Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
195061 9.8 緊急
Network 		Zammad - Zammad におけるハッシュ化されたパスワード自体でログインされる脆弱性 CWE-255
証明書・パスワード管理 		CVE-2017-5619 2017-04-3 17:27 2017-02-14 Show GitHub Exploit DB Packet Storm
195062 6.1 警告
Network 		UNINETT - mod_auth_mellon におけるクロスサイトセッション転送攻撃 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-6807 2017-04-3 17:13 2017-03-13 Show GitHub Exploit DB Packet Storm
195063 9.8 緊急
Network 		OnePlus - OnePlus 3 および 3T 上で稼動する OxygenOS における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-5626 2017-04-3 17:08 2017-02-8 Show GitHub Exploit DB Packet Storm
195064 9.8 緊急
Network 		OnePlus - OnePlus 3 および 3T 用 OxygenOS における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-5624 2017-04-3 17:08 2017-02-8 Show GitHub Exploit DB Packet Storm
195065 8.8 重要
Network 		Keekoonvision Technology Co., Ltd - Keekoon KK002 デバイス HD におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2017-6180 2017-04-3 17:06 2017-02-21 Show GitHub Exploit DB Packet Storm
195066 7.5 重要
Network 		MikroTik - MikroTik Router hAP Lite におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2017-6444 2017-04-3 16:56 2017-03-2 Show GitHub Exploit DB Packet Storm
195067 6.8 警告
Adjacent 		エマソン - Emerson DeltaV Easy Security Management における権限を昇格される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-9345 2017-04-3 16:52 2016-11-29 Show GitHub Exploit DB Packet Storm
195068 5 警告
Adjacent 		エマソン - Emerson SE4801T0X Redundant および SE4801T1X Simplex Wireless I/O Card のファームウェアにおける SSH 機能が不必要に有効化される脆弱性 CWE-254
セキュリティ機能 		CVE-2016-9347 2017-04-3 16:52 2016-11-29 Show GitHub Exploit DB Packet Storm
195069 6.5 警告
Network 		Hangzhou Hikvision Digital Technology - Hikvision NVR DS-76xxNI-E1/2 および DS-77xxxNI-E4 デバイスにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2015-4409 2017-04-3 16:37 2015-11-9 Show GitHub Exploit DB Packet Storm
195070 6.5 警告
Network 		Hangzhou Hikvision Digital Technology - Hikvision NVR DS-76xxNI-E1/2 および DS-77xxxNI-E4 デバイスにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2015-4408 2017-04-3 16:37 2015-11-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1301 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: Buffer overflow in drivers/xen/sys-hypervisor.c The build id returned by HYPERVISOR_xen_version(XENVER_build_id) is neither NUL t… CWE-787
 Out-of-bounds Write 		CVE-2026-31786 2026-05-7 04:44 2026-04-30 Show GitHub Exploit DB Packet Storm
1302 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: xen/privcmd: fix double free via VMA splitting privcmd_vm_ops defines .close (privcmd_close), but neither .may_split nor .open. W… CWE-415
 Double Free 		CVE-2026-31787 2026-05-7 04:38 2026-04-30 Show GitHub Exploit DB Packet Storm
1303 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: fuse: reject oversized dirents in page cache fuse_add_dirent_to_cache() computes a serialized dirent size from the server-control… NVD-CWE-noinfo
CVE-2026-31694 2026-05-7 04:23 2026-05-1 Show GitHub Exploit DB Packet Storm
1304 3.9 LOW
Network 		- - HCL BigFix Service Management (SM) is susceptible to a Root File System Not Mounted as Read-Only. An improperly configured root file system may allow unintended modifications to critical system comp… CWE-1188
 Insecure Default Initialization of Resource 		CVE-2025-31974 2026-05-7 04:20 2026-05-7 Show GitHub Exploit DB Packet Storm
1305 8.8 HIGH
Network 		- - Vvveb before version 1.0.8.2 contains an authenticated remote code execution vulnerability in the admin code editor that allows low-privilege authenticated users to execute arbitrary code by exploiti… CWE-184
 Incomplete Blacklist 		CVE-2026-41934 2026-05-7 04:20 2026-05-7 Show GitHub Exploit DB Packet Storm
1306 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: wifi: virt_wifi: remove SET_NETDEV_DEV to avoid use-after-free Currently we execute `SET_NETDEV_DEV(dev, &priv->lowerdev->dev)` f… CWE-416
 Use After Free 		CVE-2026-31695 2026-05-7 04:19 2026-05-1 Show GitHub Exploit DB Packet Storm
1307 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix missing validation of ticket length in non-XDR key preparsing In rxrpc_preparse(), there are two paths for parsing key… CWE-787
 Out-of-bounds Write 		CVE-2026-31696 2026-05-7 04:17 2026-05-1 Show GitHub Exploit DB Packet Storm
1308 9.8 CRITICAL
Network 		- - OpenCMS v20 and before is vulnerable to XML External Entity (XXE) in the Admin Import DB feature due to insecure XML parsing of user supplied .zip files containing a manifest.xml. CWE-611
XXE 		CVE-2026-38429 2026-05-7 04:16 2026-05-6 Show GitHub Exploit DB Packet Storm
1309 7.1 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: crypto: ccp: Don't attempt to copy ID to userspace if PSP command failed When retrieving the ID for the CPU, don't attempt to cop… CWE-787
 Out-of-bounds Write 		CVE-2026-31697 2026-05-7 04:08 2026-05-1 Show GitHub Exploit DB Packet Storm
1310 7.1 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: crypto: ccp: Don't attempt to copy PDH cert to userspace if PSP command failed When retrieving the PDH cert, don't attempt to cop… CWE-787
 Out-of-bounds Write 		CVE-2026-31698 2026-05-7 04:06 2026-05-1 Show GitHub Exploit DB Packet Storm