Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198381 4.6 警告
Physics 		Linux
SUSE
Canonical		 - Linux Kernel の snd-usb-audio ドライバの sound/usb/quirks.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-2184 2016-10-27 18:07 2016-04-12 Show GitHub Exploit DB Packet Storm
198382 4.6 警告
Physics 		Linux
SUSE
Canonical		 - Linux Kernel の drivers/input/misc/ati_remote2.c の ati_remote2_probe 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-2185 2016-10-27 18:07 2016-04-12 Show GitHub Exploit DB Packet Storm
198383 6.8 警告 Debian
Google		 - Google Chrome の PDFium で使用される OpenJPEG の pi.c における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2016-1628 2016-10-27 18:07 2016-02-9 Show GitHub Exploit DB Packet Storm
198384 8.1 重要
Network 		アップル
ソフォス
ヒューレット・パッカード・エンタープライズ
オラクル
OpenBSD		 - OpenSSH のクライアントの roaming_common.c の roaming_read および roaming_write 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-0778 2016-10-27 18:07 2016-01-14 Show GitHub Exploit DB Packet Storm
198385 6.5 警告
Network 		アップル
ソフォス
ヒューレット・パッカード・エンタープライズ
オラクル
OpenBSD		 - OpenSSH のクライアントの roaming_common.c の resend_bytes 関数におけるプロセスメモリから重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-0777 2016-10-27 18:07 2016-01-14 Show GitHub Exploit DB Packet Storm
198386 4 警告 レッドハット
openSUSE project
Canonical
オラクル		 - Oracle MySQL の MySQL Server における Server: Optimizer に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0611 2016-10-27 17:53 2016-01-19 Show GitHub Exploit DB Packet Storm
198387 3.5 注意 openSUSE project
Canonical
Debian
MariaDB Corporation Ab.
オラクル
レッドハット		 - Oracle MySQL の MySQL Server および MariaDB における InnoDB に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0610 2016-10-27 17:53 2016-01-19 Show GitHub Exploit DB Packet Storm
198388 2.8 注意 レッドハット
openSUSE project
Canonical
オラクル		 - Oracle MySQL の MySQL Server における Server: Replication に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0607 2016-10-27 17:53 2016-01-19 Show GitHub Exploit DB Packet Storm
198389 4 警告 レッドハット
openSUSE project
Canonical
オラクル		 - Oracle MySQL の MySQL Server における Server: DML に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0595 2016-10-27 17:53 2016-01-19 Show GitHub Exploit DB Packet Storm
198390 6.8 警告 レッドハット
openSUSE project
Canonical
オラクル		 - Oracle MySQL の MySQL Server における Server: DML に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0504 2016-10-27 17:53 2016-01-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
131 8.4 HIGH
Local 		- - OpenAMP v2025.10.0 ELF loader contains an integer overflow vulnerability in firmware image parsing. In elf_loader.c, it performs multiplication of two attacker-controlled 16-bit values from the ELF h… New CWE-190
 Integer Overflow or Wraparound 		CVE-2026-37540 2026-05-2 03:16 2026-05-2 Show GitHub Exploit DB Packet Storm
132 9.8 CRITICAL
Network 		- - Buffer overflow vulnerability in cannelloni v2.0.0 in CAN frame parsing in parser.cpp in function parseCANFrame, and decoder.cpp in function decodeFrame allowing remote attackers to cause a denial of… New CWE-121
Stack-based Buffer Overflow 		CVE-2026-37539 2026-05-2 03:16 2026-05-2 Show GitHub Exploit DB Packet Storm
133 - - - An off-by-one out-of-bounds write vulnerability in the bgp_flowspec_op_decode() function (bgpd/bgp_flowspec_util.c) of FRRouting (FRR) stable/10.0 allows attackers to cause a Denial of Service (DoS) … New - CVE-2026-37457 2026-05-2 03:16 2026-05-2 Show GitHub Exploit DB Packet Storm
134 4.4 MEDIUM
Local 		- - An unprivileged attacker can craft a user-space process with a malicious ELF binary containing an out-of-range sh_link field. When root-level dtrace attaches to -- or instruments -- that process (via… New - CVE-2026-35233 2026-05-2 03:16 2026-05-2 Show GitHub Exploit DB Packet Storm
135 - - - A Command Injection vulnerability in the web management interface in Aver PTC320UV2 0.1.0000.65 allows an unauthenticated attacker to execute arbitrary commands via a crafted web request. New - CVE-2026-26461 2026-05-2 03:16 2026-05-2 Show GitHub Exploit DB Packet Storm
136 4.3 MEDIUM
Network 		- - Incomplete validation of AI rich response messages for Instagram Reels in WhatsApp for iOS v2.25.8.0 to v2.26.15.72 and WhatsApp for Android v2.25.8.0 to v2.26.7.10 could have allowed a user to trigg… New CWE-940
 Improper Verification of Source of a Communication Channel 		CVE-2026-23866 2026-05-2 03:16 2026-05-2 Show GitHub Exploit DB Packet Storm
137 6.5 MEDIUM
Network 		- - An attachment spoofing issue in WhatsApp for Windows prior to v2.3000.1032164386.258709 could have allowed maliciously formatted documents with embedded NUL bytes in the filename to be shown in the a… New CWE-158
 Improper Neutralization of Null Byte or NUL Character 		CVE-2026-23863 2026-05-2 03:16 2026-05-2 Show GitHub Exploit DB Packet Storm
138 9.6 CRITICAL
Network 		- - A web page that contains unusual WebGPU content loaded into the GPU GLES render process and can trigger write UAF crash in the GPU GLES user-space shared library. On certain platforms, when the proce… New CWE-416
 Use After Free 		CVE-2026-22166 2026-05-2 03:16 2026-05-2 Show GitHub Exploit DB Packet Storm
139 3.3 LOW
Local 		- - An unprivileged attacker can reliably trigger a crash of the dtrace process with a malicious ELF binary due to an integer Divide-by-Zero in Pbuild_file_symtab() New - CVE-2026-21996 2026-05-2 03:16 2026-05-2 Show GitHub Exploit DB Packet Storm
140 - - - Cross-Site Scripting (XSS) vulnerability was discovered in the GSVoIP web panel version 2.0.90. The `msg` parameter in the `/painel/gateways.php/error` endpoint does not properly sanitize user-suppli… New - CVE-2025-69606 2026-05-2 03:16 2026-05-2 Show GitHub Exploit DB Packet Storm