Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
248511	4.9	警告	Linux	-	32-bit プラットフォーム上の Linux Kernel の i915_gem_do_execbuffer 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2012-2384	2012-06-15 14:58	2012-06-13	Show	GitHub Exploit DB Packet Storm

248512	4.6	警告	Linux	-	Linux Kernel の NFSv4 の実装におけるサービス運用妨害 (OOPS) の脆弱性	CWE-189 数値処理の問題	CVE-2012-2375	2012-06-15 14:53	2012-06-13	Show	GitHub Exploit DB Packet Storm

248513	2.1	注意	Linux	-	Linux Kernel の kernel/taskstats.c における重要な I/O 統計を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-2494	2012-06-15 13:47	2012-06-13	Show	GitHub Exploit DB Packet Storm

248514	2.1	注意	Linux	-	Linux Kernel の ext4_fill_super 関数におけるサービス運用妨害 (OOPS) の脆弱性	CWE-Other その他	CVE-2011-2493	2012-06-15 13:43	2012-06-13	Show	GitHub Exploit DB Packet Storm

248515	7.2	危険	Linux	-	Alpha プラットフォーム上の Linux Kernel の osf_wait4 関数における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2211	2012-06-15 13:41	2012-06-13	Show	GitHub Exploit DB Packet Storm

248516	2.1	注意	Linux	-	Alpha プラットフォーム上の Linux Kernel の osf_getsysinfo 関数における重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2210	2012-06-15 13:35	2012-06-13	Show	GitHub Exploit DB Packet Storm

248517	2.1	注意	Linux	-	Alpha プラットフォーム上の Linux Kernel の osf_sysinfo 関数における整数符号エラーの脆弱性	CWE-189 数値処理の問題	CVE-2011-2209	2012-06-15 12:12	2012-06-13	Show	GitHub Exploit DB Packet Storm

248518	2.1	注意	Linux	-	Alpha プラットフォーム上の Linux Kernel の osf_getdomainname 関数における整数符号エラーの脆弱性	CWE-189 数値処理の問題	CVE-2011-2208	2012-06-15 12:11	2012-06-13	Show	GitHub Exploit DB Packet Storm

248519	4	警告	Linux	-	Linux Kernel の scan_get_next_rmap_item 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-362 競合状態	CVE-2011-2183	2012-06-15 12:10	2012-06-13	Show	GitHub Exploit DB Packet Storm

248520	7.2	危険	Linux	-	Linux Kernel の ldm_frag_add 関数におけるバッファオーバーフロー攻撃を実行される脆弱性	CWE-119 バッファエラー	CVE-2011-2182	2012-06-15 12:09	2012-06-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2701	7.5	HIGH Network	microsoft	windows_11_24h2 windows_11_25h2 windows_11_26h1 windows_server_2025	Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service over a network.	CWE-476 NULL Pointer Dereference	CVE-2026-40405	2026-05-16 00:20	2026-05-13	Show	GitHub Exploit DB Packet Storm

2702	7.5	HIGH Network	microsoft	windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_11_23h2 windows_11_24h2 windows_11_25h2 windows_11_26h1 windows_server_2012 windows_server_2016 w…	Use after free in Windows TCP/IP allows an unauthorized attacker to disclose information over a network.	CWE-416 Use After Free	CVE-2026-40406	2026-05-16 00:20	2026-05-13	Show	GitHub Exploit DB Packet Storm

2703	7.8	HIGH Local	microsoft	windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_11_23h2 windows_11_24h2 windows_11_25h2 windows_11_26h1 windows_server_2012 windows_server_2016 w…	Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.	CWE-122 Heap-based Buffer Overflow	CVE-2026-40407	2026-05-16 00:19	2026-05-13	Show	GitHub Exploit DB Packet Storm

2704	9.1	CRITICAL Network	-	-	Crabbox prior to v0.12.0 contains an environment variable exposure vulnerability that allows attackers with access to a malicious or compromised repository to forward local secrets such as API tokens…	CWE-94 Code Injection	CVE-2026-8634	2026-05-16 00:16	2026-05-15	Show	GitHub Exploit DB Packet Storm

2705	4.3	MEDIUM Network	-	-	SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, broken access control in the searchAsset, searchTag, searchWidget, and searchTemplate publish-mode Readers can enumerate…	CWE-863 Incorrect Authorization	CVE-2026-45148	2026-05-16 00:16	2026-05-15	Show	GitHub Exploit DB Packet Storm

2706	7.5	HIGH Network	-	-	libyang is a YANG data modeling language library. Prior to SO 5.2.15, lyb_read_string() in src/parser_lyb.c contains an integer overflow that results in a heap buffer overflow when parsing a maliciou…	CWE-190 Integer Overflow or Wraparound	CVE-2026-44673	2026-05-16 00:16	2026-05-15	Show	GitHub Exploit DB Packet Storm

2707	-		-	-	SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, the kernel stores Attribute View (AV / database) names without any HTML escape, then a render template uses raw strings.…	CWE-79 CWE-94 CWE-1188 Cross-site Scripting Code Injection Insecure Default Initialization of Resource	CVE-2026-44670	2026-05-16 00:16	2026-05-15	Show	GitHub Exploit DB Packet Storm

2708	-		-	-	HRConvert2 is a self-hosted, drag-and-drop & nosql file conversion server & share tool. Prior to 3.3.8, the sanitizeString() function in convertCore.php is missing backtick (`) and tab (\t) from its …	CWE-78 OS Command	CVE-2026-44666	2026-05-16 00:16	2026-05-15	Show	GitHub Exploit DB Packet Storm

2709	-		-	-	SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, he tooltip mouseover handler in app/src/block/popover.ts reads aria-label via getAttribute and passes it through decode…	CWE-79 CWE-116 CWE-1188 Cross-site Scripting Improper Encoding or Escaping of Output Insecure Default Initialization of Resource	CVE-2026-44588	2026-05-16 00:16	2026-05-15	Show	GitHub Exploit DB Packet Storm

2710	10.0	CRITICAL Network	-	-	Note Mark is an open-source note-taking application. Prior to 0.19.4, no minimum length or entropy is enforced on the JWT_SECRET configuration value. The application accepts any base64-decodable secr…	CWE-326 CWE-345 Inadequate Encryption Strength Insufficient Verification of Data Authenticity	CVE-2026-44523	2026-05-16 00:16	2026-05-15	Show	GitHub Exploit DB Packet Storm