Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4851	5.4	警告 Network	WWBN	AVideo	WWBNのAVideoにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-39367	2026-04-24 11:42	2026-04-7	Show	GitHub Exploit DB Packet Storm

4852	6.5	警告 Network	WWBN	AVideo	WWBNのAVideoにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-39368	2026-04-24 11:42	2026-04-7	Show	GitHub Exploit DB Packet Storm

4853	7.6	重要 Network	WWBN	AVideo	WWBNのAVideoにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-39369	2026-04-24 11:42	2026-04-7	Show	GitHub Exploit DB Packet Storm

4854	7.1	重要 Network	WWBN	AVideo	WWBNのAVideoにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-39370	2026-04-24 11:42	2026-04-7	Show	GitHub Exploit DB Packet Storm

4855	7.8	重要 Local	Vim	Vim	Vimにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-39881	2026-04-24 11:42	2026-04-8	Show	GitHub Exploit DB Packet Storm

4856	5.3	警告 Network	OpenEXR	OpenEXR	OpenEXRにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-39886	2026-04-24 11:42	2026-04-21	Show	GitHub Exploit DB Packet Storm

4857	8.8	重要 Network	Mervin Praison (MervinPraison)	PraisonAI	Mervin Praison (MervinPraison)のPraisonAIにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-39891	2026-04-24 11:42	2026-04-8	Show	GitHub Exploit DB Packet Storm

4858	4.3	警告 Network	lycheeorg	lychee	lycheeorgのLycheeにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-39957	2026-04-24 11:42	2026-04-9	Show	GitHub Exploit DB Packet Storm

4859	9.6	緊急 Network	MISP	MISP	MISPにおけるLDAP インジェクションの脆弱性	CWE-90 LDAP インジェクション	CVE-2026-39962	2026-04-24 11:42	2026-04-9	Show	GitHub Exploit DB Packet Storm

4860	6.9	警告 Network	s9y	Serendipity	s9yのSerendipityにおける検証および完全性チェックを行っていない Cookie への依存に関する脆弱性	CWE-565 検証および完全性チェックを行っていない Cookie への依存	CVE-2026-39963	2026-04-24 11:42	2026-04-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
701	9.8	CRITICAL Network	-	-	In the Linux kernel, the following vulnerability has been resolved: rxgk: Fix potential integer overflow in length check Fix potential integer overflow in rxgk_extract_token() when checking the len… Update	-	CVE-2026-46039	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

702	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: vfio/cdx: Serialize VFIO_DEVICE_SET_IRQS with a per-device mutex vfio_cdx_set_msi_trigger() reads vdev->config_msi and operates o… Update	-	CVE-2026-46036	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

703	7.0	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: mm/slab: return NULL early from kmalloc_nolock() in NMI on UP On UP kernels (!CONFIG_SMP), spin_trylock() is a no-op that uncondi… Update	-	CVE-2026-46029	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

704	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: media: mtk-jpeg: fix use-after-free in release path due to uncancelled work The mtk_jpeg_release() function frees the context str… Update	-	CVE-2026-46011	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

705	8.1	HIGH Network	-	-	In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix error handling in rxgk_extract_token() Fix a missing bit of error handling in rxgk_extract_token(): in the event that … Update	-	CVE-2026-46010	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

706	7.1	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: erofs: fix unsigned underflow in z_erofs_lz4_handle_overlap() Some crafted images can have illegal (!partial_decoding && m_llen <… Update	-	CVE-2026-45999	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

707	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: udf: fix partition descriptor append bookkeeping Mounting a crafted UDF image with repeated partition descriptors can trigger a h… Update	-	CVE-2026-45991	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

708	9.8	CRITICAL Network	-	-	In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix re-decryption of RESPONSE packets If a RESPONSE packet gets a temporary failure during processing, it may end up in a … Update	-	CVE-2026-45988	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

709	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix use-after-free in iomap inline data write path The inline data buffer head (dibh) is being released prematurely in gfs2… Update	-	CVE-2026-45984	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm

710	7.8	HIGH Local	-	-	In the Linux kernel, the following vulnerability has been resolved: accel/amdxdna: Stop job scheduling across aie2_release_resource() Running jobs on a hardware context while it is in the process o… Update	-	CVE-2026-45980	2026-05-30 20:17	2026-05-27	Show	GitHub Exploit DB Packet Storm