Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3251	8.8	重要 Network	DataEase	DataEase	DataEaseにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-40900	2026-04-21 10:44	2026-04-16	Show	GitHub Exploit DB Packet Storm

3252	8.8	重要 Network	DataEase	DataEase	DataEaseにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-40901	2026-04-21 10:44	2026-04-16	Show	GitHub Exploit DB Packet Storm

3253	5.4	警告 Network	b3log	SiYuan	B3logのSiYuanにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-40922	2026-04-21 10:44	2026-04-17	Show	GitHub Exploit DB Packet Storm

3254	9.8	緊急 Network	FFmpeg	FFmpeg	FFmpegにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-40962	2026-04-21 10:44	2026-04-16	Show	GitHub Exploit DB Packet Storm

3255	5.4	警告 Network	Bludit	Bludit	Bluditにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-4420	2026-04-21 10:44	2026-04-7	Show	GitHub Exploit DB Packet Storm

3256	8.8	重要 Network	FreeBSD	FreeBSD	FreeBSDにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-4747	2026-04-21 10:44	2026-03-26	Show	GitHub Exploit DB Packet Storm

3257	7.1	重要 Local	gimp	gimp	gimpにおける境界条件の判定に関する脆弱性	CWE-193 境界条件の判定	CVE-2026-4887	2026-04-21 10:44	2026-03-26	Show	GitHub Exploit DB Packet Storm

3258	5.3	警告 Network	langflow	langflow	langflowにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-5022	2026-04-21 10:44	2026-03-27	Show	GitHub Exploit DB Packet Storm

3259	6.5	警告 Network	langflow	langflow	langflowにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-5025	2026-04-21 10:43	2026-03-27	Show	GitHub Exploit DB Packet Storm

3260	5.4	警告 Network	langflow	langflow	langflowにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-5026	2026-04-21 10:43	2026-03-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
801	-	-	-	In the Linux kernel, the following vulnerability has been resolved: KVM: nSVM: Remove a user-triggerable WARN on nested_svm_load_cr3() succeeding Drop the WARN in svm_set_nested_state() on nested_s… Update	-	CVE-2026-43315	2026-05-12 23:10	2026-05-8	Show	GitHub Exploit DB Packet Storm

802	-	-	-	In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_rndis: Protect RNDIS options with mutex The class/subclass/protocol options are suspectible to race conditions as … Update	-	CVE-2026-43342	2026-05-12 23:10	2026-05-8	Show	GitHub Exploit DB Packet Storm

803	-	-	-	In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_subset: Fix unbalanced refcnt in geth_free geth_alloc() increments the reference count, but geth_free() fails to d… Update	-	CVE-2026-43343	2026-05-12 23:10	2026-05-8	Show	GitHub Exploit DB Packet Storm

804	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ice: ptp: don't WARN when controlling PF is unavailable In VFIO passthrough setups, it is possible to pass through only a PF whic… Update	-	CVE-2026-43346	2026-05-12 23:10	2026-05-8	Show	GitHub Exploit DB Packet Storm

805	-	-	-	In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Eagerly init vgic dist/redist on vgic creation If vgic_allocate_private_irqs_locked() fails for any odd reason, we ex… Update	-	CVE-2026-43351	2026-05-12 23:10	2026-05-9	Show	GitHub Exploit DB Packet Storm

806	-	-	-	In the Linux kernel, the following vulnerability has been resolved: iio: proximity: hx9023s: Protect against division by zero in set_samp_freq Avoid division by zero when sampling frequency is unsp… Update	-	CVE-2026-43354	2026-05-12 23:10	2026-05-9	Show	GitHub Exploit DB Packet Storm

807	-	-	-	In the Linux kernel, the following vulnerability has been resolved: media: solo6x10: Check for out of bounds chip_id Clang with CONFIG_UBSAN_SHIFT=y noticed a condition where a signed type (literal… Update	-	CVE-2026-43316	2026-05-12 23:10	2026-05-8	Show	GitHub Exploit DB Packet Storm

808	-	-	-	In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix sync handling in amdgpu_dma_buf_move_notify Invalidating a dmabuf will impact other users of the shared BO. In th… Update	-	CVE-2026-43318	2026-05-12 23:10	2026-05-8	Show	GitHub Exploit DB Packet Storm

809	-	-	-	In the Linux kernel, the following vulnerability has been resolved: spi: spidev: fix lock inversion between spi_lock and buf_lock The spidev driver previously used two mutexes, spi_lock and buf_loc… Update	-	CVE-2026-43319	2026-05-12 23:10	2026-05-8	Show	GitHub Exploit DB Packet Storm

810	-	-	-	In the Linux kernel, the following vulnerability has been resolved: sched/fair: Fix zero_vruntime tracking fix John reported that stress-ng-yield could make his machine unhappy and managed to bisec… Update	-	CVE-2026-43323	2026-05-12 23:10	2026-05-8	Show	GitHub Exploit DB Packet Storm