Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2631	7.8	重要 Local	Jeremiah Lowin	FastMCP	Jeremiah LowinのFastMCPにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2025-64340	2026-04-22 10:10	2026-04-3	Show	GitHub Exploit DB Packet Storm

2632	4.9	警告 Network	Canonical	Juju	CanonicalのJujuにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2025-68152	2026-04-22 10:10	2026-04-3	Show	GitHub Exploit DB Packet Storm

2633	6.5	警告 Network	Canonical	Juju	CanonicalのJujuにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2025-68153	2026-04-22 10:10	2026-04-3	Show	GitHub Exploit DB Packet Storm

2634	9.8	緊急 Network	lfprojects	mlflow	lfprojectsのmlflowにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-0545	2026-04-22 10:10	2026-04-3	Show	GitHub Exploit DB Packet Storm

2635	7.5	重要 Network	budibase	budibase	budibaseにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-25043	2026-04-22 10:10	2026-04-3	Show	GitHub Exploit DB Packet Storm

2636	6.5	警告 Network	Christian Neukirchen	Rack	RackにおけるCRLF インジェクションの脆弱性	CWE-93 CRLF インジェクション	CVE-2026-26962	2026-04-22 10:09	2026-04-2	Show	GitHub Exploit DB Packet Storm

2637	6.1	警告 Network	Progress Software Corporation	Flowmon	Progress Software CorporationのFlowmonにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-2737	2026-04-22 10:09	2026-04-2	Show	GitHub Exploit DB Packet Storm

2638	6.5	警告 Network	Christian Neukirchen	Rack	Rackにおける解釈の競合に関する脆弱性	CWE-436 解釈の競合	CVE-2026-32762	2026-04-22 10:09	2026-04-2	Show	GitHub Exploit DB Packet Storm

2639	6.1	警告 Network	Streetwriters	Notesnook Mobile	StreetwritersのNotesnook Mobileにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-33978	2026-04-22 10:09	2026-04-1	Show	GitHub Exploit DB Packet Storm

2640	8.1	重要 Network	OpenProject	OpenProject	OpenProjectにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-34717	2026-04-22 10:09	2026-04-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
801	-	-	-	In the Linux kernel, the following vulnerability has been resolved: md/bitmap: fix GPF in write_page caused by resize race A General Protection Fault occurs in write_page() during array resize: RIP… New	-	CVE-2026-43163	2026-05-6 22:07	2026-05-6	Show	GitHub Exploit DB Packet Storm

802	-	-	-	In the Linux kernel, the following vulnerability has been resolved: hwmon: (nct7363) Fix a resource leak in nct7363_present_pwm_fanin When calling of_parse_phandle_with_args(), the caller is respon… New	-	CVE-2026-43165	2026-05-6 22:07	2026-05-6	Show	GitHub Exploit DB Packet Storm

803	-	-	-	In the Linux kernel, the following vulnerability has been resolved: erofs: fix interlaced plain identification for encoded extents Only plain data whose start position and on-disk physical length a… New	-	CVE-2026-43166	2026-05-6 22:07	2026-05-6	Show	GitHub Exploit DB Packet Storm

804	-	-	-	In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Skip dev-iotlb flush for inaccessible PCIe device without scalable mode PCIe endpoints with ATS enabled and passed th… New	-	CVE-2026-43161	2026-05-6 22:07	2026-05-6	Show	GitHub Exploit DB Packet Storm

805	-	-	-	In the Linux kernel, the following vulnerability has been resolved: xfrm: always flush state and policy upon NETDEV_UNREGISTER event syzbot is reporting that "struct xfrm_state" refcount is leaking… New	-	CVE-2026-43167	2026-05-6 22:07	2026-05-6	Show	GitHub Exploit DB Packet Storm

806	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix reflink preserve cleanup issue commit c06c303832ec ("ocfs2: fix xattr array entry __counted_by error") doesn't handle … New	-	CVE-2026-43168	2026-05-6 22:07	2026-05-6	Show	GitHub Exploit DB Packet Storm

807	-	-	-	In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: Move vbus draw to workqueue context Currently dwc3_gadget_vbus_draw() can be called from atomic context, which… New	-	CVE-2026-43170	2026-05-6 22:07	2026-05-6	Show	GitHub Exploit DB Packet Storm

808	-	-	-	In the Linux kernel, the following vulnerability has been resolved: EFI/CPER: don't dump the entire memory region The current logic at cper_print_fw_err() doesn't check if the error record length i… New	-	CVE-2026-43171	2026-05-6 22:07	2026-05-6	Show	GitHub Exploit DB Packet Storm

809	-	-	-	In the Linux kernel, the following vulnerability has been resolved: udplite: Fix null-ptr-deref in __udp_enqueue_schedule_skb(). syzbot reported null-ptr-deref of udp_sk(sk)->udp_prod_queue. [0] S… New	-	CVE-2026-43164	2026-05-6 22:07	2026-05-6	Show	GitHub Exploit DB Packet Storm

810	-	-	-	In the Linux kernel, the following vulnerability has been resolved: drm/buddy: Prevent BUG_ON by validating rounded allocation When DRM_BUDDY_CONTIGUOUS_ALLOCATION is set, the requested size is rou… New	-	CVE-2026-43169	2026-05-6 22:07	2026-05-6	Show	GitHub Exploit DB Packet Storm