Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
195131 8.8 重要
Local 		NVIDIA - NVIDIA GPU Display Driver のカーネルモードレイヤのハンドラにおけるサービス運用妨害 (DoS) の脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-0311 2017-03-10 18:18 2017-02-14 Show GitHub Exploit DB Packet Storm
195132 6.5 警告
Local 		NVIDIA - NVIDIA GPU Display Driver のカーネルモードレイヤのハンドラにおけるサービス運用妨害 (DoS) の脆弱性 CWE-284
不適切なアクセス制御 		CVE-2017-0310 2017-03-10 18:18 2017-02-14 Show GitHub Exploit DB Packet Storm
195133 8.8 重要
Local 		NVIDIA - NVIDIA GPU Display Driver のカーネルモードレイヤのハンドラにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2017-0309 2017-03-10 18:18 2017-02-14 Show GitHub Exploit DB Packet Storm
195134 8.8 重要
Local 		NVIDIA - NVIDIA の Windows GPU Display Driver の DxgkDdiEscape 用カーネルモードレイヤのハンドラにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2017-0308 2017-03-10 18:18 2017-02-14 Show GitHub Exploit DB Packet Storm
195135 8.8 重要
Network 		MetalGenix - GeniXCMS の inc/lib/Control/Backend/menus.control.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-6065 2017-03-10 16:59 2017-02-13 Show GitHub Exploit DB Packet Storm
195136 7.8 重要
Local 		Linux - Linux Kernel の net/dccp/input.c の dccp_rcv_state_process 関数における root 権限を取得される脆弱性 CWE-415
二重解放 		CVE-2017-6074 2017-03-10 16:42 2017-02-17 Show GitHub Exploit DB Packet Storm
195137 7 重要
Local 		Linux - Linux Kernel の kernel/events/core.c における権限を取得される脆弱性 CWE-362
競合状態 		CVE-2017-6001 2017-03-10 16:42 2017-02-1 Show GitHub Exploit DB Packet Storm
195138 5.5 警告
Local 		Linux - Linux Kernel の net/sctp/socket.c の sctp_wait_for_sndbuf 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態 		CVE-2017-5986 2017-03-10 16:42 2017-02-18 Show GitHub Exploit DB Packet Storm
195139 5.4 警告
Network 		シスコシステムズ - Cisco Firepower Management Center の Web フレームワークにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-3847 2017-03-10 16:02 2017-02-15 Show GitHub Exploit DB Packet Storm
195140 6.1 警告
Network 		シスコシステムズ - Cisco Prime Collaboration Assurance の Web ベースの管理インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-3845 2017-03-10 16:02 2017-02-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
921 7.5 HIGH
Network 		freebsd freebsd Incorrect packet validation allowed unbounded recursion parsing SCTP chunk parameters. This can eventually result in a stack overflow and panic. Remote attackers can craft packets which cause affec… CWE-674
CWE-791
 Uncontrolled Recursion
 Incomplete Filtering of Special Elements 		CVE-2026-7164 2026-05-1 21:46 2026-04-30 Show GitHub Exploit DB Packet Storm
922 7.8 HIGH
Local 		freebsd freebsd When exchanging data over a socket, libnv uses select(2) to wait for data to arrive. However, it does not verify whether the provided socket descriptor fits in select(2)'s file descriptor set size l… CWE-121
Stack-based Buffer Overflow 		CVE-2026-39457 2026-05-1 21:41 2026-04-30 Show GitHub Exploit DB Packet Storm
923 7.5 HIGH
Network 		mozilla firefox
thunderbird 		Information disclosure due to incorrect boundary conditions in the Audio/Video component. This vulnerability was fixed in Firefox 150.0.1, Firefox ESR 140.10.1, Firefox ESR 115.35.1, Thunderbird 150.… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2026-7320 2026-05-1 21:32 2026-04-29 Show GitHub Exploit DB Packet Storm
924 7.3 HIGH
Network 		mozilla firefox
thunderbird 		Memory safety bugs present in Thunderbird ESR 140.10.0 and Thunderbird 150.0.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have… CWE-119
CWE-416
Incorrect Access of Indexable Resource ('Range Error') 
 Use After Free 		CVE-2026-7322 2026-05-1 21:30 2026-04-29 Show GitHub Exploit DB Packet Storm
925 5.4 MEDIUM
Network 		helpy.io helpy Helpy contains a stored cross-site scripting vulnerability in the knowledge base Doc rendering logic. An authenticated attacker with admin or agent editor privileges can persist arbitrary HTML or Jav… CWE-79
Cross-site Scripting 		CVE-2026-40230 2026-05-1 21:26 2026-04-30 Show GitHub Exploit DB Packet Storm
926 5.4 MEDIUM
Network 		helpy.io helpy Helpy contains a stored cross-site scripting vulnerability in the post author display logic. Any registered user can persist arbitrary HTML in their account name field and cause it to be rendered une… CWE-79
Cross-site Scripting 		CVE-2026-40229 2026-05-1 21:25 2026-04-30 Show GitHub Exploit DB Packet Storm
927 4.7 MEDIUM
Network 		- - Open redirect vulnerability exists in Multiple laser printers and MFPs which implement Ricoh Web Image Monitor. When accessing a specially crafted URL, the user may be redirected to an arbitrary webs… CWE-601
Open Redirect 		CVE-2026-41226 2026-05-1 17:16 2026-04-30 Show GitHub Exploit DB Packet Storm
928 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. - CVE-2026-4178 2026-05-1 08:16 2026-05-1 Show GitHub Exploit DB Packet Storm
929 9.6 CRITICAL
Network 		openclaw openclaw OpenClaw before 2026.3.31 contains a sandbox escape vulnerability allowing attackers to traverse directory boundaries through symlink exploitation during file synchronization operations. Remote attac… CWE-59
Link Following 		CVE-2026-41397 2026-05-1 05:54 2026-04-29 Show GitHub Exploit DB Packet Storm
930 7.8 HIGH
Local 		openclaw openclaw OpenClaw before 2026.3.31 allows workspace .env files to override the OPENCLAW_BUNDLED_PLUGINS_DIR environment variable, compromising plugin trust verification. Attackers with control over workspace … CWE-829
 Inclusion of Functionality from Untrusted Control Sphere 		CVE-2026-41396 2026-05-1 05:50 2026-04-29 Show GitHub Exploit DB Packet Storm