Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4891	5.4	警告 Network	Papra	Papra	Papraにおける複数の脆弱性	CWE-79 CWE-80	CVE-2026-35460	2026-04-27 11:17	2026-04-7	Show	GitHub Exploit DB Packet Storm

4892	4.3	警告 Network	Papra	Papra	Papraにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-35461	2026-04-27 11:17	2026-04-7	Show	GitHub Exploit DB Packet Storm

4893	4.3	警告 Network	Papra	Papra	Papraにおけるセッション期限に関する脆弱性	CWE-613 不適切なセッション期限	CVE-2026-35462	2026-04-27 11:17	2026-04-7	Show	GitHub Exploit DB Packet Storm

4894	8.1	重要 Network	RedwoodSDK	RedwoodSDK	RedwoodSDKにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-39371	2026-04-27 11:17	2026-04-7	Show	GitHub Exploit DB Packet Storm

4895	8.1	重要 Network	Sgbett	BSV Ruby SDK (bsv-sdk) bsv-wallet	Sgbettのbsv-wallet等の複数製品におけるデジタル署名の検証に関する脆弱性	CWE-347 デジタル署名の不適切な検証	CVE-2026-40070	2026-04-27 11:17	2026-04-9	Show	GitHub Exploit DB Packet Storm

4896	8.1	重要 Network	Nimiq	Nimiq Proof of Stake (core-rs-albatross)	NimiqのNimiq Proof of Stake (core-rs-albatross)における入力で指定された数量の不適切な検証に関する脆弱性	CWE-1284 入力で指定された数量の不適切な検証	CVE-2026-40093	2026-04-27 11:17	2026-04-9	Show	GitHub Exploit DB Packet Storm

4897	5.5	警告 Local	Giskard	Giskard	Giskardにおける非効率的な正規表現の複雑さに関する脆弱性	CWE-1333 非効率的な正規表現の複雑さ	CVE-2026-40319	2026-04-27 11:17	2026-04-17	Show	GitHub Exploit DB Packet Storm

4898	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける到達可能なアサーションに関する脆弱性	CWE-617 到達可能なアサーション	CVE-2026-23356	2026-04-27 10:55	2026-03-25	Show	GitHub Exploit DB Packet Storm

4899	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおけるリソースのロックに関する脆弱性	CWE-667 不適切なロック	CVE-2026-23357	2026-04-27 10:55	2026-03-25	Show	GitHub Exploit DB Packet Storm

4900	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける初期化されていないリソースの使用に関する脆弱性	CWE-908 初期化されていないリソースの使用	CVE-2026-23358	2026-04-27 10:55	2026-03-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
931	7.8	HIGH Local	-	-	Privilege chaining issue exists in ServerView Agents for Windows V11.60.04 and earlier. If this vulnerability is exploited, a local authenticated attacker who can log in to the server where the affec… New	CWE-268 Privilege Chaining	CVE-2026-32325	2026-06-2 03:09	2026-06-1	Show	GitHub Exploit DB Packet Storm

932	7.5	HIGH Network	-	-	FlexRIC v2.0.0 crashes when an SCTP association is closed before an E2_SETUP_REQUEST is sent. The near-RT RIC assumes a mapping between SCTP association and E2 node always exists in the cleanup path … New	CWE-617 Reachable Assertion	CVE-2026-37220	2026-06-2 03:09	2026-06-2	Show	GitHub Exploit DB Packet Storm

933	7.5	HIGH Network	-	-	FlexRIC v2.0.0 crashes when receiving a RIC_SUBSCRIPTION_RESPONSE with an unknown ric_id that has no corresponding pending event. The near-RT RIC uses assert() to enforce the existence of a pending e… New	CWE-617 Reachable Assertion	CVE-2026-37221	2026-06-2 03:09	2026-06-2	Show	GitHub Exploit DB Packet Storm

934	-		-	-	FlexRIC v2.0.0 uses hardcoded assertions to validate Information Element (IE) counts in decoded E2AP messages. A remote unauthenticated attacker can send a valid E2AP PDU containing an unexpected num… New	-	CVE-2026-37222	2026-06-2 03:09	2026-06-2	Show	GitHub Exploit DB Packet Storm

935	-		-	-	FlexRIC v2.0.0 contains a reachable assertion in the iApp message dispatcher. The dispatcher validates incoming E2AP messages against a 9-entry whitelist using assert(). A remote unauthenticated atta… New	-	CVE-2026-37223	2026-06-2 03:09	2026-06-2	Show	GitHub Exploit DB Packet Storm

936	-		-	-	FlexRIC v2.0.0 crashes when receiving a duplicate E2_SETUP_REQUEST from the same or spoofed E2 Node. The iApp registry enforces node ID uniqueness via assert() rather than graceful rejection. A remot… New	-	CVE-2026-37224	2026-06-2 03:09	2026-06-2	Show	GitHub Exploit DB Packet Storm

937	-		-	-	FlexRIC v2.0.0 crashes when the iApp receives an E42_RIC_SUBSCRIPTION_REQUEST with an empty ricEventTriggerDefinition field. The E42 layer decoder accepts this as valid, but the E2AP encoder asserts … New	-	CVE-2026-37225	2026-06-2 03:09	2026-06-2	Show	GitHub Exploit DB Packet Storm

938	-		-	-	FlexRIC v2.0.0 contains reachable assert(0) calls in stub message handlers for whitelisted but unimplemented E2AP message types in the near-RT RIC. A remote unauthenticated attacker can send a decoda… New	-	CVE-2026-37227	2026-06-2 03:09	2026-06-2	Show	GitHub Exploit DB Packet Storm

939	-		-	-	An issue in ESA AnomalyMatch before 1.3.1 allow attackers to execute arbitrary code via crafted model checkpoint files. The affected components load model files from session directories using torch.l… New	-	CVE-2026-38950	2026-06-2 03:09	2026-06-2	Show	GitHub Exploit DB Packet Storm

940	5.5	MEDIUM Network	portainer	portainer	Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before … Update	CWE-22 Path Traversal	CVE-2026-44885	2026-06-2 03:08	2026-05-29	Show	GitHub Exploit DB Packet Storm