Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
961 5.9 警告
Network 		Timo Sirainen
Open-Xchange		 Dovecot Pro
Dovecot 		Timo Sirainen等の複数ベンダの製品における認証に関する脆弱性 CWE-287
CWE-Other
CVE-2026-27856 2026-05-1 10:39 2026-03-27 Show GitHub Exploit DB Packet Storm
962 5.3 警告
Network 		Timo Sirainen
Open-Xchange		 Dovecot Pro
Dovecot 		Timo Sirainen等の複数ベンダの製品におけるLDAP インジェクションの脆弱性 CWE-90
LDAP インジェクション 		CVE-2026-27860 2026-05-1 10:39 2026-03-27 Show GitHub Exploit DB Packet Storm
963 8.4 重要
Local 		Anthropic PBC Claude Code
Claude Agent SDK 		Anthropic PBCのClaude Agent SDK等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-35020 2026-05-1 10:39 2026-04-6 Show GitHub Exploit DB Packet Storm
964 7.8 重要
Local 		Anthropic PBC Claude Code
Claude Agent SDK 		Anthropic PBCのClaude Agent SDK等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-35021 2026-05-1 10:39 2026-04-6 Show GitHub Exploit DB Packet Storm
965 9.8 緊急
Network 		Anthropic PBC Claude Code
Claude Agent SDK 		Anthropic PBCのClaude Agent SDK等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-35022 2026-05-1 10:39 2026-04-6 Show GitHub Exploit DB Packet Storm
966 7.8 重要
Local 		MAGIX MAGIX MP3 deluxe MAGIXのMAGIX MP3 deluxeにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2018-25260 2026-05-1 10:39 2026-04-22 Show GitHub Exploit DB Packet Storm
967 7.8 重要
Local 		Enter Srl Iperius Backup Enter SrlのIperius Backupにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2018-25261 2026-05-1 10:39 2026-04-22 Show GitHub Exploit DB Packet Storm
968 10 緊急
Network 		マイクロソフト Microsoft Purview eDiscovery Microsoft Purview eDiscovery Elevation of Privilege Vulnerability CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-26150 2026-05-1 10:39 2026-04-23 Show GitHub Exploit DB Packet Storm
969 8.8 重要
Network 		Nexxt Solutions Nebula300Plus Firmware Nexxt SolutionsのNebula300Plus Firmwareにおける非公開の機能に関する脆弱性 CWE-912
非公開の機能 		CVE-2026-31847 2026-05-1 10:38 2026-03-23 Show GitHub Exploit DB Packet Storm
970 9.8 緊急
Network 		Nexxt Solutions Nebula300Plus Firmware Nexxt SolutionsのNebula300Plus Firmwareにおける重要な情報の平文保存に関する脆弱性 CWE-312
重要な情報の平文保存 		CVE-2026-31848 2026-05-1 10:38 2026-03-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312871 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: idpf: fix UAFs when destroying the queues The second tagged commit started sometimes (very rarely, but possible) throwing WARNs f… CWE-416
 Use After Free 		CVE-2024-44932 2024-08-28 01:08 2024-08-26 Show GitHub Exploit DB Packet Storm
312872 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: net: bridge: mcast: wait for previous gc cycles when removing port syzbot hit a use-after-free[1] which is caused because the bri… CWE-416
 Use After Free 		CVE-2024-44934 2024-08-28 01:07 2024-08-26 Show GitHub Exploit DB Packet Storm
312873 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: thermal: int340x: fix memory leak in int3400_notify() It is easy to hit the below memory leaks in my TigerLake platform: unrefer… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2022-48924 2024-08-28 01:07 2024-08-22 Show GitHub Exploit DB Packet Storm
312874 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: thermal: core: Fix TZ_GET_TRIP NULL pointer dereference Do not call get_trip_hyst() from thermal_genl_cmd_tz_get_trip() if the th… CWE-476
 NULL Pointer Dereference 		CVE-2022-48915 2024-08-28 01:07 2024-08-22 Show GitHub Exploit DB Packet Storm
312875 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: cifs: fix double free race when mount fails in cifs_get_root() When cifs_get_root() fails during cifs_smb3_do_mount() we call dea… CWE-415
 Double Free 		CVE-2022-48919 2024-08-28 01:07 2024-08-22 Show GitHub Exploit DB Packet Storm
312876 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: iwlwifi: mvm: check debugfs_dir ptr before use When "debugfs=off" is used on the kernel command line, iwiwifi's mvm module uses a… CWE-476
 NULL Pointer Dereference 		CVE-2022-48918 2024-08-28 01:07 2024-08-22 Show GitHub Exploit DB Packet Storm
312877 9.8 CRITICAL
Network 		fastcom fw300r_firmware A stack overflow in FAST FW300R v1.3.13 Build 141023 Rel.61347n allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via a crafted file path. CWE-787
 Out-of-bounds Write 		CVE-2024-41285 2024-08-28 01:03 2024-08-27 Show GitHub Exploit DB Packet Storm
312878 9.8 CRITICAL
Network 		angeljudesuarez tailoring_management_system A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. This vulnerability affects unknown code of the file staffcatedit.php. The manipulation of the argumen… CWE-89
SQL Injection 		CVE-2024-8171 2024-08-28 01:02 2024-08-27 Show GitHub Exploit DB Packet Storm
312879 9.8 CRITICAL
Network 		rems zipped_folder_manager_app A vulnerability classified as problematic has been found in SourceCodester Zipped Folder Manager App 1.0. This affects an unknown part of the file /endpoint/add-folder.php. The manipulation of the ar… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-8170 2024-08-28 01:02 2024-08-27 Show GitHub Exploit DB Packet Storm
312880 6.1 MEDIUM
Network 		rems qr_code_attendance_system A vulnerability, which was classified as problematic, has been found in SourceCodester QR Code Attendance System 1.0. This issue affects some unknown processing of the file /endpoint/delete-student.p… CWE-79
Cross-site Scripting 		CVE-2024-8172 2024-08-28 01:01 2024-08-27 Show GitHub Exploit DB Packet Storm