Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
191501	6.1	警告 Network	Elasticsearch	-	Kibana の Time Series Visual Builder におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-8439	2017-07-5 11:57	2017-06-1	Show	GitHub Exploit DB Packet Storm

191502	8.8	重要 Network	Elasticsearch	-	Elastic X-Pack Security における認可・権限・アクセス制御に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2017-8438	2017-07-5 11:57	2017-06-1	Show	GitHub Exploit DB Packet Storm

191503	8.8	重要 Network	Openbravo	-	Openbravo Business Suite における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2017-9437	2017-07-5 11:41	2017-05-29	Show	GitHub Exploit DB Packet Storm

191504	6.7	警告 Local	CompuLab	-	BIOS 2017-05-21 未満搭載の CompuLab Intense PC および MintBox 2 デバイスにおけるファームウェアルートキットをインストールされる脆弱性	CWE-254 セキュリティ機能	CVE-2017-8083	2017-07-5 11:06	2017-06-4	Show	GitHub Exploit DB Packet Storm

191505	6.1	警告 Network	富士通	-	富士通 Interstage List Works におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	-	2017-07-5 11:00	2017-07-3	Show	GitHub Exploit DB Packet Storm

191506	5.3	警告 Network	Phoenix Broadband Technologies	-	Phoenix Broadband PowerAgent SC3 BMS におけるハードコードされた認証情報の使用に関する脆弱性	CWE-798 ハードコードされた認証情報の使用	CVE-2017-6039	2017-07-4 19:06	2017-06-1	Show	GitHub Exploit DB Packet Storm

191507	9.8	緊急 Network	TeamPass	-	TeamPass の users.queries.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2017-9436	2017-07-4 18:08	2017-07-1	Show	GitHub Exploit DB Packet Storm

191508	5.3	警告 Network	Peplink	-	複数の Peplink Balance デバイス製品のファームウェアにおける情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2017-8840	2017-07-4 18:08	2017-06-5	Show	GitHub Exploit DB Packet Storm

191509	9.8	緊急 Network	Peplink	-	複数の Peplink Balance デバイス製品のファームウェアにおける証明書・パスワードの管理に関する脆弱性	CWE-255 証明書・パスワード管理	CVE-2017-8837	2017-07-4 18:08	2017-06-5	Show	GitHub Exploit DB Packet Storm

191510	6.5	警告 Network	Spice Project	-	spice-gtk ウィジェットにおけるホストのクリップボードから情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-3066	2017-07-4 17:57	2016-03-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: crypto: caam - fix DMA corruption on long hmac keys When a key longer than block size is supplied, it is copied and then hashed i… Update	NVD-CWE-noinfo	CVE-2026-43044	2026-05-9 03:58	2026-05-2	Show	GitHub Exploit DB Packet Storm

2	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: crypto: af-alg - fix NULL pointer dereference in scatterwalk The AF_ALG interface fails to unmark the end of a Scatter/Gather Lis… Update	CWE-476 NULL Pointer Dereference	CVE-2026-43043	2026-05-9 03:57	2026-05-2	Show	GitHub Exploit DB Packet Storm

3	7.1	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: mpls: add seqcount to protect the platform_label{,s} pair The RCU-protected codepaths (mpls_forward, mpls_dump_routes) can have a… Update	CWE-125 Out-of-bounds Read	CVE-2026-43042	2026-05-9 03:55	2026-05-2	Show	GitHub Exploit DB Packet Storm

4	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net: qrtr: replace qrtr_tx_flow radix_tree with xarray to fix memory leak __radix_tree_create() allocates and links intermediate … Update	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2026-43041	2026-05-9 03:54	2026-05-2	Show	GitHub Exploit DB Packet Storm

5	7.1	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net: ipv6: ndisc: fix ndisc_ra_useropt to initialize nduseropt_padX fields to zero to prevent an info-leak When processing Router… Update	CWE-909 Missing Initialization of Resource	CVE-2026-43040	2026-05-9 03:53	2026-05-2	Show	GitHub Exploit DB Packet Storm

6	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: auxdisplay: line-display: fix NULL dereference in linedisp_release linedisp_release() currently retrieves the enclosing struct li… Update	CWE-476 NULL Pointer Dereference	CVE-2026-31753	2026-05-9 03:52	2026-05-2	Show	GitHub Exploit DB Packet Storm

7	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: gadget: fix state inconsistency on gadget init failure When cdns3_gadget_start() fails, the DRD hardware is left in g… Update	NVD-CWE-noinfo	CVE-2026-31754	2026-05-9 03:49	2026-05-2	Show	GitHub Exploit DB Packet Storm

8	9.8	CRITICAL Network	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net: ti: icssg-prueth: fix missing data copy and wrong recycle in ZC RX dispatch emac_dispatch_skb_zc() allocates a new skb via n… Update	NVD-CWE-noinfo	CVE-2026-43039	2026-05-9 03:48	2026-05-2	Show	GitHub Exploit DB Packet Storm

9	9.8	CRITICAL Network	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ipv6: icmp: clear skb2->cb[] in ip6_err_gen_icmpv6_unreach() Sashiko AI-review observed: In ip6_err_gen_icmpv6_unreach(), the … Update	NVD-CWE-noinfo	CVE-2026-43038	2026-05-9 03:47	2026-05-2	Show	GitHub Exploit DB Packet Storm

10	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: gadget: fix NULL pointer dereference in ep_queue When the gadget endpoint is disabled or not yet configured, the ep->… Update	CWE-476 NULL Pointer Dereference	CVE-2026-31755	2026-05-9 03:45	2026-05-2	Show	GitHub Exploit DB Packet Storm