Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3321	6.8	警告 Physics	Elspec LTD	G5DFR ファームウェア	Elspec LTDのG5DFR ファームウェアにおける代替パスまたはチャネルを使用した認証回避に関する脆弱性	CWE-288 代替パスまたはチャネルを使用した認証回避	CVE-2025-59392	2026-02-6 10:41	2025-11-6	Show	GitHub Exploit DB Packet Storm

3322	7.2	重要 Network	Sangoma	freepbx	SangomaのfreepbxにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2025-64328	2026-02-6 10:41	2025-11-7	Show	GitHub Exploit DB Packet Storm

3323	6.5	警告 Network	Salesforce.com, inc.	MuleSoft Anypoint Extension Pack	Salesforce.com, inc.のMuleSoft Anypoint Extension Packにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2025-10875	2026-02-6 10:41	2025-11-4	Show	GitHub Exploit DB Packet Storm

3324	7.5	重要 Network	Intelbras	ICIP 30 Firmware	IntelbrasのICIP 30 Firmwareにおける複数の脆弱性	CWE-255 CWE-256 CWE-522	CVE-2025-13187	2026-02-6 10:41	2025-11-14	Show	GitHub Exploit DB Packet Storm

3325	5.3	警告 Network	Zeit, Inc.	AI	Vercel, Inc. (旧 Zeit, Inc.)のAIにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2025-48985	2026-02-6 10:41	2025-11-7	Show	GitHub Exploit DB Packet Storm

3326	5.5	警告 Local	Open JS Foundation	ESLint	Open JS FoundationのESLintにおける再帰制御に関する脆弱性	CWE-674 不適切な再帰制御	CVE-2025-50537	2026-02-6 10:40	2026-01-26	Show	GitHub Exploit DB Packet Storm

3327	6.1	警告 Network	nuxt	Nuxt Devtools	nuxtのNuxt Devtoolsにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-52662	2026-02-6 10:40	2025-11-7	Show	GitHub Exploit DB Packet Storm

3328	7.8	重要 Local	Synology Inc.	BeeDrive	Synology Inc.のBeeDriveにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2025-54158	2026-02-6 10:40	2025-12-4	Show	GitHub Exploit DB Packet Storm

3329	7.5	重要 Network	Synology Inc.	BeeDrive	Synology Inc.のBeeDriveにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2025-54159	2026-02-6 10:40	2025-12-4	Show	GitHub Exploit DB Packet Storm

3330	7.8	重要 Local	Synology Inc.	BeeDrive	Synology Inc.のBeeDriveにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2025-54160	2026-02-6 10:40	2025-12-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
711	9.8	CRITICAL Network	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: dlm: validate length in dlm_search_rsb_tree The len parameter in dlm_dump_rsb_name() is not validated and comes from network mess…	CWE-787 Out-of-bounds Write	CVE-2026-43125	2026-05-9 02:57	2026-05-6	Show	GitHub Exploit DB Packet Storm

712	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ALSA: mixer: oss: Add card disconnect checkpoints ALSA OSS mixer layer calls the kcontrol ops rather individually, and pending ca…	NVD-CWE-noinfo	CVE-2026-43126	2026-05-9 02:56	2026-05-6	Show	GitHub Exploit DB Packet Storm

713	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ntfs3: fix circular locking dependency in run_unpack_ex Syzbot reported a circular locking dependency between wnd->rw_lock (sbi->…	CWE-667 Improper Locking	CVE-2026-43127	2026-05-9 02:54	2026-05-6	Show	GitHub Exploit DB Packet Storm

714	9.4	CRITICAL Network	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo_avx2: don't return non-matching entry on expiry New test case fails unexpectedly when avx2 matching fun…	NVD-CWE-noinfo	CVE-2026-43114	2026-05-9 02:54	2026-05-6	Show	GitHub Exploit DB Packet Storm

715	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: RDMA/umem: Fix double dma_buf_unpin in failure path In ib_umem_dmabuf_get_pinned_with_dma_device(), the call to ib_umem_dmabuf_ma…	CWE-415 Double Free	CVE-2026-43128	2026-05-9 02:52	2026-05-6	Show	GitHub Exploit DB Packet Storm

716	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: srcu: Use irq_work to start GP in tiny SRCU Tiny SRCU's srcu_gp_start_if_needed() directly calls schedule_work(), which acquires …	NVD-CWE-noinfo	CVE-2026-43115	2026-05-9 02:51	2026-05-6	Show	GitHub Exploit DB Packet Storm

717	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: ensure safe access to master conntrack Holding reference on the expectation is not sufficient, the master c…	CWE-362 Race Condition	CVE-2026-43116	2026-05-9 02:49	2026-05-6	Show	GitHub Exploit DB Packet Storm

718	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Flush dev-IOTLB only when PCIe device is accessible in scalable mode Commit 4fc82cd907ac ("iommu/vt-d: Don't issue AT…	NVD-CWE-noinfo	CVE-2026-43130	2026-05-9 02:44	2026-05-6	Show	GitHub Exploit DB Packet Storm

719	9.1	CRITICAL Network	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: btrfs: tracepoints: get correct superblock from dentry in event btrfs_sync_file() If overlay is used on top of btrfs, dentry->d_s…	NVD-CWE-noinfo	CVE-2026-43117	2026-05-9 02:43	2026-05-6	Show	GitHub Exploit DB Packet Storm

720	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Fix null pointer dereference issue If SMU is disabled, during RAS initialization, there will be null pointer derefere…	CWE-476 NULL Pointer Dereference	CVE-2026-43131	2026-05-9 02:42	2026-05-6	Show	GitHub Exploit DB Packet Storm