Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
247851	4.3	警告	Piwik	-	Piwik におけるクリックジャック攻撃を誘発する脆弱性	CWE-Other その他	CVE-2011-0399	2012-03-27 18:42	2011-01-10	Show	GitHub Exploit DB Packet Storm

247852	6.4	警告	Piwik	-	Piwik の Piwik_Common::getIP 関数における位置情報取得とロギング機能を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-0398	2012-03-27 18:42	2011-01-10	Show	GitHub Exploit DB Packet Storm

247853	9.3	危険	マイクロソフト	-	Windows XP の Microsoft Internet Explorer における不正な GUI 表示を誘発される脆弱性	CWE-Other その他	CVE-2011-0347	2012-03-27 18:42	2011-01-7	Show	GitHub Exploit DB Packet Storm

247854	3.3	注意	Alcatel-Lucent	-	Alcatel-Lucent OmniVista の NMS サーバにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-0345	2012-03-27 18:42	2011-03-1	Show	GitHub Exploit DB Packet Storm

247855	5.8	警告	Alcatel-Lucent	-	Alcatel-Lucent OmniPCX Enterprise の CGI プログラムにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0344	2012-03-27 18:42	2011-03-1	Show	GitHub Exploit DB Packet Storm

247856	6.9	警告	balabit	-	Balabit syslog-ng におけるログファイルを読み書きされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-0343	2012-03-27 18:42	2011-01-28	Show	GitHub Exploit DB Packet Storm

247857	10	危険	Schneider Electric	-	InduSoft Web Studio の InduSoft ISSymbol ActiveX コントロールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0342	2012-03-27 18:42	2011-09-2	Show	GitHub Exploit DB Packet Storm

247858	9.3	危険	Artifex Software	-	MuPDF プラグインの pdfmoz_onmouse 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0341	2012-03-27 18:42	2011-05-13	Show	GitHub Exploit DB Packet Storm

247859	9.3	危険	Foxit Software Inc	-	Foxit Reader における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-0332	2012-03-27 18:42	2011-02-25	Show	GitHub Exploit DB Packet Storm

247860	9.3	危険	Honeywell International Inc.	-	Honeywell ScanServer ActiveX コントロールの addOSPLext メソッドにおける任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2011-0331	2012-03-27 18:42	2011-03-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
701	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: sched_ext: Fix stale direct dispatch state in ddsp_dsq_id @p->scx.ddsp_dsq_id can be left set (non-SCX_DSQ_INVALID) triggering a … Update	NVD-CWE-noinfo	CVE-2026-31733	2026-05-8 01:44	2026-05-2	Show	GitHub Exploit DB Packet Storm

702	5.7	MEDIUM Network	hcltech	bigfix_service_management	HHCL BigFix Service Management (SM) is affected by a Cross‑Site Request Forgery (CSRF) vulnerability. This could lead to unauthorized changes or exposure of sensitive data. New	CWE-352 Origin Validation Error	CVE-2025-31957	2026-05-8 01:35	2026-05-7	Show	GitHub Exploit DB Packet Storm

703	3.5	LOW Network	hcltech	bigfix_service_management	HCL BigFix Service Management (SM) application fails to strip EXIF metadata from uploaded images. This could lead to confidentiality and privacy risks if sensitive location information is unintentio… New	CWE-1230 Exposure of Sensitive Information Through Metadata	CVE-2025-31959	2026-05-8 01:35	2026-05-7	Show	GitHub Exploit DB Packet Storm

704	5.3	MEDIUM Network	hcltech	bigfix_service_management	HCL BigFix Service Management (SM) is affected by an Information Disclosure – Server Banner issue was identified. Exposed server banners may reveal software versions and system details, potentially a… New	CWE-200 Information Exposure	CVE-2025-31975	2026-05-8 01:33	2026-05-7	Show	GitHub Exploit DB Packet Storm

705	7.5	HIGH Network	hcltech	bigfix_service_management	HCL BigFix Service Management (SM) is vulnerable to insufficiently protected credentials for a short duration while communicating with a backend, internal application which could allow an attacker to… New	CWE-200 CWE-522 Information Exposure Insufficiently Protected Credentials	CVE-2025-31976	2026-05-8 01:30	2026-05-7	Show	GitHub Exploit DB Packet Storm

706	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uvc: fix NULL pointer dereference during unbind race Commit b81ac4395bbe ("usb: gadget: uvc: allow for application t… Update	CWE-476 NULL Pointer Dereference	CVE-2026-31726	2026-05-8 01:26	2026-05-2	Show	GitHub Exploit DB Packet Storm

707	4.6	MEDIUM Network	hcltech	bigfix_service_management	HCL BigFix Service Management (SM) does not adequately sanitize or safely render spreadsheet files (CSV, XLS, XLSX) before processing or distributing them. An attacker could populate data fields whic… New	CWE-201 Insertion of Sensitive Information Into Sent Data	CVE-2025-31978	2026-05-8 01:26	2026-05-7	Show	GitHub Exploit DB Packet Storm

708	5.4	MEDIUM Network	hcltech	bigfix_service_management	HCL BigFix Service Management (SM) is affected by a security misconfiguration due to a missing or insecure “X-Content-Type-Options” header. This could allow browsers to perform MIME-type sniffing, p… New	CWE-200 Information Exposure	CVE-2025-31984	2026-05-8 01:25	2026-05-7	Show	GitHub Exploit DB Packet Storm

709	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: usb: gadget: u_ether: Fix NULL pointer deref in eth_get_drvinfo Commit ec35c1969650 ("usb: gadget: f_ncm: Fix net_device lifecycl… Update	CWE-476 NULL Pointer Dereference	CVE-2026-31727	2026-05-8 01:20	2026-05-2	Show	GitHub Exploit DB Packet Storm

710	-		-	-	Incorrect boundary conditions in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 150, Thunderbird 150, Firefox ESR 140.10.1, Thunderbird 140.10.1, and Firefox ESR 115.35.… New	-	CVE-2026-8091	2026-05-8 01:16	2026-05-7	Show	GitHub Exploit DB Packet Storm