_apply_pipe_split_flags" dere… CWE-476
 NULL Pointer Dereference 		CVE-2024-49923 2024-10-25 04:43 2024-10-22 Show GitHub Exploit DB Packet Storm
311376 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: vhost/scsi: null-ptr-dereference in vhost_scsi_get_req() Since commit 3f8ca2e115e5 ("vhost/scsi: Extract common handling code fro… CWE-476
 NULL Pointer Dereference 		CVE-2024-49863 2024-10-25 04:43 2024-10-22 Show GitHub Exploit DB Packet Storm
311377 - - - Llama Stack prior to revision 7a8aa775e5a267cf8660d83140011a0b7f91e005 used pickle as a serialization format for socket communication, potentially allowing for remote code execution. Socket communica… - CVE-2024-50050 2024-10-25 04:35 2024-10-23 Show GitHub Exploit DB Packet Storm
311378 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: nfsd: fix possible badness in FREE_STATEID When multiple FREE_STATEIDs are sent for the same delegation stateid, it can lead to a… CWE-416
 Use After Free 		CVE-2024-50043 2024-10-25 04:32 2024-10-22 Show GitHub Exploit DB Packet Storm
311379 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: i40e: Fix macvlan leak by synchronizing access to mac_filter_hash This patch addresses a macvlan leak issue in the i40e driver ca… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2024-50041 2024-10-25 04:31 2024-10-22 Show GitHub Exploit DB Packet Storm
311380 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ravb: Fix potential use-after-free in ravb_rx_gbeth() The skb is delivered to napi_gro_receive() which may free it, after calling… CWE-416
 Use After Free 		CVE-2022-48964 2024-10-25 04:28 2024-10-22 Show GitHub Exploit DB Packet Storm