Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 3, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2111	6.8	警告 Physics	Elspec LTD	G5DFR ファームウェア	Elspec LTDのG5DFR ファームウェアにおける代替パスまたはチャネルを使用した認証回避に関する脆弱性	CWE-288 代替パスまたはチャネルを使用した認証回避	CVE-2025-59392	2026-02-6 10:41	2025-11-6	Show	GitHub Exploit DB Packet Storm

2112	7.2	重要 Network	Sangoma	freepbx	SangomaのfreepbxにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2025-64328	2026-02-6 10:41	2025-11-7	Show	GitHub Exploit DB Packet Storm

2113	6.5	警告 Network	Salesforce.com, inc.	MuleSoft Anypoint Extension Pack	Salesforce.com, inc.のMuleSoft Anypoint Extension Packにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2025-10875	2026-02-6 10:41	2025-11-4	Show	GitHub Exploit DB Packet Storm

2114	7.5	重要 Network	Intelbras	ICIP 30 Firmware	IntelbrasのICIP 30 Firmwareにおける複数の脆弱性	CWE-255 CWE-256 CWE-522	CVE-2025-13187	2026-02-6 10:41	2025-11-14	Show	GitHub Exploit DB Packet Storm

2115	5.3	警告 Network	Zeit, Inc.	AI	Vercel, Inc. (旧 Zeit, Inc.)のAIにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2025-48985	2026-02-6 10:41	2025-11-7	Show	GitHub Exploit DB Packet Storm

2116	5.5	警告 Local	Open JS Foundation	ESLint	Open JS FoundationのESLintにおける再帰制御に関する脆弱性	CWE-674 不適切な再帰制御	CVE-2025-50537	2026-02-6 10:40	2026-01-26	Show	GitHub Exploit DB Packet Storm

2117	6.1	警告 Network	nuxt	Nuxt Devtools	nuxtのNuxt Devtoolsにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-52662	2026-02-6 10:40	2025-11-7	Show	GitHub Exploit DB Packet Storm

2118	7.8	重要 Local	Synology Inc.	BeeDrive	Synology Inc.のBeeDriveにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2025-54158	2026-02-6 10:40	2025-12-4	Show	GitHub Exploit DB Packet Storm

2119	7.5	重要 Network	Synology Inc.	BeeDrive	Synology Inc.のBeeDriveにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2025-54159	2026-02-6 10:40	2025-12-4	Show	GitHub Exploit DB Packet Storm

2120	7.8	重要 Local	Synology Inc.	BeeDrive	Synology Inc.のBeeDriveにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2025-54160	2026-02-6 10:40	2025-12-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
451	-	-	-	In the Linux kernel, the following vulnerability has been resolved: btrfs: reject root items with drop_progress and zero drop_level [BUG] When recovering relocation at mount time, merge_reloc_root(… New	-	CVE-2026-43046	2026-05-2 00:24	2026-05-2	Show	GitHub Exploit DB Packet Storm

452	-	-	-	In the Linux kernel, the following vulnerability has been resolved: HID: multitouch: Check to ensure report responses match the request It is possible for a malicious (or clumsy) device to respond … New	-	CVE-2026-43047	2026-05-2 00:24	2026-05-2	Show	GitHub Exploit DB Packet Storm

453	-	-	-	In the Linux kernel, the following vulnerability has been resolved: HID: core: Mitigate potential OOB by removing bogus memset() The memset() in hid_report_raw_event() has the good intention of cle… New	-	CVE-2026-43048	2026-05-2 00:24	2026-05-2	Show	GitHub Exploit DB Packet Storm

454	-	-	-	In the Linux kernel, the following vulnerability has been resolved: HID: wacom: fix out-of-bounds read in wacom_intuos_bt_irq The wacom_intuos_bt_irq() function processes Bluetooth HID reports with… New	-	CVE-2026-43051	2026-05-2 00:24	2026-05-2	Show	GitHub Exploit DB Packet Storm

455	-	-	-	In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: check tdls flag in ieee80211_tdls_oper When NL80211_TDLS_ENABLE_LINK is called, the code only checks if the stati… New	-	CVE-2026-43052	2026-05-2 00:24	2026-05-2	Show	GitHub Exploit DB Packet Storm

456	-	-	-	In the Linux kernel, the following vulnerability has been resolved: scsi: target: file: Use kzalloc_flex for aio_cmd The target_core_file doesn't initialize the aio_cmd->iocb for the ki_write_strea… New	-	CVE-2026-43055	2026-05-2 00:24	2026-05-2	Show	GitHub Exploit DB Packet Storm

457	-	-	-	In the Linux kernel, the following vulnerability has been resolved: net: mana: fix use-after-free in add_adev() error path If auxiliary_device_add() fails, add_adev() jumps to add_fail and calls au… New	-	CVE-2026-43056	2026-05-2 00:24	2026-05-2	Show	GitHub Exploit DB Packet Storm

458	-	-	-	In the Linux kernel, the following vulnerability has been resolved: HID: logitech-hidpp: Prevent use-after-free on force feedback initialisation failure Presently, if the force feedback initialisat… New	-	CVE-2026-43049	2026-05-2 00:24	2026-05-2	Show	GitHub Exploit DB Packet Storm

459	-	-	-	In the Linux kernel, the following vulnerability has been resolved: atm: lec: fix use-after-free in sock_def_readable() A race condition exists between lec_atm_close() setting priv->lecd to NULL an… New	-	CVE-2026-43050	2026-05-2 00:24	2026-05-2	Show	GitHub Exploit DB Packet Storm

460	-	-	-	In the Linux kernel, the following vulnerability has been resolved: scsi: target: tcm_loop: Drain commands in target_reset handler tcm_loop_target_reset() violates the SCSI EH contract: it returns … New	-	CVE-2026-43054	2026-05-2 00:24	2026-05-2	Show	GitHub Exploit DB Packet Storm