Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3861 9.1 緊急
Network 		dgraph dgraph dgraphにおけるデータクエリロジックの特殊要素の不適切な中立化に関する脆弱性 CWE-943
データクエリロジックの特殊要素の不適切な中立化 		CVE-2026-41327 2026-04-30 11:01 2026-04-24 Show GitHub Exploit DB Packet Storm
3862 9.1 緊急
Network 		dgraph dgraph dgraphにおけるデータクエリロジックの特殊要素の不適切な中立化に関する脆弱性 CWE-943
データクエリロジックの特殊要素の不適切な中立化 		CVE-2026-41328 2026-04-30 11:01 2026-04-24 Show GitHub Exploit DB Packet Storm
3863 3.7
Network 		OpenClaw OpenClaw OpenClawにおけるインタラクション頻度の制御に関する脆弱性  CWE-799
インタラクション頻度の不適切な制御 		CVE-2026-41333 2026-04-30 11:01 2026-04-23 Show GitHub Exploit DB Packet Storm
3864 6.5 警告
Network 		OpenClaw OpenClaw OpenClawにおける安全でない失敗処理に関する脆弱性 CWE-636
安全でない失敗処理 		CVE-2026-41334 2026-04-30 11:01 2026-04-23 Show GitHub Exploit DB Packet Storm
3865 5.3 警告
Network 		OpenClaw OpenClaw OpenClawにおける認可されていない制御領域への重要情報の漏えいに関する脆弱性 CWE-497
認可されていない制御領域への重要情報の漏えい 		CVE-2026-41335 2026-04-30 11:01 2026-04-23 Show GitHub Exploit DB Packet Storm
3866 7.8 重要
Local 		OpenClaw OpenClaw OpenClawにおける信頼できない制御領域からの機能の組み込みに関する脆弱性 CWE-829
信頼性のない制御領域からの機能の組み込み 		CVE-2026-41336 2026-04-30 11:01 2026-04-23 Show GitHub Exploit DB Packet Storm
3867 5.3 警告
Network 		OpenClaw OpenClaw OpenClawにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 CWE-367
Time-of-check Time-of-use (TOCTOU) 競合状態 		CVE-2026-41337 2026-04-30 11:01 2026-04-23 Show GitHub Exploit DB Packet Storm
3868 5 警告
Local 		OpenClaw OpenClaw OpenClawにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 CWE-367
Time-of-check Time-of-use (TOCTOU) 競合状態 		CVE-2026-41338 2026-04-30 11:01 2026-04-23 Show GitHub Exploit DB Packet Storm
3869 6.5 警告
Network 		OpenClaw OpenClaw OpenClawにおける不完全な内部状態の区別に関する脆弱性 CWE-372
不完全な内部状態の区別 		CVE-2026-41340 2026-04-30 11:01 2026-04-23 Show GitHub Exploit DB Packet Storm
3870 5.4 警告
Network 		OpenClaw OpenClaw OpenClawにおける不十分な型の区別に関する脆弱性 CWE-351
不十分な型の区別 		CVE-2026-41341 2026-04-30 11:01 2026-04-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1551 6.5 MEDIUM
Network 		open5gs open5gs A vulnerability was determined in Open5GS up to 2.7.7. Affected is the function ogs_sbi_subscription_data_add/ogs_sbi_nf_service_add in the library /lib/sbi/context.c of the component NRF. Executing … CWE-404
 Improper Resource Shutdown or Release 		CVE-2026-8744 2026-05-19 03:34 2026-05-17 Show GitHub Exploit DB Packet Storm
1552 8.8 HIGH
Network 		google chrome Heap buffer overflow in WebML in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Criti… CWE-122
Heap-based Buffer Overflow 		CVE-2026-8509 2026-05-19 03:34 2026-05-15 Show GitHub Exploit DB Packet Storm
1553 6.5 MEDIUM
Network 		open5gs open5gs A vulnerability was identified in Open5GS up to 2.7.7. Affected by this vulnerability is the function ogs_timer_add in the library /src/ausf/nausf-handler.c of the component AUSF. The manipulation le… CWE-404
 Improper Resource Shutdown or Release 		CVE-2026-8745 2026-05-19 03:34 2026-05-17 Show GitHub Exploit DB Packet Storm
1554 9.6 CRITICAL
Network 		google chrome Use after free in UI in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical) CWE-416
 Use After Free 		CVE-2026-8511 2026-05-19 03:34 2026-05-15 Show GitHub Exploit DB Packet Storm
1555 8.3 HIGH
Network 		google chrome Use after free in FileSystem in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially perform a sandbox escape via a cr… CWE-416
 Use After Free 		CVE-2026-8512 2026-05-19 03:33 2026-05-15 Show GitHub Exploit DB Packet Storm
1556 8.3 HIGH
Network 		google chrome Use after free in Aura in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Ch… CWE-416
 Use After Free 		CVE-2026-8514 2026-05-19 03:33 2026-05-15 Show GitHub Exploit DB Packet Storm
1557 8.7 HIGH
Network 		openwebui open_webui Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, the tool_servers and terminal_servers keys in utils/tools.py do use a prefix. When t… CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2026-44552 2026-05-19 03:32 2026-05-16 Show GitHub Exploit DB Packet Storm
1558 8.3 HIGH
Network 		google chrome Use after free in HID in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially perform a sandbox escape via a crafted H… CWE-416
 Use After Free 		CVE-2026-8515 2026-05-19 03:32 2026-05-15 Show GitHub Exploit DB Packet Storm
1559 5.3 MEDIUM
Network 		pyload pyload pyLoad is a free and open-source download manager written in Python. Prior to 0.5.0b3.dev100, pyload-ng WebUI returns full Python traceback details to clients on unhandled exceptions. Because /web/<p… CWE-209
Information Exposure Through an Error Message 		CVE-2026-44226 2026-05-19 03:25 2026-05-12 Show GitHub Exploit DB Packet Storm
1560 6.5 MEDIUM
Network 		guimard apache\ Apache::Session::Generate::SHA256 versions before 1.3.19 for Perl create insecure session ids. Apache::Session::Generate::SHA256 generated session ids insecurely. The default session id generator re… CWE-338
CWE-340
 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)
 Generation of Predictable Numbers or Identifiers 		CVE-2026-8503 2026-05-19 03:23 2026-05-15 Show GitHub Exploit DB Packet Storm