Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
195421	7.8	重要 Local	Linux	-	Linux Kernel の VideoCore DRM ドライバの drivers/gpu/drm/vc4/vc4_gem.c における整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2017-5576	2017-02-23 14:15	2017-02-1	Show	GitHub Exploit DB Packet Storm

195422	4.4	警告 Local	Linux	-	Linux Kernel の fs/posix_acl.c の simple_set_acl 関数におけるグループ権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2017-5551	2017-02-23 14:15	2017-01-26	Show	GitHub Exploit DB Packet Storm

195423	5.5	警告 Local	Linux	-	Linux Kernel の lib/iov_iter.c の pipe_advance 関数における初期化されていないヒープメモリ領域から重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2017-5550	2017-02-23 14:15	2017-01-20	Show	GitHub Exploit DB Packet Storm

195424	7.8	重要 Local	Linux	-	Linux Kernel の drivers/hid/hid-corsair.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2017-5547	2017-02-23 14:15	2017-01-26	Show	GitHub Exploit DB Packet Storm

195425	7.8	重要 Local	Linux	-	Linux Kernel の mm/slab.c の freelist-randomization 機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2017-5546	2017-02-23 14:15	2017-01-20	Show	GitHub Exploit DB Packet Storm

195426	8.4	重要 Local	Linux	-	Linux Kernel の arch/x86/kvm/emulate.c の load_segment_descriptor の実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2017-2583	2017-02-23 14:15	2017-01-20	Show	GitHub Exploit DB Packet Storm

195427	5.5	警告 Local	Linux	-	Linux Kernel の fs/cifs/smbencrypt.c の smbhash 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2016-10154	2017-02-23 14:11	2016-12-13	Show	GitHub Exploit DB Packet Storm

195428	7.8	重要 Local	Linux	-	Linux Kernel の crypto scatterlist API におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2016-10153	2017-02-23 14:11	2016-12-3	Show	GitHub Exploit DB Packet Storm

195429	9.8	緊急 Network	Linux	-	Linux Kernel の virt/kvm/kvm_main.c の kvm_ioctl_create_device 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 CWE-416	CVE-2016-10150	2017-02-23 14:11	2016-12-8	Show	GitHub Exploit DB Packet Storm

195430	7.8	重要 Local	Google Linux	-	Linux Kernel の fs/aio.c の aio_mount 関数における SELinux W^X ポリシーの制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-10044	2017-02-23 14:11	2016-10-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
171	6.5	MEDIUM Network	-	-	Missing Authorization vulnerability in weDevs WP User Frontend allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WP User Frontend: from n/a through 4.3.1. New	CWE-862 Missing Authorization	CVE-2026-42412	2026-04-29 18:16	2026-04-29	Show	GitHub Exploit DB Packet Storm

172	-		-	-	SQL injection (SQLi) in MegaCMS v12.0.0, specifically in the “id_territorio” parameter of the “/web_comunications/cms/get_provincias” endpoint. The vulnerability arises from inadequate validation and… New	CWE-89 SQL Injection	CVE-2026-3325	2026-04-29 18:16	2026-04-29	Show	GitHub Exploit DB Packet Storm

173	6.1	MEDIUM Network	-	-	The authentication endpoint accepts user-supplied input without enforcing expected validation constraints, leading to a lack of proper output encoding. This allows for the injection of malicious Java… New	CWE-79 Cross-site Scripting	CVE-2025-10503	2026-04-29 18:16	2026-04-29	Show	GitHub Exploit DB Packet Storm

174	7.3	HIGH Network	-	-	Missing Authorization vulnerability in Brainstorm Force SureForms Pro allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects SureForms Pro: from n/a through 2.8.… New	CWE-862 Missing Authorization	CVE-2026-42377	2026-04-29 17:16	2026-04-29	Show	GitHub Exploit DB Packet Storm

175	-		-	-	Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. New	-	CVE-2026-40556	2026-04-29 17:16	2026-04-29	Show	GitHub Exploit DB Packet Storm

176	9.6	CRITICAL Network	-	-	Sandbox escape due to incorrect boundary conditions in the WebRTC: Networking component. This vulnerability was fixed in Firefox 150, Thunderbird 150, and Firefox ESR 140.10.1. New	CWE-120 Classic Buffer Overflow	CVE-2026-7321	2026-04-29 15:16	2026-04-29	Show	GitHub Exploit DB Packet Storm

177	7.1	HIGH Network	-	-	Dell iDRAC10, versions 1.20.70.50 and 1.30.05.10, contains an Insufficiently Protected Credentials vulnerability. A race condition vulnerability exists that could allow an authenticated low‑privilege… New	CWE-522 Insufficiently Protected Credentials	CVE-2026-35155	2026-04-29 14:16	2026-04-29	Show	GitHub Exploit DB Packet Storm

178	-		-	-	Insufficient verification of data authenticity in PackageManagerService prior to SMR Mar-2026 Release 1 allows local attackers to modify the installation restriction of specific application. New	-	CVE-2026-21023	2026-04-29 14:16	2026-04-29	Show	GitHub Exploit DB Packet Storm

179	7.2	HIGH Network	-	-	GCHQ CyberChef before 11.0.0 allows XSS via Show Base64 offsets, as demonstrated by the /#recipe=Show_Base64_offsets('%3Cscript substring. New	CWE-79 Cross-site Scripting	CVE-2026-42615	2026-04-29 13:16	2026-04-29	Show	GitHub Exploit DB Packet Storm

180	4.3	MEDIUM Network	-	-	Dell Disk Library for Mainframe, version(s) DLm 8700/2700 contain(s) a Server-Side Request Forgery (SSRF) vulnerability. A low privileged attacker with remote access could potentially exploit this vu… New	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-23773	2026-04-29 13:16	2026-04-29	Show	GitHub Exploit DB Packet Storm