Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3011	9.8	緊急 Network	opensagres	XDocReport	opensagresのXDocReportにおけるテンプレートエンジンで使用される特殊な要素の不適切な無効化に関する脆弱性	CWE-1336 テンプレートエンジンで使用される特殊な要素の不適切な無効化	CVE-2025-64087	2026-02-5 15:50	2026-01-20	Show	GitHub Exploit DB Packet Storm

3012	8.8	重要 Network	ajax	file browser	File Browserにおける複数の脆弱性	CWE-285 CWE-639 CWE-639	CVE-2025-64523	2026-02-5 15:50	2025-11-12	Show	GitHub Exploit DB Packet Storm

3013	6.1	警告 Physics	Blurams	Dome Flare Firmware	BluramsのDome Flare Firmwareにおける複数の脆弱性	CWE-119 CWE-125 CWE-1274	CVE-2025-65396	2026-02-5 15:50	2026-01-14	Show	GitHub Exploit DB Packet Storm

3014	6.8	警告 Physics	Blurams	Dome Flare Firmware	BluramsのDome Flare Firmwareにおける複数の脆弱性	CWE-20 CWE-287	CVE-2025-65397	2026-02-5 15:50	2026-01-14	Show	GitHub Exploit DB Packet Storm

3015	9.8	緊急 Network	opensagres	XDocReport	opensagresのXDocReportにおけるXML 外部エンティティの脆弱性	CWE-611 XML 外部エンティティ参照の不適切な制限	CVE-2025-65482	2026-02-5 15:50	2026-01-20	Show	GitHub Exploit DB Packet Storm

3016	5.3	警告 Network	pymdown extensions project	pymdown extensions	facelessuserのPyMdown Extensionsにおける非効率的な正規表現の複雑さに関する脆弱性	CWE-1333 非効率的な正規表現の複雑さ	CVE-2025-68142	2026-02-5 15:50	2025-12-16	Show	GitHub Exploit DB Packet Storm

3017	9.8	緊急 Network	code-projects	Computer Book Store	carmelo (Carmelo Garcia)のComputer Book Storeにおける危険なタイプのファイルの無制限アップロードに関する脆弱性	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2025-69559	2026-02-5 15:50	2026-01-27	Show	GitHub Exploit DB Packet Storm

3018	6.5	警告 Network	TMS Global Software	TMS Management Console	TMS Global SoftwareのTMS Management Consoleにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2025-69612	2026-02-5 15:50	2026-01-22	Show	GitHub Exploit DB Packet Storm

3019	6.5	警告 Network	Keichi Takahashi	binary-parser	Keichi TakahashiのBinary-parserにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-1245	2026-02-5 15:50	2026-01-20	Show	GitHub Exploit DB Packet Storm

3020	9.8	緊急 Network	csa-iot	matter	GoogleのMatterにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-20418	2026-02-5 15:50	2026-02-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
661	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: mshv: Fix error handling in mshv_region_pin The current error handling has two issues: First, pin_user_pages_fast() can return a… Update	NVD-CWE-Other	CVE-2026-43045	2026-05-8 23:04	2026-05-2	Show	GitHub Exploit DB Packet Storm

662	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: btrfs: reject root items with drop_progress and zero drop_level [BUG] When recovering relocation at mount time, merge_reloc_root(… Update	CWE-617 Reachable Assertion	CVE-2026-43046	2026-05-8 22:52	2026-05-2	Show	GitHub Exploit DB Packet Storm

663	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: HID: multitouch: Check to ensure report responses match the request It is possible for a malicious (or clumsy) device to respond … Update	CWE-787 Out-of-bounds Write	CVE-2026-43047	2026-05-8 22:50	2026-05-2	Show	GitHub Exploit DB Packet Storm

664	-		-	-	Other issue in the WebRTC component. This vulnerability was fixed in Firefox ESR 140.10.2 and Thunderbird 140.10.2. New	-	CVE-2026-8094	2026-05-8 22:16	2026-05-7	Show	GitHub Exploit DB Packet Storm

665	7.3	HIGH Network	-	-	Use-after-free in the DOM: Networking component. This vulnerability was fixed in Firefox 150.0.2, Firefox ESR 140.10.2, Firefox ESR 115.35.2, Thunderbird 150.0.2, and Thunderbird 140.10.2. New	CWE-416 Use After Free	CVE-2026-8090	2026-05-8 22:16	2026-05-7	Show	GitHub Exploit DB Packet Storm

666	7.2	HIGH Network	-	-	Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been removed to prevent accid… New	-	CVE-2026-7448	2026-05-8 22:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

667	8.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: net: ethernet: ec_bhf: Fix dma_free_coherent() dma handle dma_free_coherent() in error path takes priv->rx_buf.alloc_len as the d… New	-	CVE-2026-43283	2026-05-8 22:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

668	7.1	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: drm/xe: Add bounds check on pat_index to prevent OOB kernel read in madvise When user provides a bogus pat_index value through th… New	-	CVE-2026-43280	2026-05-8 22:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

669	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Add sanity check for OOB writes at silencing At silencing the playback URB packets in the implicit fb mode befor… New	-	CVE-2026-43279	2026-05-8 22:16	2026-05-6	Show	GitHub Exploit DB Packet Storm

670	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: dm: clear cloned request bio pointer when last clone bio completes Stale rq->bio values have been observed to cause double-initia… New	-	CVE-2026-43278	2026-05-8 22:16	2026-05-6	Show	GitHub Exploit DB Packet Storm