Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 12:16 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
196831	7.8	重要 Local	Linux	-	Linux Kernel の mm/slab.c の freelist-randomization 機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2017-5546	2017-02-23 14:15	2017-01-20	Show	GitHub Exploit DB Packet Storm

196832	8.4	重要 Local	Linux	-	Linux Kernel の arch/x86/kvm/emulate.c の load_segment_descriptor の実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2017-2583	2017-02-23 14:15	2017-01-20	Show	GitHub Exploit DB Packet Storm

196833	5.5	警告 Local	Linux	-	Linux Kernel の fs/cifs/smbencrypt.c の smbhash 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2016-10154	2017-02-23 14:11	2016-12-13	Show	GitHub Exploit DB Packet Storm

196834	7.8	重要 Local	Linux	-	Linux Kernel の crypto scatterlist API におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2016-10153	2017-02-23 14:11	2016-12-3	Show	GitHub Exploit DB Packet Storm

196835	9.8	緊急 Network	Linux	-	Linux Kernel の virt/kvm/kvm_main.c の kvm_ioctl_create_device 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 CWE-416	CVE-2016-10150	2017-02-23 14:11	2016-12-8	Show	GitHub Exploit DB Packet Storm

196836	7.8	重要 Local	Google Linux	-	Linux Kernel の fs/aio.c の aio_mount 関数における SELinux W^X ポリシーの制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-10044	2017-02-23 14:11	2016-10-7	Show	GitHub Exploit DB Packet Storm

196837	9.8	緊急 Network	アドビシステムズ	-	Adobe Flash Player の Primetime SDK におけるメモリを破損される脆弱性	CWE-119 バッファエラー	CVE-2017-2996	2017-02-23 14:01	2017-02-14	Show	GitHub Exploit DB Packet Storm

196838	8.8	重要 Network	アドビシステムズ	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-704 不正な型変換またはキャスト	CVE-2017-2995	2017-02-23 14:01	2017-02-14	Show	GitHub Exploit DB Packet Storm

196839	8.8	重要 Network	アドビシステムズ	-	Adobe Flash Player の Primetime SDK のイベントディスパッチにおける任意のコードを実行される脆弱性	CWE-416 解放済みメモリの使用	CVE-2017-2994	2017-02-23 14:01	2017-02-14	Show	GitHub Exploit DB Packet Storm

196840	9.8	緊急 Network	アドビシステムズ	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-416 解放済みメモリの使用	CVE-2017-2993	2017-02-23 14:00	2017-02-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
481	6.1	MEDIUM Network	-	-	A Cross Site Scripting vulnerability in Alkacon OpenCms before 16 exists via updateModelGroups.jsp. New	CWE-79 Cross-site Scripting	CVE-2023-42345	2026-05-9 00:58	2026-05-8	Show	GitHub Exploit DB Packet Storm

482	-		-	-	Alkacon OpenCms before 16 allows XXE when the <!DOCTYPE> refers to an external host. New	-	CVE-2023-42346	2026-05-9 00:58	2026-05-8	Show	GitHub Exploit DB Packet Storm

483	8.7	HIGH Network	-	-	Brave CMS is an open-source CMS. Prior to commit 6c56603, page and article body content entered through the CKEditor rich-text editor is stored verbatim in the database and subsequently rendered with… New	CWE-79 Cross-site Scripting	CVE-2026-41524	2026-05-9 00:58	2026-05-9	Show	GitHub Exploit DB Packet Storm

484	7.1	HIGH Network	-	-	Brave CMS is an open-source CMS. Prior to commit 6c56603, the contact form is publicly accessible (no authentication required). User-supplied message text is passed through PHP's nl2br() function, wh… New	CWE-79 Cross-site Scripting	CVE-2026-41576	2026-05-9 00:58	2026-05-9	Show	GitHub Exploit DB Packet Storm

485	5.3	MEDIUM Network	-	-	Nuclei is a vulnerability scanner built on a simple YAML-based DSL. From version 3.0.0 to before version 3.8.0, a vulnerability in Nuclei's expression evaluation engine makes it possible for a malici… New	CWE-94 Code Injection	CVE-2026-41645	2026-05-9 00:58	2026-05-8	Show	GitHub Exploit DB Packet Storm

486	5.5	MEDIUM Local	-	-	Nuclei is a vulnerability scanner built on a simple YAML-based DSL. From version 3.0.0 to before version 3.8.0, a vulnerability in Nuclei's JavaScript protocol runtime allows JavaScript templates to … New	CWE-284 Improper Access Control	CVE-2026-41646	2026-05-9 00:58	2026-05-8	Show	GitHub Exploit DB Packet Storm

487	8.5	HIGH Network	-	-	n8n-MCP is an MCP server that provides AI assistants access to n8n node documentation, properties, and operations. In versions 2.47.4 through 2.47.13, the SDK embedder path (N8NDocumentationMCPServer… New	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-42449	2026-05-9 00:57	2026-05-8	Show	GitHub Exploit DB Packet Storm

488	9.8	CRITICAL Network	-	-	electerm is an open-sourced terminal/ssh/sftp/telnet/serialport/RDP/VNC/Spice/ftp client. Prior to version 3.3.8, a command injection vulnerability exists in github.com/elcterm/electerm/npm/install.j… New	CWE-77 Command Injection	CVE-2026-41500	2026-05-9 00:54	2026-05-8	Show	GitHub Exploit DB Packet Storm

489	9.8	CRITICAL Network	-	-	electerm is an open-sourced terminal/ssh/sftp/telnet/serialport/RDP/VNC/Spice/ftp client. Prior to version 3.3.8, a command injection vulnerability exists in github.com/elcterm/electerm/npm/install.j… New	CWE-77 Command Injection	CVE-2026-41501	2026-05-9 00:54	2026-05-8	Show	GitHub Exploit DB Packet Storm

490	8.4	HIGH Local	-	-	electerm is an open-sourced terminal/ssh/sftp/telnet/serialport/RDP/VNC/Spice/ftp client. Prior to version 3.7.16, the runWidget function in src/app/widgets/load-widget.js constructs a file path by d… New	CWE-22 CWE-829 Path Traversal Inclusion of Functionality from Untrusted Control Sphere	CVE-2026-43940	2026-05-9 00:54	2026-05-8	Show	GitHub Exploit DB Packet Storm