Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255961	6.9	警告	VMware	-	複数の VMware 製品の HGFS におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-2098	2010-09-13 16:00	2008-05-30	Show	GitHub Exploit DB Packet Storm

255962	5	警告	VMware	-	複数の VMware 製品の VMware Authentication Daemon におけるサービス運用妨害 (DoS) の脆弱性	CWE-134 書式文字列の問題	CVE-2009-4811	2010-09-13 16:00	2010-04-27	Show	GitHub Exploit DB Packet Storm

255963	7.2	危険	VMware	-	Windows 上で稼働する複数の VMware 製品の OpenProcess 関数における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-3698	2010-09-13 15:59	2008-08-29	Show	GitHub Exploit DB Packet Storm

255964	10	危険	VMware	-	複数の VMware 製品の ActiveX コントロールにおける脆弱性	CWE-noinfo 情報不足	CVE-2008-3696	2010-09-13 15:59	2008-08-28	Show	GitHub Exploit DB Packet Storm

255965	10	危険	VMware	-	複数の VMware 製品の ActiveX コントロールにおける脆弱性	CWE-noinfo 情報不足	CVE-2008-3695	2010-09-13 15:59	2008-08-28	Show	GitHub Exploit DB Packet Storm

255966	10	危険	VMware	-	複数の VMware 製品の ActiveX コントロールにおける脆弱性	CWE-noinfo 情報不足	CVE-2008-3694	2010-09-13 15:58	2008-08-28	Show	GitHub Exploit DB Packet Storm

255967	10	危険	VMware	-	複数の VMware 製品の ActiveX コントロールにおける脆弱性	CWE-noinfo 情報不足	CVE-2008-3693	2010-09-13 15:58	2008-08-28	Show	GitHub Exploit DB Packet Storm

255968	10	危険	VMware	-	複数の VMware 製品の ActiveX コントロールにおける脆弱性	CWE-noinfo 情報不足	CVE-2008-3692	2010-09-13 15:58	2008-08-28	Show	GitHub Exploit DB Packet Storm

255969	10	危険	VMware	-	複数の VMware 製品の ActiveX コントロールにおける脆弱性	CWE-noinfo 情報不足	CVE-2008-3691	2010-09-13 15:58	2008-08-28	Show	GitHub Exploit DB Packet Storm

255970	10	危険	VMware	-	複数の VMware 製品のデフォルト設定における脆弱性	CWE-16 環境設定	CVE-2008-1392	2010-09-13 15:57	2008-03-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311421	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: dpaa2-switch: Fix memory leak in dpaa2_switch_acl_entry_add() and dpaa2_switch_acl_entry_remove() The cmd_buff needs to be freed …	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2022-48957	2024-10-24 23:41	2024-10-22	Show	GitHub Exploit DB Packet Storm

311422	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_stream This commit addresses a null pointer derefere…	CWE-476 NULL Pointer Dereference	CVE-2024-49913	2024-10-24 23:39	2024-10-22	Show	GitHub Exploit DB Packet Storm

311423	7.2	HIGH Network	princelycesar	hospital_management_system	SQL Injection vulnerability in hospital management system in php with source code v.1.0.0 allows a remote attacker to execute arbitrary code.	CWE-89 SQL Injection	CVE-2024-48657	2024-10-24 23:38	2024-10-23	Show	GitHub Exploit DB Packet Storm

311424	4.8	MEDIUM Network	angeljudesuarez	student_management_system	Cross Site Scripting vulnerability in student management system in php with source code v.1.0.0 allows a remote attacker to execute arbitrary code.	CWE-79 Cross-site Scripting	CVE-2024-48656	2024-10-24 23:37	2024-10-23	Show	GitHub Exploit DB Packet Storm

311425	9.8	CRITICAL Network	brandonclark	sitebuilder_dynamic_components	Deserialization of Untrusted Data vulnerability in Brandon Clark SiteBuilder Dynamic Components allows Object Injection.This issue affects SiteBuilder Dynamic Components: from n/a through 1.0.	CWE-502 Deserialization of Untrusted Data	CVE-2024-49625	2024-10-24 23:37	2024-10-20	Show	GitHub Exploit DB Packet Storm

311426	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7915: fix oops on non-dbdc mt7986 mt7915_band_config() sets band_idx = 1 on the main phy for mt7986 with MT7975_ONE…	NVD-CWE-noinfo	CVE-2024-47715	2024-10-24 23:35	2024-10-21	Show	GitHub Exploit DB Packet Storm

311427	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ARM: 9410/1: vfp: Use asm volatile in fmrx/fmxr macros Floating point instructions in userspace can crash some arm kernels built …	NVD-CWE-noinfo	CVE-2024-47716	2024-10-24 23:34	2024-10-21	Show	GitHub Exploit DB Packet Storm

311428	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7996: use hweight16 to get correct tx antenna The chainmask is u16 so using hweight8 cannot get correct tx_ant. Wit…	CWE-787 Out-of-bounds Write	CVE-2024-47714	2024-10-24 23:33	2024-10-21	Show	GitHub Exploit DB Packet Storm

311429	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: RISC-V: KVM: Don't zero-out PMU snapshot area before freeing data With the latest Linux-6.11-rc3, the below NULL pointer crash is…	CWE-476 NULL Pointer Dereference	CVE-2024-47717	2024-10-24 23:32	2024-10-21	Show	GitHub Exploit DB Packet Storm

311430	9.8	CRITICAL Network	tecno-mobile	4g_portable_wifi_tr118_firmware	A vulnerability was found in Tecno 4G Portable WiFi TR118 V008-20220830. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /goform/goform_get_cm…	CWE-89 SQL Injection	CVE-2024-10195	2024-10-24 23:28	2024-10-20	Show	GitHub Exploit DB Packet Storm