Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2421	5.5	警告 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows GDI の情報漏えいの脆弱性	CWE-125 境界外読み取り	CVE-2026-27930	2026-04-24 11:31	2026-04-14	Show	GitHub Exploit DB Packet Storm

2422	5.5	警告 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows 11 26h1 Microsoft Windows 10 22h2 Microsoft Windows 10 21h2 Microsoft Windows&…	Windows GDI の情報漏えいの脆弱性	CWE-125 境界外読み取り	CVE-2026-27931	2026-04-24 11:31	2026-04-14	Show	GitHub Exploit DB Packet Storm

2423	8.1	重要 Network	Mattermost, Inc.	Mattermost Server	Mattermost, Inc.のMattermost Serverにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-28741	2026-04-24 11:31	2026-04-15	Show	GitHub Exploit DB Packet Storm

2424	8.8	重要 Network	infiniflow	ragflow	infiniflowのragflowにおける複数の脆弱性	CWE-1336 CWE-20 CWE-78 CWE-94	CVE-2026-28797	2026-04-24 11:31	2026-04-3	Show	GitHub Exploit DB Packet Storm

2425	7.1	重要 Network	Daylight Studio	FUEL CMS	Daylight StudioのFUEL CMSにおけるパスワード管理機能に関する脆弱性	CWE-640 パスワードを忘れた場合の脆弱なパスワードリカバリの仕組み	CVE-2026-30459	2026-04-24 11:31	2026-04-16	Show	GitHub Exploit DB Packet Storm

2426	9.8	緊急 Network	TOTOLINK	a3300r ファームウェア	TOTOLINKのa3300r ファームウェアにおけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2026-31170	2026-04-24 11:31	2026-04-9	Show	GitHub Exploit DB Packet Storm

2427	7	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows Simple Search Discovery Protocol (SSDP) サービスの特権昇格の脆弱性	CWE-362 競合状態	CVE-2026-32068	2026-04-24 11:31	2026-04-14	Show	GitHub Exploit DB Packet Storm

2428	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 11 23h2 Microsoft Windows 11 26h1 Microsoft Windows 10 1809 Microsoft Wind…	Windows Projected File System の特権の昇格の脆弱性	CWE-415 二重解放	CVE-2026-32069	2026-04-24 11:31	2026-04-14	Show	GitHub Exploit DB Packet Storm

2429	7	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows 共通ログファイルシステムドライバーの特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-32070	2026-04-24 11:31	2026-04-14	Show	GitHub Exploit DB Packet Storm

2430	7.5	重要 Network	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows ローカルセキュリティ機関サブシステムサービス (LSASS) のサービス拒否の脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-32071	2026-04-24 11:31	2026-04-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348141	-	kab_software	lydia	Kabsoftware Lydia utility uses weak encryption to store user passwords in the lydia.ini file, which allows local users to easily decrypt the passwords and gain privileges.	NVD-CWE-Other	CVE-1999-1101	2008-09-9 21:36	1999-02-19	Show	GitHub Exploit DB Packet Storm

348142	-	hp	openmail	HP OpenMail can be misconfigured to allow users to run arbitrary commands using malicious print requests.	NVD-CWE-Other	CVE-1999-0551	2008-09-9 21:35	1998-04-1	Show	GitHub Exploit DB Packet Storm

348143	-	toxsoft	nextftp	Buffer overflow in ToxSoft NextFTP client through CWD command.	NVD-CWE-Other	CVE-1999-0671	2008-09-9 21:35	1999-08-3	Show	GitHub Exploit DB Packet Storm

348144	-	fujitsu	chocoa	Buffer overflow in Fujitsu Chocoa IRC client via IRC channel topics.	NVD-CWE-Other	CVE-1999-0672	2008-09-9 21:35	1999-08-1	Show	GitHub Exploit DB Packet Storm

348145	-	crear	almail32	Buffer overflow in ALMail32 POP3 client via From: or To: headers.	NVD-CWE-Other	CVE-1999-0673	2008-09-9 21:35	1999-08-8	Show	GitHub Exploit DB Packet Storm

348146	-	checkpoint	firewall-1	Check Point FireWall-1 can be subjected to a denial of service via UDP packets that are sent through VPN-1 to port 0 of a host.	NVD-CWE-Other	CVE-1999-0675	2008-09-9 21:35	1999-08-9	Show	GitHub Exploit DB Packet Storm

348147	-	ramp_networks	webramp_200i webramp_m3	The WebRamp web administration utility has a default password.	NVD-CWE-Other	CVE-1999-0677	2008-09-9 21:35	1999-08-3	Show	GitHub Exploit DB Packet Storm

348148	-	hybrid_network	hybrid_ircd	Buffer overflow in hybrid-6 IRC server commonly used on EFnet allows remote attackers to execute commands via m_invite invite option.	NVD-CWE-Other	CVE-1999-0679	2008-09-9 21:35	1999-08-13	Show	GitHub Exploit DB Packet Storm

348149	-	network_associates	gauntlet_firewall	Denial of service in Gauntlet Firewall via a malformed ICMP packet.	NVD-CWE-Other	CVE-1999-0683	2008-09-9 21:35	1999-07-30	Show	GitHub Exploit DB Packet Storm

348150	-	netscape	communicator	Buffer overflow in Netscape Communicator via EMBED tags in the pluginspage option.	NVD-CWE-Other	CVE-1999-0685	2008-09-9 21:35	1999-09-2	Show	GitHub Exploit DB Packet Storm