Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4081	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-23326	2026-04-27 11:25	2026-03-25	Show	GitHub Exploit DB Packet Storm

4082	7.1	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-23327	2026-04-27 11:25	2026-03-25	Show	GitHub Exploit DB Packet Storm

4083	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-23328	2026-04-27 11:25	2026-03-25	Show	GitHub Exploit DB Packet Storm

4084	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-23329	2026-04-27 11:25	2026-03-25	Show	GitHub Exploit DB Packet Storm

4085	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-23330	2026-04-27 11:25	2026-03-25	Show	GitHub Exploit DB Packet Storm

4086	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-23331	2026-04-27 11:25	2026-03-25	Show	GitHub Exploit DB Packet Storm

4087	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-23332	2026-04-27 11:25	2026-03-25	Show	GitHub Exploit DB Packet Storm

4088	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-23334	2026-04-27 11:25	2026-03-25	Show	GitHub Exploit DB Packet Storm

4089	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-23335	2026-04-27 11:25	2026-03-25	Show	GitHub Exploit DB Packet Storm

4090	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-23336	2026-04-27 11:25	2026-03-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1251	5.3	MEDIUM Network	h2o	h2o	A weakness has been identified in h2oai h2o-3 up to 7402. This vulnerability affects the function exec of the file h2o-core/src/main/java/water/rapids/ast/prims/misc/AstSetProperty.java of the compon…	CWE-266 CWE-284 NVD-CWE-noinfo Incorrect Privilege Assignment Improper Access Control	CVE-2026-8752	2026-05-20 02:44	2026-05-17	Show	GitHub Exploit DB Packet Storm

1252	5.4	MEDIUM Network	nozominetworks	cmc guardian	A Stored HTML Injection vulnerability was discovered in the Smart Polling functionality due to improper validation of an input parameter. An authenticated user with limited privileges can push malici…	CWE-79 Cross-site Scripting	CVE-2025-40904	2026-05-20 02:41	2026-05-19	Show	GitHub Exploit DB Packet Storm

1253	4.8	MEDIUM Network	mattermost	mattermost_server	Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13 fail to escape some variables that could contain malicious content during error page composition which allows an attacker with access to edit…	CWE-79 Cross-site Scripting	CVE-2026-3495	2026-05-20 02:37	2026-05-18	Show	GitHub Exploit DB Packet Storm

1254	4.3	MEDIUM Network	mattermost	mattermost_server	Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13, 11.4.x <= 11.4.3 fail to check the create_post channel permission during post edit operations which allows an authenticated attacker with re…	CWE-862 Missing Authorization	CVE-2026-3637	2026-05-20 02:34	2026-05-18	Show	GitHub Exploit DB Packet Storm

1255	3.3	LOW Local	continue	continue	A vulnerability was identified in continuedev continue up to 1.2.22. This affects the function lsTool of the file core/tools/implementations/lsTool.ts of the component JSON-RPC Server. Such manipulat…	CWE-22 Path Traversal	CVE-2026-8770	2026-05-20 02:30	2026-05-18	Show	GitHub Exploit DB Packet Storm

1256	7.5	HIGH Network	google	chrome	Integer overflow in Skia in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory write via a crafted …	CWE-472 External Control of Assumed-Immutable Web Parameter	CVE-2026-8510	2026-05-20 02:29	2026-05-15	Show	GitHub Exploit DB Packet Storm

1257	4.3	MEDIUM Network	google	chrome	Insufficient policy enforcement in Payments in Google Chrome on Android prior to 148.0.7778.168 allowed a remote attacker to bypass discretionary access control via a crafted HTML page. (Chromium sec…	CWE-284 Improper Access Control	CVE-2026-8566	2026-05-20 02:29	2026-05-15	Show	GitHub Exploit DB Packet Storm

1258	8.3	HIGH Network	google	chrome	Insufficient policy enforcement in GPU in Google Chrome on Android prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape v…	CWE-693 Protection Mechanism Failure	CVE-2026-8571	2026-05-20 02:28	2026-05-15	Show	GitHub Exploit DB Packet Storm

1259	3.1	LOW Network	google	chrome	Insufficient policy enforcement in Network in Google Chrome on Android prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a craft…	CWE-693 Protection Mechanism Failure	CVE-2026-8572	2026-05-20 02:28	2026-05-15	Show	GitHub Exploit DB Packet Storm

1260	5.3	MEDIUM Network	google	chrome	Insufficient policy enforcement in WebXR in Google Chrome on Android prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive informa…	CWE-693 Protection Mechanism Failure	CVE-2026-8583	2026-05-20 02:27	2026-05-15	Show	GitHub Exploit DB Packet Storm