Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2331	7.8	重要 Local	マイクロソフト	Azure Monitor Agent	Azure Monitor エージェントの特権昇格の脆弱性	CWE-20 不適切な入力確認	CVE-2026-32168	2026-05-8 12:23	2026-04-14	Show	GitHub Exploit DB Packet Storm

2332	7.8	重要 Local	マイクロソフト	Azure Monitor Agent	Azure Monitor エージェントの特権昇格の脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-32192	2026-05-8 12:23	2026-04-14	Show	GitHub Exploit DB Packet Storm

2333	5.9	警告 Network	マイクロソフト	Microsoft .NET Framework	.NET Framework のサービス拒否の脆弱性	CWE-362 競合状態	CVE-2026-32226	2026-05-8 12:23	2026-04-14	Show	GitHub Exploit DB Packet Storm

2334	8.8	重要 Network	Kubernetes	ingress-nginx	Kubernetesのingress-nginxにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-3288	2026-05-8 12:23	2026-03-9	Show	GitHub Exploit DB Packet Storm

2335	7.5	重要 Network	マイクロソフト	Microsoft .NET Framework .NET	.NET、.NET Framework、Visual Studio のサービス拒否の脆弱性	CWE-20 CWE-400 CWE-835	CVE-2026-33116	2026-05-8 12:23	2026-04-14	Show	GitHub Exploit DB Packet Storm

2336	8.8	重要 Network	マイクロソフト	SQL Server 2016 SQL Server 2017 SQL Server 2022 SQL Server 2019 SQL Server 2025	Microsoft SQL Server のリモートコードが実行される脆弱性	CWE-822 信頼性のないポインタデリファレンス	CVE-2026-33120	2026-05-8 12:23	2026-04-14	Show	GitHub Exploit DB Packet Storm

2337	5.9	警告 Network	Apache Software Foundation	Apache Log4j	Apache Software FoundationのApache Log4jにおける複数の脆弱性	CWE-295 CWE-297	CVE-2026-34477	2026-05-8 12:23	2026-04-10	Show	GitHub Exploit DB Packet Storm

2338	7.5	重要 Network	Apache Software Foundation	Apache Log4j	Apache Software FoundationのApache Log4jにおけるエンコードおよびエスケープに関する脆弱性	CWE-116 不適切なエンコード、または出力のエスケープ	CVE-2026-34479	2026-05-8 12:23	2026-04-10	Show	GitHub Exploit DB Packet Storm

2339	7.4	重要 Network	GNU Project レッドハット	Red Hat Hardened Images Red Hat Enterprise Linux Red Hat OpenShift Container Platform GnuTLS	GNU Project等の複数ベンダの製品における大文字と小文字の区別の不適切な処理に関する脆弱性	CWE-178 大文字と小文字の区別の不適切な処理	CVE-2026-3833	2026-05-8 12:23	2026-04-30	Show	GitHub Exploit DB Packet Storm

2340	9.1	緊急 Network	Apache Software Foundation	Apache Wicket	Apache Software FoundationのApache Wicketにおけるセッションの固定化の脆弱性	CWE-384 CWE-384	CVE-2026-40010	2026-05-8 12:23	2026-05-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346731	-	macallan	mail_solution	Macallan Mail Solution 2.8.4.6 (Build 260), and possibly earlier versions, allows remote attackers to bypass authentication in the web interface via an HTTP GET request with two slashes ("//") after …	NVD-CWE-Other	CVE-2004-2071	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

346732	-	mambo	mambo_open_source	Cross-site scripting (XSS) vulnerability in index.php for Mambo Open Source 4.6, and possibly earlier versions, allows remote attackers to execute script on other clients via the Itemid parameter.	NVD-CWE-Other	CVE-2004-2072	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

346733	-	-	-	Linux-VServer 1.24 allows local users with root privileges on a virtual server to gain access to the filesystem outside the virtual server via a modified chroot-again exploit using the chmod command.	NVD-CWE-Other	CVE-2004-2073	2017-07-11 10:31	2004-02-6	Show	GitHub Exploit DB Packet Storm

346734	-	bolintech	dream_ftp_server	Format string vulnerability in Dream FTP 1.02 allows local users to cause a denial of service (crash) via format string specifiers in the (1) PASS or (2) RETR commands.	NVD-CWE-Other	CVE-2004-2074	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

346735	-	-	-	Sophos Anti-Virus 3.78 allows remote attackers to cause a denial of service (infinite loop) via a MIME header that is not properly terminated.	NVD-CWE-Other	CVE-2004-2075	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

346736	-	jelsoft	vbulletin	Cross-site scripting (XSS) vulnerability in search.php for Jelsoft vBulletin 3.0.0 RC4 allows remote attackers to inject arbitrary web script or HTML via the query parameter.	NVD-CWE-Other	CVE-2004-2076	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

346737	-	nadeo	game_engine trackmania virtual_skipper	Nadeo Game Engine for Nadeo TrackMania and Nadeo Virtual Skipper 3 allows remote attackers to cause a denial of service (server crash) via malformed data to TCP port 2350, possibly due to long values…	NVD-CWE-Other	CVE-2004-2077	2017-07-11 10:31	2004-02-8	Show	GitHub Exploit DB Packet Storm

346738	-	red-m	red-alert	Red-M Red-Alert 2.7.5 with software 3.1 build 24 allows remote attackers to cause a denial of service (reboot and loss of logged events) via a long request to TCP port 80, possibly triggering a buffe…	NVD-CWE-Other	CVE-2004-2078	2017-07-11 10:31	2004-02-9	Show	GitHub Exploit DB Packet Storm

346739	-	red-m	red-alert	Red-M Red-Alert 2.7.5 with software 3.1 build 24 binds authentication to IP addresses, which allows remote attackers to bypass authentication by connecting from the same IP address as an active authe…	NVD-CWE-Other	CVE-2004-2079	2017-07-11 10:31	2004-02-9	Show	GitHub Exploit DB Packet Storm

346740	-	red-m	red-alert	Red-M Red-Alert 2.7.5 with software 3.1 build 24 converts multiple spaces in a Service Set Identifier (SSID) to a single space, which prevents Red-Alert from correctly identifying the SSID.	NVD-CWE-Other	CVE-2004-2080	2017-07-11 10:31	2004-02-9	Show	GitHub Exploit DB Packet Storm