Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252441 4.3 警告 Beanbag - Review Board の commenting system におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4312 2011-11-25 16:03 2011-11-15 Show GitHub Exploit DB Packet Storm
252442 3.2 注意 ヒューレット・パッカード - HP Operations Agent および Performance Agent におけるディレクトリアクセス制限を回避される脆弱性 CWE-noinfo
情報不足 		CVE-2011-4160 2011-11-25 16:02 2011-11-22 Show GitHub Exploit DB Packet Storm
252443 7.5 危険 Technicolor - Thomson TG585 上の UPnP IGD の実装における任意のポートマッピングを確立される脆弱性 CWE-16
環境設定 		CVE-2011-4506 2011-11-25 14:33 2011-11-22 Show GitHub Exploit DB Packet Storm
252444 7.5 危険 日本アルカテル・ルーセント - SpeedTouch 5x6 上の UPnP IGD の実装における任意のポートマッピングを確立される脆弱性 CWE-16
環境設定 		CVE-2011-4505 2011-11-25 14:32 2011-11-22 Show GitHub Exploit DB Packet Storm
252445 7.5 危険 ZyXEL
Genmei Mori		 - ZyXEL P-330W におけるポートマッピングによる通信を確立される脆弱性 CWE-16
環境設定 		CVE-2011-4504 2011-11-25 14:31 2011-11-22 Show GitHub Exploit DB Packet Storm
252446 7.5 危険 Sitecom
Broadcom		 - Sitecom WL-111 上で動作する Broadcom Linux の UPnP IGD 実装におけるポートマッピングを確立される脆弱性 CWE-16
環境設定 		CVE-2011-4503 2011-11-25 14:31 2011-11-22 Show GitHub Exploit DB Packet Storm
252447 7.5 危険 Sitecom
Canyon
EDIMAX Technology
Sweex		 - 複数のルータ上で動作する Edimax EdiLinux の UPnP IGD 実装における任意のコマンドを実行される脆弱性 CWE-16
環境設定 		CVE-2011-4502 2011-11-25 14:30 2011-11-22 Show GitHub Exploit DB Packet Storm
252448 7.5 危険 Sitecom
Canyon
EDIMAX Technology
Sweex		 - 複数のルータ上で動作する Edimax EdiLinux の UPnP IGD 実装におけるポートマッピングを確立される脆弱性 CWE-16
環境設定 		CVE-2011-4501 2011-11-25 14:29 2011-11-22 Show GitHub Exploit DB Packet Storm
252449 7.5 危険 シスコシステムズ (Linksys)
シスコシステムズ		 - Cisco Linksys WRT54GX の UPnP IGD 実装におけるファイアウォールを管理される脆弱性 CWE-16
環境設定 		CVE-2011-4500 2011-11-25 14:28 2011-11-22 Show GitHub Exploit DB Packet Storm
252450 7.5 危険 シスコシステムズ (Linksys)
シスコシステムズ		 - Cisco Linksys WRT54G および WRT54GS の UPnP IGD 実装におけるポートマッピングを確立される脆弱性 CWE-16
環境設定 		CVE-2011-4499 2011-11-25 14:18 2011-11-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
5051 7.5 HIGH
Network 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: arm64: mm: Handle invalid large leaf mappings correctly It has been possible for a long time to mark ptes in the linear map as in… CWE-476
 NULL Pointer Dereference 		CVE-2026-31600 2026-04-30 05:14 2026-04-25 Show GitHub Exploit DB Packet Storm
5052 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: media: vidtv: fix NULL pointer dereference in vidtv_channel_pmt_match_sections syzbot reported a general protection fault in vidt… CWE-476
 NULL Pointer Dereference 		CVE-2026-31599 2026-04-30 05:12 2026-04-25 Show GitHub Exploit DB Packet Storm
5053 7.5 HIGH
Network 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix possible deadlock between unlink and dio_end_io_write ocfs2_unlink takes orphan dir inode_lock first and then ip_alloc… CWE-667
 Improper Locking 		CVE-2026-31598 2026-04-30 05:10 2026-04-25 Show GitHub Exploit DB Packet Storm
5054 9.8 CRITICAL
Network 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: smb: server: avoid double-free in smb_direct_free_sendmsg after smb_direct_flush_send_list() smb_direct_flush_send_list() already… CWE-415
 Double Free 		CVE-2026-31608 2026-04-30 05:03 2026-04-25 Show GitHub Exploit DB Packet Storm
5055 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_hid: don't call cdev_init while cdev in use When calling unbind, then bind again, cdev_init reinitialized the cdev… NVD-CWE-noinfo
CVE-2026-31606 2026-04-30 05:00 2026-04-25 Show GitHub Exploit DB Packet Storm
5056 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: fbdev: udlfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO Much like commit 19f953e74356 ("fbdev: fb_pm2fb: Avoid potential divide… CWE-369
 Divide By Zero 		CVE-2026-31605 2026-04-30 04:36 2026-04-25 Show GitHub Exploit DB Packet Storm
5057 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: fix device leak on probe failure Driver core holds a reference to the USB interface and its parent USB device while … CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2026-31604 2026-04-30 04:21 2026-04-25 Show GitHub Exploit DB Packet Storm
5058 8.0 HIGH
Network 		microsoft power_apps Uncontrolled search path element in Microsoft Power Apps allows an unauthorized attacker to execute code over a network. CWE-427
 Uncontrolled Search Path Element 		CVE-2026-32172 2026-04-30 04:11 2026-04-24 Show GitHub Exploit DB Packet Storm
5059 10.0 CRITICAL
Network 		microsoft purview_ediscovery Server-side request forgery (ssrf) in Microsoft Purview allows an unauthorized attacker to elevate privileges over a network. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-26150 2026-04-30 04:10 2026-04-24 Show GitHub Exploit DB Packet Storm
5060 9.8 CRITICAL
Network 		apache mina Apache MINA's AbstractIoBuffer.resolveClass() contains two branches, one of them (for static classes or primitive types) does not check the class at all, bypassing the classname allowlist and allowin… CWE-502
 Deserialization of Untrusted Data 		CVE-2026-41635 2026-04-30 04:08 2026-04-27 Show GitHub Exploit DB Packet Storm