Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
208131 6.1 警告 シスコシステムズ - Cisco ASR 1000 デバイス上で稼働する Cisco IOS XE の PPPoE establishment の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2015-4243 2015-07-13 16:51 2015-07-7 Show GitHub Exploit DB Packet Storm
208132 6.8 警告 シスコシステムズ - Cisco FireSIGHT Management Center の FireSIGHT システム ソフトウェアにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2015-4242 2015-07-13 16:51 2015-07-7 Show GitHub Exploit DB Packet Storm
208133 6.1 警告 シスコシステムズ - Cisco Adaptive Security Appliance ソフトウェアにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2015-4241 2015-07-13 16:51 2015-07-7 Show GitHub Exploit DB Packet Storm
208134 5 警告 シスコシステムズ - Cisco IP Communicator におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2015-4240 2015-07-13 16:51 2015-07-7 Show GitHub Exploit DB Packet Storm
208135 4.3 警告 Qualiteam Software Limited - X-Cart におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-5455 2015-07-13 16:40 2015-06-30 Show GitHub Exploit DB Packet Storm
208136 7.9 危険 サムスン - Samsung Galaxy S5 の com.absolute.android.persistence.MethodSpec クラスの createFromParcel メソッドにおける任意のファイルを実行される脆弱性 CWE-Other
その他 		CVE-2015-4034 2015-07-13 16:24 2015-06-24 Show GitHub Exploit DB Packet Storm
208137 3.3 注意 サムスン - Samsung SBeam における任意の画像を読まれる脆弱性 CWE-200
情報漏えい 		CVE-2015-4033 2015-07-13 16:24 2015-06-24 Show GitHub Exploit DB Packet Storm
208138 7.2 危険 ヒューレット・パッカード - HP HP-UX の pppoec における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2015-2126 2015-07-13 11:42 2015-06-26 Show GitHub Exploit DB Packet Storm
208139 4.3 警告 Esri - 複数の ESRI ArcGIS 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-9741 2015-07-10 18:13 2014-09-4 Show GitHub Exploit DB Packet Storm
208140 6 警告 レッドハット - Red Hat JBoss Fuse における制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-8175 2015-07-10 17:05 2014-10-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1261 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: f2fs: fix UAF caused by decrementing sbi->nr_pages[] in f2fs_write_end_io() The xfstests case "generic/107" and syzbot have both … CWE-416
 Use After Free 		CVE-2026-31715 2026-05-7 15:16 2026-05-1 Show GitHub Exploit DB Packet Storm
1262 8.8 HIGH
Network 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: smb: client: validate the whole DACL before rewriting it in cifsacl build_sec_desc() and id_mode_to_cifs_acl() derive a DACL poin… NVD-CWE-noinfo
CVE-2026-31709 2026-05-7 15:16 2026-05-1 Show GitHub Exploit DB Packet Storm
1263 7.1 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: io_uring/net: fix slab-out-of-bounds read in io_bundle_nbufs() sqe->len is __u32 but gets stored into sr->len which is int. When … CWE-125
Out-of-bounds Read 		CVE-2026-31774 2026-05-7 11:29 2026-05-2 Show GitHub Exploit DB Packet Storm
1264 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ALSA: ctxfi: Don't enumerate SPDIF1 at DAIO initialization The recent refactoring of xfi driver changed the assignment of atc->da… NVD-CWE-noinfo
CVE-2026-31775 2026-05-7 11:28 2026-05-2 Show GitHub Exploit DB Packet Storm
1265 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ALSA: ctxfi: Fix missing SPDIFI1 index handling SPDIF1 DAIO type isn't properly handled in daio_device_index() for hw20k2, and it… CWE-129
 Improper Validation of Array Index 		CVE-2026-31776 2026-05-7 11:27 2026-05-2 Show GitHub Exploit DB Packet Storm
1266 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ALSA: ctxfi: Check the error for index mapping The ctxfi driver blindly assumed a proper value returned from daio_device_index(),… NVD-CWE-noinfo
CVE-2026-31777 2026-05-7 11:27 2026-05-2 Show GitHub Exploit DB Packet Storm
1267 9.1 CRITICAL
Network 		miyagawa plack\ Plack::Middleware::XSendfile versions through 1.0053 for Perl can allow client-controlled path rewriting. Plack::Middleware::XSendfile allows the variation setting (sendfile type) to be set by the c… CWE-200
CWE-441
CWE-913
Information Exposure
Confused Deputy
 Improper Control of Dynamically-Managed Code Resources 		CVE-2026-7381 2026-05-7 11:10 2026-04-30 Show GitHub Exploit DB Packet Storm
1268 5.4 MEDIUM
Network 		google chrome Out of bounds read and write in GFX in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to perform arbitrary read/write via malicious network traffic. (Chromium security severity: Mediu… CWE-125
CWE-787
Out-of-bounds Read
 Out-of-bounds Write 		CVE-2026-7950 2026-05-7 11:09 2026-05-7 Show GitHub Exploit DB Packet Storm
1269 7.4 HIGH
Network 		gnu
redhat 		gnutls
hardened_images
openshift_container_platform
enterprise_linux 		A flaw was found in gnutls. This vulnerability occurs because gnutls performs case-sensitive comparisons of `nameConstraints` labels, specifically for `dNSName` (DNS) or `rfc822Name` (email) constrai… CWE-178
 Improper Handling of Case Sensitivity 		CVE-2026-3833 2026-05-7 11:09 2026-05-1 Show GitHub Exploit DB Packet Storm
1270 7.5 HIGH
Network 		google chrome Race in Chromoting in Google Chrome on Windows prior to 148.0.7778.96 allowed a local attacker to perform privilege escalation via a malicious file. (Chromium security severity: Medium) CWE-362
Race Condition 		CVE-2026-7948 2026-05-7 11:08 2026-05-7 Show GitHub Exploit DB Packet Storm