Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1261 7.1 重要
Network 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 10 1607
Microsoft Windows Server 2016
Microsoft Windows 11 23h2
Microsoft … 		リモート デスクトップのスプーフィングの脆弱性 CWE-357
危険な操作に対する不十分な警告 		CVE-2026-26151 2026-04-27 10:52 2026-04-14 Show GitHub Exploit DB Packet Storm
1262 7 重要
Local 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 10 1607
Microsoft Windows Server 2016
Microsoft Windows 11 23h2
Microsoft … 		Microsoft Cryptographic Services の特権の昇格の脆弱性 CWE-922
重要な情報のセキュアでない格納 		CVE-2026-26152 2026-04-27 10:52 2026-04-14 Show GitHub Exploit DB Packet Storm
1263 7.8 重要
Local 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 11 23h2
Microsoft Windows 11 26h1
Microsoft Windows 10 1809
Microsoft Wind… 		Windows 暗号化ファイル システム (EFS) の特権昇格の脆弱性 CWE-125
境界外読み取り 		CVE-2026-26153 2026-04-27 10:52 2026-04-14 Show GitHub Exploit DB Packet Storm
1264 7.5 重要
Network 		マイクロソフト Microsoft Windows Server 2016
Microsoft Windows Server 2025
Microsoft Windows Server 2019
Microsoft Windows Server 2022
Microso… 		Windows Server Update Service (WSUS) の改ざんの脆弱性 CWE-20
不適切な入力確認 		CVE-2026-26154 2026-04-27 10:52 2026-04-14 Show GitHub Exploit DB Packet Storm
1265 6.5 警告
Network 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 10 1607
Microsoft Windows Server 2016
Microsoft Windows 11 23h2
Microsoft … 		Microsoft Local Security Authority Subsystem Service の情報漏えいの脆弱性 CWE-126
バッファオーバーリード 		CVE-2026-26155 2026-04-27 10:52 2026-04-14 Show GitHub Exploit DB Packet Storm
1266 7.8 重要
Local 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 10 1607
Microsoft Windows Server 2016
Microsoft Windows 11 23h2
Microsoft … 		Windows Hyper-V のリモートでコードが実行される脆弱性 CWE-122
CWE-125
CWE-20
CVE-2026-26156 2026-04-27 10:51 2026-04-14 Show GitHub Exploit DB Packet Storm
1267 7.8 重要
Local 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 10 1607
Microsoft Windows Server 2016
Microsoft Windows 11 23h2
Microsoft … 		リモート デスクトップ ライセンス サービスの特権昇格の脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-26159 2026-04-27 10:51 2026-04-14 Show GitHub Exploit DB Packet Storm
1268 7.8 重要
Local 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 10 1607
Microsoft Windows Server 2016
Microsoft Windows 11 23h2
Microsoft … 		リモート デスクトップ ライセンス サービスの特権昇格の脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-26160 2026-04-27 10:51 2026-04-14 Show GitHub Exploit DB Packet Storm
1269 7.8 重要
Local 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 11 23h2
Microsoft Windows 11 26h1
Microsoft Windows 10 1809
Microsoft Wind… 		Windows Sensor Data Service の特権昇格の脆弱性 CWE-20
CWE-822
CVE-2026-26161 2026-04-27 10:51 2026-04-14 Show GitHub Exploit DB Packet Storm
1270 7.8 重要
Local 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 10 1607
Microsoft Windows Server 2016
Microsoft Windows 11 23h2
Microsoft … 		Windows OLE の特権の昇格の脆弱性 CWE-843
型の取り違え 		CVE-2026-26162 2026-04-27 10:51 2026-04-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314021 7.8 HIGH
Local 		openpkg
apache
slackware
hp
suse
trustix 		openpkg
http_server
slackware_linux
hp-ux
suse_linux
secure_linux 		Buffer overflow in the get_tag function in mod_include for Apache 1.3.x to 1.3.32 allows local users who can create SSI documents to execute arbitrary code as the apache user via SSI (XSSI) documents… CWE-131
Incorrect Calculation of Buffer Size 		CVE-2004-0940 2024-02-2 12:05 2005-02-9 Show GitHub Exploit DB Packet Storm
314022 9.8 CRITICAL
Network 		heimdal_project
debian 		heimdal
debian_linux 		k5admind (kadmind) for Heimdal allows remote attackers to execute arbitrary code via a Kerberos 4 compatibility administration request whose framing length is less than 2, which leads to a heap-based… CWE-131
Incorrect Calculation of Buffer Size 		CVE-2004-0434 2024-02-2 12:05 2004-07-7 Show GitHub Exploit DB Packet Storm
314023 9.8 CRITICAL
Network 		cyrusimap
apple 		cyrus_sasl
mac_os_x_server
mac_os_x 		Multiple buffer overflows in Cyrus SASL library 2.1.9 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) long inputs during user name canonica… CWE-131
Incorrect Calculation of Buffer Size 		CVE-2002-1347 2024-02-2 12:05 2002-12-18 Show GitHub Exploit DB Packet Storm
314024 7.8 HIGH
Local 		sudo_project
debian 		sudo
debian_linux 		Sudo before 1.6.6 contains an off-by-one error that can result in a heap-based buffer overflow that may allow local users to gain root privileges via special characters in the -p (prompt) argument, w… CWE-131
Incorrect Calculation of Buffer Size 		CVE-2002-0184 2024-02-2 12:05 2002-05-16 Show GitHub Exploit DB Packet Storm
314025 9.8 CRITICAL
Network 		linux-nfs nfs-utils Off-by-one error in the xlog function of mountd in the Linux NFS utils package (nfs-utils) before 1.0.4 allows remote attackers to cause a denial of service and possibly execute arbitrary code via ce… CWE-193
 Off-by-one Error 		CVE-2003-0252 2024-02-2 11:56 2003-08-18 Show GitHub Exploit DB Packet Storm
314026 5.5 MEDIUM
Local 		linux linux_kernel Off-by-one vulnerability in CPIA driver of Linux kernel before 2.2.19 allows users to modify kernel memory. CWE-193
 Off-by-one Error 		CVE-2001-1391 2024-02-2 11:56 2001-04-17 Show GitHub Exploit DB Packet Storm
314027 9.8 CRITICAL
Network 		conectiva
immunix
openpkg
mandrakesoft
openbsd
trustix
suse
redhat
engardelinux 		linux
immunix
openpkg
mandrake_single_network_firewall
openssh
mandrake_linux
secure_linux
suse_linux
mandrake_linux_corporate_server 		Off-by-one error in the channel code of OpenSSH 2.0 through 3.0.2 allows local users or remote malicious servers to gain privileges. CWE-193
 Off-by-one Error 		CVE-2002-0083 2024-02-2 11:52 2002-03-15 Show GitHub Exploit DB Packet Storm
314028 7.8 HIGH
Local 		modssl mod_ssl Off-by-one buffer overflow in the ssl_compat_directive function, as called by the rewrite_command hook for mod_ssl Apache module 2.8.9 and earlier, allows local users to execute arbitrary code as the… CWE-193
 Off-by-one Error 		CVE-2002-0653 2024-02-2 11:50 2002-07-11 Show GitHub Exploit DB Packet Storm
314029 7.8 HIGH
Local 		distrotech cvs Off-by-one overflow in the CVS PreservePermissions of rcs.c for CVSD before 1.11.2 allows local users to execute arbitrary code. CWE-193
 Off-by-one Error 		CVE-2002-0844 2024-02-2 11:49 2002-08-12 Show GitHub Exploit DB Packet Storm
314030 7.5 HIGH
Network 		ncftp ncftpd_server Off-by-one error in NcFTPd FTP server before 2.4.1 allows a remote attacker to cause a denial of service (crash) via a long PORT command. CWE-193
 Off-by-one Error 		CVE-1999-1568 2024-02-2 11:49 1999-01-1 Show GitHub Exploit DB Packet Storm