Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 9, 2026, noon
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 2421 | 5.5 |
警告
Local |
マイクロソフト |
Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft … |
Windows GDI の情報漏えいの脆弱性 |
CWE-125
境界外読み取り |
CVE-2026-27930 | 2026-04-24 11:31 | 2026-04-14 | Show | GitHub Exploit DB Packet Storm |
| 2422 | 5.5 |
警告
Local |
マイクロソフト |
Microsoft Windows 11 23h2 Microsoft Windows 11 26h1 Microsoft Windows 10 22h2 Microsoft Windows 10 21h2 Microsoft Windows&… |
Windows GDI の情報漏えいの脆弱性 |
CWE-125
境界外読み取り |
CVE-2026-27931 | 2026-04-24 11:31 | 2026-04-14 | Show | GitHub Exploit DB Packet Storm |
| 2423 | 8.1 |
重要
Network |
Mattermost, Inc. | Mattermost Server | Mattermost, Inc.のMattermost Serverにおけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2026-28741 | 2026-04-24 11:31 | 2026-04-15 | Show | GitHub Exploit DB Packet Storm |
| 2424 | 8.8 |
重要
Network |
infiniflow | ragflow | infiniflowのragflowにおける複数の脆弱性 |
CWE-1336 CWE-20 CWE-78 CWE-94 |
CVE-2026-28797 | 2026-04-24 11:31 | 2026-04-3 | Show | GitHub Exploit DB Packet Storm |
| 2425 | 7.1 |
重要
Network |
Daylight Studio | FUEL CMS | Daylight StudioのFUEL CMSにおけるパスワード管理機能に関する脆弱性 |
CWE-640
パスワードを忘れた場合の脆弱なパスワードリカバリの仕組み |
CVE-2026-30459 | 2026-04-24 11:31 | 2026-04-16 | Show | GitHub Exploit DB Packet Storm |
| 2426 | 9.8 |
緊急
Network |
TOTOLINK | a3300r ファームウェア | TOTOLINKのa3300r ファームウェアにおけるコマンドインジェクションの脆弱性 |
CWE-77
コマンドインジェクション |
CVE-2026-31170 | 2026-04-24 11:31 | 2026-04-9 | Show | GitHub Exploit DB Packet Storm |
| 2427 | 7 |
重要
Local |
マイクロソフト |
Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft … |
Windows Simple Search Discovery Protocol (SSDP) サービスの特権昇格の脆弱性 |
CWE-362
競合状態 |
CVE-2026-32068 | 2026-04-24 11:31 | 2026-04-14 | Show | GitHub Exploit DB Packet Storm |
| 2428 | 7.8 |
重要
Local |
マイクロソフト |
Microsoft Windows Server 2019 Microsoft Windows 11 23h2 Microsoft Windows 11 26h1 Microsoft Windows 10 1809 Microsoft Wind… |
Windows Projected File System の特権の昇格の脆弱性 |
CWE-415
二重解放 |
CVE-2026-32069 | 2026-04-24 11:31 | 2026-04-14 | Show | GitHub Exploit DB Packet Storm |
| 2429 | 7 |
重要
Local |
マイクロソフト |
Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft … |
Windows 共通ログ ファイル システム ドライバーの特権の昇格の脆弱性 |
CWE-416
解放済みメモリの使用 |
CVE-2026-32070 | 2026-04-24 11:31 | 2026-04-14 | Show | GitHub Exploit DB Packet Storm |
| 2430 | 7.5 |
重要
Network |
マイクロソフト |
Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft … |
Windows ローカル セキュリティ機関サブシステム サービス (LSASS) のサービス拒否の脆弱性 |
CWE-476
NULL ポインタデリファレンス |
CVE-2026-32071 | 2026-04-24 11:31 | 2026-04-14 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 9, 2026, 5:07 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 348271 | - |
cisco gnu microsoft hp netbsd sun |
ios inet winsock hp-ux windows_95 windows_nt netbsd sunos |
Land IP denial of service. |
NVD-CWE-Other
|
CVE-1999-0016 | 2008-09-9 21:33 | 1997-12-1 | Show | GitHub Exploit DB Packet Storm | |
| 348272 | - |
data_general ncr sgi ibm nighthawk sco sun |
dg_ux mp-ras irix aix cx_ux powerux open_desktop openserver unixware sunos |
Delete or create a file via rpc.statd, due to invalid information. |
NVD-CWE-Other
|
CVE-1999-0019 | 2008-09-9 21:33 | 1996-04-24 | Show | GitHub Exploit DB Packet Storm | |
| 348273 | - | muhammad_a._muquit | wwwcount | Arbitrary command execution via buffer overflow in Count.cgi (wwwcount) cgi-bin program. |
NVD-CWE-Other
|
CVE-1999-0021 | 2008-09-9 21:33 | 1997-11-5 | Show | GitHub Exploit DB Packet Storm | |
| 348274 | - |
sgi bsdi freebsd next sun |
irix bsd_os freebsd nextstep sunos |
Buffer overflow in lpr, as used in BSD-based systems including Linux, allows local users to execute arbitrary code as root via a long -C (classification) command line option. |
NVD-CWE-Other
|
CVE-1999-0032 | 2008-09-9 21:33 | 1996-10-25 | Show | GitHub Exploit DB Packet Storm | |
| 348275 | - | sgi | irix | fsdump command in IRIX allows local users to obtain root access by modifying sensitive files. |
NVD-CWE-Other
|
CVE-1999-0044 | 2008-09-9 21:33 | 1996-12-3 | Show | GitHub Exploit DB Packet Storm | |
| 348276 | - |
eric_allman bsdi caldera |
sendmail bsd_os openlinux |
MIME conversion buffer overflow in sendmail versions 8.8.3 and 8.8.4. |
NVD-CWE-Other
|
CVE-1999-0047 | 2008-09-9 21:33 | 1997-01-28 | Show | GitHub Exploit DB Packet Storm | |
| 348277 | - |
debian ibm nec |
netkit aix asl_ux_4800 ews-ux_v up-ux_v |
Talkd, when given corrupt DNS information, can be used to execute arbitrary commands with root privileges. |
NVD-CWE-Other
|
CVE-1999-0048 | 2008-09-9 21:33 | 1997-01-27 | Show | GitHub Exploit DB Packet Storm | |
| 348278 | - |
eric_allman freebsd hp ibm sun |
vacation freebsd hp-ux vvos aix solaris sunos |
Vacation program allows command execution by remote users through a sendmail command. |
NVD-CWE-Other
|
CVE-1999-0057 | 2008-09-9 21:33 | 1998-11-16 | Show | GitHub Exploit DB Packet Storm | |
| 348279 | - | php | php | Buffer overflow in PHP cgi program, php.cgi allows shell access. |
NVD-CWE-Other
|
CVE-1999-0058 | 2008-09-9 21:33 | 1997-04-17 | Show | GitHub Exploit DB Packet Storm | |
| 348280 | - | openbsd | openbsd | The chpass command in OpenBSD allows a local user to gain root access through file descriptor leakage. |
NVD-CWE-Other
|
CVE-1999-0062 | 2008-09-9 21:33 | 1998-08-3 | Show | GitHub Exploit DB Packet Storm |