Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
911 8.8 重要
Network 		neutrinolabs xrdp neutrinolabsのxrdpにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-35512 2026-04-28 10:12 2026-04-17 Show GitHub Exploit DB Packet Storm
912 4.3 警告
Network 		Apache Software Foundation Apache Airflow Apache Software FoundationのApache Airflowにおけるアクセス制御の不十分な粒度に関する脆弱性 CWE-1220
アクセス制御の不十分な粒度 		CVE-2026-38743 2026-04-28 10:12 2026-04-24 Show GitHub Exploit DB Packet Storm
913 7.7 重要
Network 		Lee Peuker Movary Lee PeukerのMovaryにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-40348 2026-04-28 10:12 2026-04-18 Show GitHub Exploit DB Packet Storm
914 8.8 重要
Network 		Lee Peuker Movary Lee PeukerのMovaryにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-40349 2026-04-28 10:12 2026-04-18 Show GitHub Exploit DB Packet Storm
915 8.8 重要
Network 		Lee Peuker Movary Lee PeukerのMovaryにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-40350 2026-04-28 10:12 2026-04-18 Show GitHub Exploit DB Packet Storm
916 8.8 重要
Network 		Apache Software Foundation ActiveMQ Broker
Apache ActiveMQ 		Apache Software FoundationのApache ActiveMQ等の複数製品における複数の脆弱性 CWE-20
CWE-94
CVE-2026-40466 2026-04-28 10:12 2026-04-24 Show GitHub Exploit DB Packet Storm
917 4.3 警告
Network 		Apache Software Foundation Apache Airflow Apache Software FoundationのApache Airflowにおけるアクセス制御の不十分な粒度に関する脆弱性 CWE-1220
アクセス制御の不十分な粒度 		CVE-2026-40690 2026-04-28 10:12 2026-04-24 Show GitHub Exploit DB Packet Storm
918 6.1 警告
Network 		Astro Astro Astroにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-41067 2026-04-28 10:12 2026-04-24 Show GitHub Exploit DB Packet Storm
919 5.4 警告
Adjacent 		OpenPrinting CUPS OpenPrintingのCUPSにおける複数の脆弱性 CWE-125
CWE-200
CVE-2026-41079 2026-04-28 10:11 2026-04-24 Show GitHub Exploit DB Packet Storm
920 6.6 警告
Local 		Vim Vim VimにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-41411 2026-04-28 10:11 2026-04-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313181 - - - Out-of-bounds read in applying paragraphs in Samsung Notes prior to version 4.4.21.62 allows local attackers to potentially read memory. - CVE-2024-34624 2024-08-7 11:15 2024-08-7 Show GitHub Exploit DB Packet Storm
313182 - - - Out-of-bounds write in applying connected information in Samsung Notes prior to version 4.4.21.62 allows local attackers to potentially execute arbitrary code with Samsung Notes privilege. - CVE-2024-34623 2024-08-7 11:15 2024-08-7 Show GitHub Exploit DB Packet Storm
313183 - - - Out-of-bounds write in appending paragraph in Samsung Notes prior to version 4.4.21.62 allows local attackers to potentially execute arbitrary code with Samsung Notes privilege. - CVE-2024-34622 2024-08-7 11:15 2024-08-7 Show GitHub Exploit DB Packet Storm
313184 - - - Out-of-bounds read in applying binary with data in Samsung Notes prior to version 4.4.21.62 allows local attackers to potentially read memory. - CVE-2024-34621 2024-08-7 11:15 2024-08-7 Show GitHub Exploit DB Packet Storm
313185 - - - Improper privilege management in SumeNNService prior to SMR Aug-2024 Release 1 allows local attackers to start privileged service. - CVE-2024-34620 2024-08-7 11:15 2024-08-7 Show GitHub Exploit DB Packet Storm
313186 - - - Improper input validation in librtp.so prior to SMR Aug-2024 Release 1 allows remote attackers to execute arbitrary code with system privilege. User interaction is required for triggering this vulner… - CVE-2024-34619 2024-08-7 11:15 2024-08-7 Show GitHub Exploit DB Packet Storm
313187 - - - Improper access control in System property prior to SMR Aug-2024 Release 1 allows local attackers to access cell related information. - CVE-2024-34618 2024-08-7 11:15 2024-08-7 Show GitHub Exploit DB Packet Storm
313188 - - - Improper handling of insufficient permission in Telephony prior to SMR Aug-2024 Release 1 allows local attackers to configure default Message application. - CVE-2024-34617 2024-08-7 11:15 2024-08-7 Show GitHub Exploit DB Packet Storm
313189 - - - Improper handling of insufficient permission in KnoxDualDARPolicy prior to SMR Aug-2024 Release 1 allows local attackers to access sensitive data. - CVE-2024-34616 2024-08-7 11:15 2024-08-7 Show GitHub Exploit DB Packet Storm
313190 - - - Out-of-bound write in libsmat.so prior to SMR Aug-2024 Release 1 allows local attackers to cause memory corruption. - CVE-2024-34615 2024-08-7 11:15 2024-08-7 Show GitHub Exploit DB Packet Storm