Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 16, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2941	8.1	重要 Network	FreeScout	FreeScout	FreeScoutにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-40497	2026-04-27 11:20	2026-04-21	Show	GitHub Exploit DB Packet Storm

2942	8.8	重要 Network	PJSIP	pjsip	PJSIPのpjsipにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-40614	2026-04-27 11:20	2026-04-21	Show	GitHub Exploit DB Packet Storm

2943	6.5	警告 Network	decidim	decidim	Decidim Free Software AssociationのDecidimにおける不適切な権限設定に関する脆弱性	CWE-266 不適切な権限設定	CVE-2026-40869	2026-04-27 11:20	2026-04-21	Show	GitHub Exploit DB Packet Storm

2944	9.8	緊急 Network	PJSIP	pjsip	PJSIPのpjsipにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-40892	2026-04-27 11:20	2026-04-21	Show	GitHub Exploit DB Packet Storm

2945	7.5	重要 Network	follow-redirects project	Follow Redirects	Follow Redirects projectのFollow Redirectsにおける情報漏えいに関する脆弱性	CWE-200 CWE-noinfo	CVE-2026-40895	2026-04-27 11:20	2026-04-21	Show	GitHub Exploit DB Packet Storm

2946	6.5	警告 Network	WWBN	AVideo	WWBNのAVideoにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-40907	2026-04-27 11:20	2026-04-21	Show	GitHub Exploit DB Packet Storm

2947	5.3	警告 Network	WWBN	AVideo	WWBNのAVideoにおける情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2026-40908	2026-04-27 11:20	2026-04-21	Show	GitHub Exploit DB Packet Storm

2948	6.5	警告 Network	WWBN	AVideo	WWBNのAVideoにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-40909	2026-04-27 11:20	2026-04-21	Show	GitHub Exploit DB Packet Storm

2949	5.4	警告 Network	Docmost	Docmost	Docmostにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-40927	2026-04-27 11:20	2026-04-21	Show	GitHub Exploit DB Packet Storm

2950	5.4	警告 Network	WWBN	AVideo	WWBNのAVideoにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-40928	2026-04-27 11:20	2026-04-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1321	7.8	HIGH Local	-	-	Illustrator versions 29.8.6, 30.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of th…	CWE-787 Out-of-bounds Write	CVE-2026-34661	2026-05-13 03:55	2026-05-13	Show	GitHub Exploit DB Packet Storm

1322	5.5	MEDIUM Adjacent	-	-	Illustrator versions 29.8.6, 30.3 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerabil…	CWE-476 NULL Pointer Dereference	CVE-2026-34662	2026-05-13 03:55	2026-05-13	Show	GitHub Exploit DB Packet Storm

1323	5.5	MEDIUM Local	-	-	Illustrator versions 29.8.6, 30.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to d…	CWE-125 Out-of-bounds Read	CVE-2026-34663	2026-05-13 03:55	2026-05-13	Show	GitHub Exploit DB Packet Storm

1324	7.8	HIGH Local	-	-	Substance3D - Painter versions 12.0.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation o…	CWE-787 Out-of-bounds Write	CVE-2026-34675	2026-05-13 03:55	2026-05-13	Show	GitHub Exploit DB Packet Storm

1325	7.8	HIGH Local	-	-	Substance3D - Painter versions 12.0.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation o…	CWE-787 Out-of-bounds Write	CVE-2026-34676	2026-05-13 03:55	2026-05-13	Show	GitHub Exploit DB Packet Storm

1326	7.8	HIGH Local	-	-	Illustrator versions 29.8.6, 30.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation…	CWE-122 Heap-based Buffer Overflow	CVE-2026-34687	2026-05-13 03:55	2026-05-13	Show	GitHub Exploit DB Packet Storm

1327	7.5	HIGH Network	openjsf	fast-uri	fast-uri decoded percent-encoded path separators and dot segments before applying dot-segment removal in its normalize() and equal() functions. Encoded path data was treated like real slashes and par…	CWE-22 Path Traversal	CVE-2026-6321	2026-05-13 03:54	2026-05-5	Show	GitHub Exploit DB Packet Storm

1328	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net/sched: act_skbedit: fix divide-by-zero in tcf_skbedit_hash() Commit 38a6f0865796 ("net: sched: support hash selecting tx queu…	CWE-369 Divide By Zero	CVE-2026-43238	2026-05-13 03:54	2026-05-6	Show	GitHub Exploit DB Packet Storm

1329	8.8	HIGH Network	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: smb: client: prevent races in ->query_interfaces() It was possible for two query interface works to be concurrently trying to upd…	NVD-CWE-noinfo	CVE-2026-43239	2026-05-13 03:53	2026-05-6	Show	GitHub Exploit DB Packet Storm

1330	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: usb: chipidea: udc: fix DMA and SG cleanup in _ep_nuke() The ChipIdea UDC driver can encounter "not page aligned sg buffer" error…	CWE-787 Out-of-bounds Write	CVE-2026-43250	2026-05-13 03:51	2026-05-6	Show	GitHub Exploit DB Packet Storm