Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 4, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2451 7.1 重要
Local 		ブロケード コミュニケーションズ システムズ株式会社 ASCG ブロケード コミュニケーションズ システムズ株式会社のASCGにおける重要な情報の平文保存に関する脆弱性 CWE-312
重要な情報の平文保存 		CVE-2025-7397 2026-02-4 18:41 2025-07-17 Show GitHub Exploit DB Packet Storm
2452 9.1 緊急
Network 		ブロケード コミュニケーションズ システムズ株式会社 ASCG ブロケード コミュニケーションズ システムズ株式会社のASCGにおける暗号強度に関する脆弱性 CWE-326
不適切な暗号強度 		CVE-2025-7398 2026-02-4 18:41 2025-07-17 Show GitHub Exploit DB Packet Storm
2453 9.8 緊急
Network 		angeljudesuarez School Management System Project In PHP Source Code Angel Jude Reyes SuarezのSchool Management System Project In PHP Source Codeにおける複数の脆弱性 CWE-74
CWE-89
CVE-2026-1545 2026-02-4 18:40 2026-01-28 Show GitHub Exploit DB Packet Storm
2454 5.3 警告
Network 		Project-monai MONAI Project-monaiのMONAIにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-21851 2026-02-4 18:40 2026-01-7 Show GitHub Exploit DB Packet Storm
2455 5.3 警告
Network 		Ralph Slooten Mailpit Ralph SlootenのMailpitにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-21859 2026-02-4 18:40 2026-01-8 Show GitHub Exploit DB Packet Storm
2456 9.8 緊急
Network 		Bluspark BLUVOYIX BlusparkのBLUVOYIXにおける認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2026-22236 2026-02-4 18:40 2026-01-14 Show GitHub Exploit DB Packet Storm
2457 9.8 緊急
Network 		Bluspark BLUVOYIX BlusparkのBLUVOYIXにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-22237 2026-02-4 18:40 2026-01-14 Show GitHub Exploit DB Packet Storm
2458 9.8 緊急
Network 		Bluspark BLUVOYIX BlusparkのBLUVOYIXにおける複数の脆弱性 CWE-269
CWE-306
CVE-2026-22238 2026-02-4 18:40 2026-01-14 Show GitHub Exploit DB Packet Storm
2459 5.3 警告
Network 		Bluspark BLUVOYIX BlusparkのBLUVOYIXにおけるリソースの枯渇に関する脆弱性 CWE-400
CWE-noinfo
CVE-2026-22239 2026-02-4 18:40 2026-01-14 Show GitHub Exploit DB Packet Storm
2460 7.5 重要
Network 		Bluspark BLUVOYIX BlusparkのBLUVOYIXにおける複数の脆弱性 CWE-200
CWE-312
CWE-522
CWE-522
CVE-2026-22240 2026-02-4 18:40 2026-01-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
471 9.8 CRITICAL
Network 		hashcat hashcat A stack-based buffer overflow in mangle_to_hex_lower() and mangle_to_hex_upper() in src/rp_cpu.c in hashcat v7.1.2 allows an attacker to cause a denial of service or possibly execute arbitrary code v… New CWE-787
 Out-of-bounds Write 		CVE-2026-42482 2026-05-2 02:45 2026-05-1 Show GitHub Exploit DB Packet Storm
472 10.0 CRITICAL
Network 		traefik traefik Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.43, 3.6.14, and 3.7.0-rc.2, there is a high severity authentication bypass vulnerability in Traefik's ForwardAuth and snippe… New CWE-290
CWE-306
 Authentication Bypass by Spoofing
Missing Authentication for Critical Function 		CVE-2026-39858 2026-05-2 02:44 2026-05-1 Show GitHub Exploit DB Packet Storm
473 5.3 MEDIUM
Network 		exim exim In Exim before 4.99.2, when utf8 operators are enabled, there is an out-of-bounds read if large UTF-8 trailing characters are present (malformed UTF-8 header data). Information might be divulged with… New CWE-125
Out-of-bounds Read 		CVE-2026-40686 2026-05-2 02:44 2026-05-1 Show GitHub Exploit DB Packet Storm
474 8.2 HIGH
Network 		traefik traefik Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.43, 3.6.14, and 3.7.0-rc.2, there is a high severity authentication bypass vulnerability in Traefik's StripPrefixRegex middl… New CWE-706
 Use of Incorrectly-Resolved Name or Reference 		CVE-2026-40912 2026-05-2 02:42 2026-05-1 Show GitHub Exploit DB Packet Storm
475 7.1 HIGH
Network 		dell idrac10_firmware Dell iDRAC10, versions 1.20.70.50 and 1.30.05.10, contains an Insufficiently Protected Credentials vulnerability. A race condition vulnerability exists that could allow an authenticated low‑privilege… Update CWE-522
 Insufficiently Protected Credentials 		CVE-2026-35155 2026-05-2 02:40 2026-04-29 Show GitHub Exploit DB Packet Storm
476 6.1 MEDIUM
Network 		wso2 identity_server The authentication endpoint accepts user-supplied input without enforcing expected validation constraints, leading to a lack of proper output encoding. This allows for the injection of malicious Java… Update CWE-79
Cross-site Scripting 		CVE-2025-10503 2026-05-2 02:40 2026-04-29 Show GitHub Exploit DB Packet Storm
477 6.4 MEDIUM
Network 		traefik traefik Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.43, 3.6.14, and 3.7.0-rc.2, there is a potential vulnerability in Traefik's Kubernetes CRD provider cross-namespace isolatio… New CWE-653
CWE-863
 Improper Isolation or Compartmentalization
 Incorrect Authorization 		CVE-2026-41174 2026-05-2 02:39 2026-05-1 Show GitHub Exploit DB Packet Storm
478 5.5 MEDIUM
Local 		samsung android Insufficient verification of data authenticity in PackageManagerService prior to SMR Mar-2026 Release 1 allows local attackers to modify the installation restriction of specific application. Update NVD-CWE-noinfo
CVE-2026-21023 2026-05-2 02:39 2026-04-29 Show GitHub Exploit DB Packet Storm
479 3.7 LOW
Network 		traefik traefik Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.43, 3.6.14, and 3.7.0-rc.2, there is a timing side-channel vulnerability in Traefik's BasicAuth middleware that allows an at… New CWE-208
 Information Exposure Through Timing Discrepancy 		CVE-2026-41263 2026-05-2 02:37 2026-05-1 Show GitHub Exploit DB Packet Storm
480 4.3 MEDIUM
Network 		- - A vulnerability has been found in Open5GS up to 2.7.7. This vulnerability affects the function amf_nsmf_pdusession_handle_update_sm_context of the file /src/amf/nsmf-handler.c of the component AMF. T… New CWE-404
 Improper Resource Shutdown or Release 		CVE-2026-7587 2026-05-2 02:16 2026-05-2 Show GitHub Exploit DB Packet Storm