Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1121 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2025-39939 2026-01-29 16:00 2025-10-4 Show GitHub Exploit DB Packet Storm
1122 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2025-39942 2026-01-29 16:00 2025-10-4 Show GitHub Exploit DB Packet Storm
1123 7.1 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2025-39943 2026-01-29 16:00 2025-10-4 Show GitHub Exploit DB Packet Storm
1124 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2025-39944 2026-01-29 16:00 2025-10-4 Show GitHub Exploit DB Packet Storm
1125 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2025-39946 2026-01-29 16:00 2025-10-4 Show GitHub Exploit DB Packet Storm
1126 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2025-39947 2026-01-29 16:00 2025-10-4 Show GitHub Exploit DB Packet Storm
1127 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2025-39948 2026-01-29 16:00 2025-10-4 Show GitHub Exploit DB Packet Storm
1128 5.5 警告
Local 		- アップルのmacOSにおけるログファイルからの情報漏えいに関する脆弱性 CWE-532
ログファイルからの情報漏えい 		CVE-2025-43508 2026-01-29 16:00 2026-01-16 Show GitHub Exploit DB Packet Storm
1129 6.7 警告
Local 		クアルコム fastconnect 6700 ファームウェア
wcn6755 ファームウェア
SM8735 ファームウェア
QCS6490 ファームウェア
WCD9380 ファームウェア
video collaboration vc3 platform ファームウェア
wc… 		クアルコムのfastconnect 6700 ファームウェア等の複数製品における古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2025-47335 2026-01-29 16:00 2026-01-7 Show GitHub Exploit DB Packet Storm
1130 6.7 警告
Local 		クアルコム sm8750 ファームウェア
WCN7750 ファームウェア
wsa8845h ファームウェア
wcn7880 ファームウェア
wcn7861 ファームウェア
SM8735 ファームウェア
wcd9378 ファームウェア
wcd9395 ファームウェア
wcn7881&… 		クアルコムのfastconnect 7800 ファームウェア等の複数製品における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2025-47336 2026-01-29 16:00 2026-01-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
491 6.5 MEDIUM
Network 		- - An issue was discovered in ToToLink A3300R firmware v17.0.0cu.557_B20221024 allowing attackers to execute arbitrary commands via the recHour parameter to /cgi-bin/cstecgi.cgi. New CWE-77
Command Injection 		CVE-2026-31168 2026-04-24 23:41 2026-04-24 Show GitHub Exploit DB Packet Storm
492 6.5 MEDIUM
Network 		- - An issue was discovered in ToToLink A3300R firmware v17.0.0cu.557_B20221024 allowing attackers to execute arbitrary commands via the week parameter to /cgi-bin/cstecgi.cgi. New CWE-77
Command Injection 		CVE-2026-31169 2026-04-24 23:41 2026-04-24 Show GitHub Exploit DB Packet Storm
493 6.5 MEDIUM
Network 		- - An issue was discovered in ToToLink A3300R firmware v17.0.0cu.557_B20221024 allowing attackers to execute arbitrary commands via the interval parameter to /cgi-bin/cstecgi.cgi. New CWE-77
Command Injection 		CVE-2026-31173 2026-04-24 23:41 2026-04-24 Show GitHub Exploit DB Packet Storm
494 8.0 HIGH
Network 		dnnsoftware dotnetnuke DNN (formerly DotNetNuke) is an open-source web content management platform (CMS) in the Microsoft ecosystem. Prior to version 10.2.2, a user could upload a specially crafted SVG file that could incl… Update CWE-87
 Improper Neutralization of Alternate XSS Syntax 		CVE-2026-40321 2026-04-24 23:41 2026-04-18 Show GitHub Exploit DB Packet Storm
495 9.6 CRITICAL
Network 		- - Improper access control in Microsoft Partner Center allows an authorized attacker to elevate privileges over a network. New CWE-284
Improper Access Control 		CVE-2026-24303 2026-04-24 23:41 2026-04-24 Show GitHub Exploit DB Packet Storm
496 8.6 HIGH
Network 		- - Server-side request forgery (ssrf) in Microsoft Purview allows an unauthorized attacker to elevate privileges over a network. New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-26150 2026-04-24 23:41 2026-04-24 Show GitHub Exploit DB Packet Storm
497 3.7 LOW
Network 		- - A request smuggling vulnerability exists in libsoup's HTTP/1 header parsing logic. The soup_message_headers_append_common() function in libsoup/soup-message-headers.c unconditionally appends each hea… New CWE-444
HTTP Request Smuggling 		CVE-2026-2708 2026-04-24 23:41 2026-04-24 Show GitHub Exploit DB Packet Storm
498 8.0 HIGH
Network 		- - Uncontrolled search path element in Microsoft Power Apps allows an unauthorized attacker to execute code over a network. New CWE-427
 Uncontrolled Search Path Element 		CVE-2026-32172 2026-04-24 23:41 2026-04-24 Show GitHub Exploit DB Packet Storm
499 9.3 CRITICAL
Network 		- - Server-side request forgery (ssrf) in Microsoft Dynamics 365 (Online) allows an unauthorized attacker to perform spoofing over a network. New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-32210 2026-04-24 23:41 2026-04-24 Show GitHub Exploit DB Packet Storm
500 9.3 CRITICAL
Network 		- - Url redirection to untrusted site ('open redirect') in M365 Copilot allows an unauthorized attacker to elevate privileges over a network. New CWE-601
Open Redirect 		CVE-2026-33102 2026-04-24 23:41 2026-04-24 Show GitHub Exploit DB Packet Storm