Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3511 6.5 警告
Network 		Engineering Ingegneria Informatica knowage Engineering Ingegneria Informaticaのknowageにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2025-58441 2026-02-5 15:46 2026-01-7 Show GitHub Exploit DB Packet Storm
3512 8.7 重要
Network 		Ultimate Fosters Ultimate POS Ultimate FostersのUltimate POSにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-60503 2026-02-5 15:46 2025-11-3 Show GitHub Exploit DB Packet Storm
3513 5.3 警告
Network 		The Go Project Go The Go ProjectのGoにおける不特定の脆弱性 CWE-noinfo
情報不足 		CVE-2025-61730 2026-02-5 15:46 2026-01-28 Show GitHub Exploit DB Packet Storm
3514 4.3 警告
Network 		webinarpress webinarpress WordPress用webinarpressにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2025-62972 2026-02-5 15:45 2025-10-27 Show GitHub Exploit DB Packet Storm
3515 7.5 重要
Network 		oneflow oneflow oneflowにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2025-65886 2026-02-5 15:45 2026-01-28 Show GitHub Exploit DB Packet Storm
3516 6.5 警告
Network 		oneflow oneflow oneflowにおけるゼロ除算に関する脆弱性 CWE-369
ゼロ除算 		CVE-2025-65887 2026-02-5 15:45 2026-01-28 Show GitHub Exploit DB Packet Storm
3517 7.5 重要
Network 		oneflow oneflow oneflowにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2025-65888 2026-02-5 15:45 2026-01-28 Show GitHub Exploit DB Packet Storm
3518 7.5 重要
Network 		oneflow oneflow oneflowにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2025-65889 2026-02-5 15:45 2026-01-28 Show GitHub Exploit DB Packet Storm
3519 7.5 重要
Network 		oneflow oneflow oneflowにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2025-65890 2026-02-5 15:45 2026-01-28 Show GitHub Exploit DB Packet Storm
3520 7.5 重要
Network 		oneflow oneflow oneflowにおけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2025-65891 2026-02-5 15:45 2026-01-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
361 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: pstore: ram_core: fix incorrect success return when vmap() fails In persistent_ram_vmap(), vmap() may return NULL on failure. If… Update CWE-476
 NULL Pointer Dereference 		CVE-2026-43124 2026-05-9 03:02 2026-05-6 Show GitHub Exploit DB Packet Storm
362 5.3 MEDIUM
Network 		zfnd zebra-chain
zebra-network
zebrad 		ZEBRA is a Zcash node written entirely in Rust. Prior to zebrad version 4.4.0, prior to zebra-chain version 7.0.0, and prior to zebra-network version 6.0.0, several inbound deserialization paths in Z… New CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2026-44500 2026-05-9 03:01 2026-05-9 Show GitHub Exploit DB Packet Storm
363 8.8 HIGH
Adjacent 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: wifi: wl1251: validate packet IDs before indexing tx_frames wl1251_tx_packet_cb() uses the firmware completion ID directly to ind… Update CWE-476
 NULL Pointer Dereference 		CVE-2026-43113 2026-05-9 02:58 2026-05-6 Show GitHub Exploit DB Packet Storm
364 9.8 CRITICAL
Network 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: dlm: validate length in dlm_search_rsb_tree The len parameter in dlm_dump_rsb_name() is not validated and comes from network mess… Update CWE-787
 Out-of-bounds Write 		CVE-2026-43125 2026-05-9 02:57 2026-05-6 Show GitHub Exploit DB Packet Storm
365 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ALSA: mixer: oss: Add card disconnect checkpoints ALSA OSS mixer layer calls the kcontrol ops rather individually, and pending ca… Update NVD-CWE-noinfo
CVE-2026-43126 2026-05-9 02:56 2026-05-6 Show GitHub Exploit DB Packet Storm
366 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ntfs3: fix circular locking dependency in run_unpack_ex Syzbot reported a circular locking dependency between wnd->rw_lock (sbi->… Update CWE-667
 Improper Locking 		CVE-2026-43127 2026-05-9 02:54 2026-05-6 Show GitHub Exploit DB Packet Storm
367 9.4 CRITICAL
Network 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo_avx2: don't return non-matching entry on expiry New test case fails unexpectedly when avx2 matching fun… Update NVD-CWE-noinfo
CVE-2026-43114 2026-05-9 02:54 2026-05-6 Show GitHub Exploit DB Packet Storm
368 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: RDMA/umem: Fix double dma_buf_unpin in failure path In ib_umem_dmabuf_get_pinned_with_dma_device(), the call to ib_umem_dmabuf_ma… Update CWE-415
 Double Free 		CVE-2026-43128 2026-05-9 02:52 2026-05-6 Show GitHub Exploit DB Packet Storm
369 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: srcu: Use irq_work to start GP in tiny SRCU Tiny SRCU's srcu_gp_start_if_needed() directly calls schedule_work(), which acquires … Update NVD-CWE-noinfo
CVE-2026-43115 2026-05-9 02:51 2026-05-6 Show GitHub Exploit DB Packet Storm
370 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: ensure safe access to master conntrack Holding reference on the expectation is not sufficient, the master c… Update CWE-362
Race Condition 		CVE-2026-43116 2026-05-9 02:49 2026-05-6 Show GitHub Exploit DB Packet Storm