NVD脆弱性情報トップ

検索メニュー表示

ベンダー名
プロダクト・サービス名
タイトル
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
公表日降順
更新日降順
表示数

NVD（National Vulnerability Database）で管理されている脆弱性の一覧を検索することが出来ます。
JVN（Japan Vulnerability Note）より先に脆弱性情報が更新される事が多いため、JVNに未記載の脆弱性が更新されている場合があります。

JVN（Japan Vulnerability Note）に関連した脆弱性がある場合は詳細画面で情報を表示します。

CWEで検索する場合は、CWE概要を参照して、CWE番号を確認してください。

CRITICAL
HIGH
MEDIUM
LOW

更新日:2026年4月25日4:08

No	CVSS	レベル攻撃区分	ベンダー名	プロダクト名	タイトル	CWE	CVE	更新日	公表日	影響表示	Exploit PoC 検索
101	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_hid: don't call cdev_init while cdev in use When calling unbind, then bind again, cdev_init reinitialized the cdev… New	-	CVE-2026-31606	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

102	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: smb: server: avoid double-free in smb_direct_free_sendmsg after smb_direct_flush_send_list() smb_direct_flush_send_list() already… New	-	CVE-2026-31608	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

103	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: smb: client: avoid double-free in smbd_free_send_io() after smbd_send_batch_flush() smbd_send_batch_flush() already calls smbd_fr… New	-	CVE-2026-31609	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

104	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate EaNameLength in smb2_get_ea() smb2_get_ea() reads ea_req->EaNameLength from the client request and passes it dire… New	-	CVE-2026-31612	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

105	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: media: as102: fix to not free memory after the device is registered in as102_usb_probe() In as102_usb driver, the following race … New	-	CVE-2026-31578	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

106	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: wireguard: device: use exit_rtnl callback instead of manual rtnl_lock in pre_exit wg_netns_pre_exit() manually acquires rtnl_lock… New	-	CVE-2026-31579	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

107	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: bcache: fix cached_dev.sb_bio use-after-free and crash In our production environment, we have received multiple crash reports reg… New	-	CVE-2026-31580	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

108	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ALSA: 6fire: fix use-after-free on disconnect In usb6fire_chip_abort(), the chip struct is allocated as the card's private data (… New	-	CVE-2026-31581	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

109	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: usb: gadget: renesas_usb3: validate endpoint index in standard request handlers The GET_STATUS and SET/CLEAR_FEATURE handlers ext… New	-	CVE-2026-31615	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

110	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: fbdev: tdfxfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO Much like commit 19f953e74356 ("fbdev: fb_pm2fb: Avoid potential divid… New	-	CVE-2026-31618	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

111	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ALSA: fireworks: bound device-supplied status before string array lookup The status field in an EFW response is a 32-bit value su… New	-	CVE-2026-31619	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

112	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: us144mkii: fix NULL deref on missing interface 0 A malicious USB device with the TASCAM US-144MKII device id can hav… New	-	CVE-2026-31620	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

113	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: media: em28xx: fix use-after-free in em28xx_v4l2_open() em28xx_v4l2_open() reads dev->v4l2 without holding dev->lock, creating a … New	-	CVE-2026-31583	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

114	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: fix use-after-free in encoder release path The fops_vcodec_release() function frees the context structur… New	-	CVE-2026-31584	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

115	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: media: vidtv: fix nfeeds state corruption on start_streaming failure syzbot reported a memory leak in vidtv_psi_service_desc_init… New	-	CVE-2026-31585	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

116	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: bnge: return after auxiliary_device_uninit() in error path When auxiliary_device_add() fails, the error block calls auxiliary_dev… New	-	CVE-2026-31621	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

117	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: net: usb: cdc-phonet: fix skb frags[] overflow in rx_complete() A malicious USB device claiming to be a CDC Phonet modem can over… New	-	CVE-2026-31623	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

118	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: HID: alps: fix NULL pointer dereference in alps_raw_event() Commit ecfa6f34492c ("HID: Add HID_CLAIMED_INPUT guards in raw_event … New	-	CVE-2026-31625	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

119	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: mm: blk-cgroup: fix use-after-free in cgwb_release_workfn() cgwb_release_workfn() calls css_put(wb->blkcg_css) and then later acc… New	-	CVE-2026-31586	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

120	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: q6apm: move component registration to unmanaged version q6apm component registers dais dynamically from ASoC toplolog… New	-	CVE-2026-31587	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

121	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: initialize le_tmp64 in rtw_BIP_verify() Initialize le_tmp64 to zero in rtw_BIP_verify() to prevent using unin… New	-	CVE-2026-31626	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

122	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: i2c: s3c24xx: check the size of the SMBUS message before using it The first byte of an i2c SMBUS message is the size, and it shou… New	-	CVE-2026-31627	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

123	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: x86/CPU: Fix FPDSS on Zen1 Zen1's hardware divider can leave, under certain circumstances, partial results from previous operatio… New	-	CVE-2026-31628	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

124	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Use scratch field in MMIO fragment to hold small write values When exiting to userspace to service an emulated MMIO wri… New	-	CVE-2026-31588	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

125	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: KVM: SEV: Drop WARN on large size for KVM_MEMORY_ENCRYPT_REG_REGION Drop the WARN in sev_pin_memory() on npages overflowing an in… New	-	CVE-2026-31590	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

126	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: nfc: llcp: add missing return after LLCP_CLOSED checks In nfc_llcp_recv_hdlc() and nfc_llcp_recv_disc(), when the socket state is… New	-	CVE-2026-31629	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

127	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix buffer overread in rxgk_do_verify_authenticator() Fix rxgk_do_verify_authenticator() to check the buffer size before c… New	-	CVE-2026-31631	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

128	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix leak of rxgk context in rxgk_verify_response() Fix rxgk_verify_response() to clean up the rxgk context it creates. New	-	CVE-2026-31632	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

129	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix integer overflow in rxgk_verify_response() In rxgk_verify_response(), there's a potential integer overflow due to roun… New	-	CVE-2026-31633	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

130	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: rxrpc: fix reference count leak in rxrpc_server_keyring() This patch fixes a reference count leak in rxrpc_server_keyring() by ch… New	-	CVE-2026-31634	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

131	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: rxrpc: reject undecryptable rxkad response tickets rxkad_decrypt_ticket() decrypts the RXKAD response ticket and then parses the … New	-	CVE-2026-31637	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

132	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: KVM: SEV: Protect all of sev_mem_enc_register_region() with kvm->lock Take and hold kvm->lock for before checking sev_guest() i… New	-	CVE-2026-31592	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

133	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: KVM: SEV: Reject attempts to sync VMSA of an already-launched/encrypted vCPU Reject synchronizing vCPU state to its associated VM… New	-	CVE-2026-31593	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

134	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: rxrpc: Only put the call ref if one was acquired rxrpc_input_packet_on_conn() can process a to-client packet after the current cl… New	-	CVE-2026-31638	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

135	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix key reference count leak from call->key When creating a client call in rxrpc_alloc_client_call(), the code obtains a r… New	-	CVE-2026-31639	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

136	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix use of wrong skb when comparing queued RESP challenge serial In rxrpc_post_response(), the code should be comparing th… New	-	CVE-2026-31640	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

137	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: pci-epf-vntb: Remove duplicate resource teardown epf_ntb_epc_destroy() duplicates the teardown that the caller is … New	-	CVE-2026-31594	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

138	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ocfs2: handle invalid dinode in ocfs2_group_extend [BUG] kernel BUG at fs/ocfs2/resize.c:308! Oops: invalid opcode: 0000 [#1] SMP… New	-	CVE-2026-31596	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

139	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix use-after-free in ocfs2_fault() when VM_FAULT_RETRY filemap_fault() may drop the mmap_lock before returning VM_FAULT_R… New	-	CVE-2026-31597	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

140	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix possible deadlock between unlink and dio_end_io_write ocfs2_unlink takes orphan dir inode_lock first and then ip_alloc… New	-	CVE-2026-31598	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

141	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix key parsing memleak In rxrpc_preparse_xdr_yfs_rxgk(), the memory attached to token->rxgk can be leaked in a few error … New	-	CVE-2026-31643	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

142	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: net: lan966x: fix page pool leak in error paths lan966x_fdma_rx_alloc() creates a page pool but does not destroy it if the subseq… New	-	CVE-2026-31645	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

143	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: net: lan966x: fix page_pool error handling in lan966x_fdma_rx_alloc_page_pool() page_pool_create() can return an ERR_PTR on failu… New	-	CVE-2026-31646	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

144	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: mmc: vub300: fix use-after-free on disconnect The vub300 driver maintains an explicit reference count for the controller and its … New	-	CVE-2026-31650	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

145	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: mmc: vub300: fix NULL-deref on disconnect Make sure to deregister the controller before dropping the reference to the driver data… New	-	CVE-2026-31651	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

146	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: media: vidtv: fix NULL pointer dereference in vidtv_channel_pmt_match_sections syzbot reported a general protection fault in vidt… New	-	CVE-2026-31599	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

147	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: arm64: mm: Handle invalid large leaf mappings correctly It has been possible for a long time to mark ptes in the linear map as in… New	-	CVE-2026-31600	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

148	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: dealloc repeat_call_control if damon_call() fails damon_call() for repeat_call_control of DAMON_SYSFS could fail … New	-	CVE-2026-31653	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

149	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: pmdomain: imx8mp-blk-ctrl: Keep the NOC_HDCP clock enabled Keep the NOC_HDCP clock always enabled to fix the potential hang cause… New	-	CVE-2026-31655	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm

150	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: net: altera-tse: fix skb leak on DMA mapping error in tse_start_xmit() When dma_map_single() fails in tse_start_xmit(), the funct… New	-	CVE-2026-31658	2026-04-25 02:51	2026-04-25	表示	GitHub Exploit DB Packet Storm