Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 8, 2026, 2:12 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
361	7.5	重要 Network	Authentik Security Inc	authentik	Authentik Security Incのauthentikにおけるデータの信頼性についての不十分な検証に関する脆弱性 New	CWE-345 データの信頼性についての不十分な検証	CVE-2026-41577	2026-06-8 11:47	2026-06-2	Show	GitHub Exploit DB Packet Storm

362	8.1	重要 Network	Shopify	React Router	ShopifyのReact Routerにおける信頼できないデータのデシリアライゼーションに関する脆弱性 New	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-42211	2026-06-8 11:47	2026-06-2	Show	GitHub Exploit DB Packet Storm

363	8.1	重要 Network	budibase	budibase	budibaseにおけるHttpOnly 属性のない重要な Cookie に関する脆弱性 New	CWE-1004 HttpOnly 属性のない重要な Cookie	CVE-2026-42239	2026-06-8 11:47	2026-05-7	Show	GitHub Exploit DB Packet Storm

364	7.5	重要 Network	Python Software Foundation	Python	Python Software FoundationのPythonにおける再帰制御に関する脆弱性 New	CWE-674 不適切な再帰制御	CVE-2026-4224	2026-06-8 11:47	2026-03-16	Show	GitHub Exploit DB Packet Storm

365	7.1	重要 Network	Auth0 Inc.	auth0.js	Auth0 Inc.のauth0.jsにおける不正な認証に関する脆弱性 New	CWE-863 不正な認証	CVE-2026-42280	2026-06-8 11:47	2026-05-27	Show	GitHub Exploit DB Packet Storm

366	9.3	緊急 Network	Authentik Security Inc	authentik	Authentik Security Incのauthentikにおけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-42849	2026-06-8 11:47	2026-06-2	Show	GitHub Exploit DB Packet Storm

367	8.3	重要 Adjacent	MacGregor	Interschalt VDR G4e Firmware	MacGregorのInterschalt VDR G4e Firmwareにおけるハードコードされた認証情報の使用に関する脆弱性 New	CWE-798 ハードコードされた認証情報の使用	CVE-2026-42929	2026-06-8 11:47	2026-05-29	Show	GitHub Exploit DB Packet Storm

368	8.3	重要 Adjacent	MacGregor	Interschalt VDR G4e Firmware	MacGregorのInterschalt VDR G4e Firmwareにおけるデフォルトの認証情報の使用に関する脆弱性 New	CWE-1392 デフォルトの認証情報の使用	CVE-2026-42941	2026-06-8 11:46	2026-05-29	Show	GitHub Exploit DB Packet Storm

369	5.4	警告 Adjacent	MacGregor	Interschalt VDR G4e Firmware	MacGregorのInterschalt VDR G4e Firmwareにおける認証情報の不十分な保護に関する脆弱性 New	CWE-522 認証情報の不十分な保護	CVE-2026-42951	2026-06-8 11:46	2026-05-29	Show	GitHub Exploit DB Packet Storm

370	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2026-43084	2026-06-8 11:46	2026-05-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2311	7.1	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: selinux: fix overlayfs mmap() and mprotect() access checks The existing SELinux security model for overlayfs is to allow access i…	-	CVE-2026-46054	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

2312	7.5	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: ceph: only d_add() negative dentries when they are unhashed Ceph can call d_add(dentry, NULL) on a negative dentry that is alread…	-	CVE-2026-46052	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

2313	9.8	CRITICAL Network	-	-	In the Linux kernel, the following vulnerability has been resolved: rxgk: Fix potential integer overflow in length check Fix potential integer overflow in rxgk_extract_token() when checking the len…	-	CVE-2026-46039	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

2314	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: vfio/cdx: Serialize VFIO_DEVICE_SET_IRQS with a per-device mutex vfio_cdx_set_msi_trigger() reads vdev->config_msi and operates o…	-	CVE-2026-46036	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

2315	7.0	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: mm/slab: return NULL early from kmalloc_nolock() in NMI on UP On UP kernels (!CONFIG_SMP), spin_trylock() is a no-op that uncondi…	-	CVE-2026-46029	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

2316	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: media: mtk-jpeg: fix use-after-free in release path due to uncancelled work The mtk_jpeg_release() function frees the context str…	-	CVE-2026-46011	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

2317	8.1	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix error handling in rxgk_extract_token() Fix a missing bit of error handling in rxgk_extract_token(): in the event that …	-	CVE-2026-46010	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

2318	7.1	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: erofs: fix unsigned underflow in z_erofs_lz4_handle_overlap() Some crafted images can have illegal (!partial_decoding && m_llen <…	-	CVE-2026-45999	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

2319	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: udf: fix partition descriptor append bookkeeping Mounting a crafted UDF image with repeated partition descriptors can trigger a h…	-	CVE-2026-45991	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

2320	9.8	CRITICAL Network	-	-	In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix re-decryption of RESPONSE packets If a RESPONSE packet gets a temporary failure during processing, it may end up in a …	-	CVE-2026-45988	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm