Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
771	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-43338	2026-05-18 11:27	2026-05-8	Show	GitHub Exploit DB Packet Storm

772	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-43339	2026-05-18 11:27	2026-05-8	Show	GitHub Exploit DB Packet Storm

773	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-43340	2026-05-18 11:27	2026-05-8	Show	GitHub Exploit DB Packet Storm

774	9.8	緊急 Network	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-43341	2026-05-18 11:27	2026-05-8	Show	GitHub Exploit DB Packet Storm

775	7.5	重要 Network	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-43345	2026-05-18 11:27	2026-05-8	Show	GitHub Exploit DB Packet Storm

776	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける到達可能なアサーションに関する脆弱性	CWE-617 到達可能なアサーション	CVE-2026-43346	2026-05-18 11:27	2026-05-8	Show	GitHub Exploit DB Packet Storm

777	7.5	重要 Network	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-43347	2026-05-18 11:27	2026-05-8	Show	GitHub Exploit DB Packet Storm

778	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-43348	2026-05-18 11:27	2026-05-8	Show	GitHub Exploit DB Packet Storm

779	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける初期化されていないリソースの使用に関する脆弱性	CWE-908 初期化されていないリソースの使用	CVE-2026-43349	2026-05-18 11:27	2026-05-8	Show	GitHub Exploit DB Packet Storm

780	7.6	重要 Network	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-43350	2026-05-18 11:27	2026-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
551	4.8	MEDIUM Network	nozominetworks	cmc guardian	A Stored HTML Injection vulnerability was discovered in the Schedule Restore Archive functionality due to improper validation of an input parameter. An authenticated user with administrative privileg… New	CWE-79 Cross-site Scripting	CVE-2025-40903	2026-05-20 02:44	2026-05-19	Show	GitHub Exploit DB Packet Storm

552	5.3	MEDIUM Network	h2o	h2o	A weakness has been identified in h2oai h2o-3 up to 7402. This vulnerability affects the function exec of the file h2o-core/src/main/java/water/rapids/ast/prims/misc/AstSetProperty.java of the compon… Update	CWE-266 CWE-284 NVD-CWE-noinfo Incorrect Privilege Assignment Improper Access Control	CVE-2026-8752	2026-05-20 02:44	2026-05-17	Show	GitHub Exploit DB Packet Storm

553	5.4	MEDIUM Network	nozominetworks	cmc guardian	A Stored HTML Injection vulnerability was discovered in the Smart Polling functionality due to improper validation of an input parameter. An authenticated user with limited privileges can push malici… New	CWE-79 Cross-site Scripting	CVE-2025-40904	2026-05-20 02:41	2026-05-19	Show	GitHub Exploit DB Packet Storm

554	4.8	MEDIUM Network	mattermost	mattermost_server	Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13 fail to escape some variables that could contain malicious content during error page composition which allows an attacker with access to edit… New	CWE-79 Cross-site Scripting	CVE-2026-3495	2026-05-20 02:37	2026-05-18	Show	GitHub Exploit DB Packet Storm

555	4.3	MEDIUM Network	mattermost	mattermost_server	Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13, 11.4.x <= 11.4.3 fail to check the create_post channel permission during post edit operations which allows an authenticated attacker with re… New	CWE-862 Missing Authorization	CVE-2026-3637	2026-05-20 02:34	2026-05-18	Show	GitHub Exploit DB Packet Storm

556	3.3	LOW Local	continue	continue	A vulnerability was identified in continuedev continue up to 1.2.22. This affects the function lsTool of the file core/tools/implementations/lsTool.ts of the component JSON-RPC Server. Such manipulat… New	CWE-22 Path Traversal	CVE-2026-8770	2026-05-20 02:30	2026-05-18	Show	GitHub Exploit DB Packet Storm

557	7.5	HIGH Network	google	chrome	Integer overflow in Skia in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory write via a crafted … Update	CWE-472 External Control of Assumed-Immutable Web Parameter	CVE-2026-8510	2026-05-20 02:29	2026-05-15	Show	GitHub Exploit DB Packet Storm

558	4.3	MEDIUM Network	google	chrome	Insufficient policy enforcement in Payments in Google Chrome on Android prior to 148.0.7778.168 allowed a remote attacker to bypass discretionary access control via a crafted HTML page. (Chromium sec… Update	CWE-284 Improper Access Control	CVE-2026-8566	2026-05-20 02:29	2026-05-15	Show	GitHub Exploit DB Packet Storm

559	8.3	HIGH Network	google	chrome	Insufficient policy enforcement in GPU in Google Chrome on Android prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape v… Update	CWE-693 Protection Mechanism Failure	CVE-2026-8571	2026-05-20 02:28	2026-05-15	Show	GitHub Exploit DB Packet Storm

560	3.1	LOW Network	google	chrome	Insufficient policy enforcement in Network in Google Chrome on Android prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a craft… Update	CWE-693 Protection Mechanism Failure	CVE-2026-8572	2026-05-20 02:28	2026-05-15	Show	GitHub Exploit DB Packet Storm