Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241 4.7 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける競合状態に関する脆弱性 CWE-362
競合状態 		CVE-2025-39961 2026-02-5 15:46 2025-10-9 Show GitHub Exploit DB Packet Storm
242 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2025-39962 2026-02-5 15:46 2025-10-9 Show GitHub Exploit DB Packet Storm
243 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2025-39963 2026-02-5 15:46 2025-10-9 Show GitHub Exploit DB Packet Storm
244 3.3
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2025-39964 2026-02-5 15:46 2025-10-13 Show GitHub Exploit DB Packet Storm
245 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2025-39965 2026-02-5 15:46 2025-10-13 Show GitHub Exploit DB Packet Storm
246 4.7 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける競合状態に関する脆弱性 CWE-362
競合状態 		CVE-2025-39966 2026-02-5 15:46 2025-10-15 Show GitHub Exploit DB Packet Storm
247 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2025-39967 2026-02-5 15:46 2025-10-15 Show GitHub Exploit DB Packet Storm
248 6.7 警告
Local 		デル secure connect gateway デルのsecure connect gatewayにおける不要な特権による実行に関する脆弱性 CWE-250
CWE-noinfo
CVE-2025-46696 2026-02-5 15:46 2026-01-6 Show GitHub Exploit DB Packet Storm
249 8.6 重要
Network 		Sick Media Server SickのMedia Serverにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2025-49181 2026-02-5 15:46 2025-06-12 Show GitHub Exploit DB Packet Storm
250 9.1 緊急
Network 		Node.js Foundation Node.js Node.js FoundationのNode.jsにおける代替名による認証回避に関する脆弱性 CWE-289
代替名による認証回避 		CVE-2025-55130 2026-02-5 15:46 2026-01-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
191 6.5 MEDIUM
Adjacent 		juniper junos A Missing Release of Memory after Effective Lifetime vulnerability in the DHCP daemon (jdhcpd) of Juniper Networks Junos OS on MX Series, allows an adjacent, unauthenticated attacker to cause a memor… Update CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2026-33782 2026-04-18 02:39 2026-04-10 Show GitHub Exploit DB Packet Storm
192 6.5 MEDIUM
Network 		praison praisonai PraisonAI is a multi-agent teams system. Prior to 4.5.128, the _safe_extractall() function in PraisonAI's recipe registry validates archive members against path traversal attacks but performs no chec… Update CWE-409
 Improper Handling of Highly Compressed Data (Data Amplification) 		CVE-2026-40148 2026-04-18 02:38 2026-04-10 Show GitHub Exploit DB Packet Storm
193 8.8 HIGH
Local 		juniper junos A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS on MX Series allows a local, authenticated user with low privileges to execute specific commands which will lead to a com… Update CWE-862
 Missing Authorization 		CVE-2026-33785 2026-04-18 02:38 2026-04-10 Show GitHub Exploit DB Packet Storm
194 3.1 LOW
Network 		beszel beszel Beszel is a server monitoring platform. Prior to 0.18.7, some API endpoints in the Beszel hub accept a user-supplied system ID and proceed without further checks that the user should have access to t… Update CWE-184
 Incomplete Blacklist 		CVE-2026-40077 2026-04-18 02:37 2026-04-10 Show GitHub Exploit DB Packet Storm
195 8.1 HIGH
Network 		apollographql apollo_mcp_server Apollo MCP Server is a Model Context Protocol server that exposes GraphQL operations as MCP tools. Prior to version 1.7.0, the Apollo MCP Server did not validate the Host header on incoming HTTP requ… Update CWE-346
 Origin Validation Error 		CVE-2026-35577 2026-04-18 02:31 2026-04-10 Show GitHub Exploit DB Packet Storm
196 8.8 HIGH
Network 		google chrome Use after free in Video in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) New CWE-416
 Use After Free 		CVE-2026-6302 2026-04-18 02:27 2026-04-16 Show GitHub Exploit DB Packet Storm
197 8.8 HIGH
Network 		google chrome Use after free in Codecs in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) New CWE-416
 Use After Free 		CVE-2026-6303 2026-04-18 02:27 2026-04-16 Show GitHub Exploit DB Packet Storm
198 8.3 HIGH
Network 		google chrome Use after free in Graphite in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.… New CWE-416
 Use After Free 		CVE-2026-6304 2026-04-18 02:27 2026-04-16 Show GitHub Exploit DB Packet Storm
199 8.8 HIGH
Network 		google chrome Heap buffer overflow in PDFium in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. (Chromium security severity: High) New CWE-122
CWE-787
Heap-based Buffer Overflow
 Out-of-bounds Write 		CVE-2026-6305 2026-04-18 02:27 2026-04-16 Show GitHub Exploit DB Packet Storm
200 8.8 HIGH
Network 		google chrome Type Confusion in Turbofan in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) New CWE-843
Type Confusion 		CVE-2026-6307 2026-04-18 02:27 2026-04-16 Show GitHub Exploit DB Packet Storm