Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2431 9.8 緊急
Network 		エリクソン CodeChecker エリクソンのCodeCheckerにおける複数の脆弱性 CWE-290
CWE-863
CVE-2026-25660 2026-04-30 12:11 2026-04-24 Show GitHub Exploit DB Packet Storm
2432 7.8 重要
Local 		マイクロソフト PowerShell Microsoft PowerShell セキュリティ機能のバイパスの脆弱性 CWE-20
不適切な入力確認 		CVE-2026-26143 2026-04-30 12:11 2026-04-14 Show GitHub Exploit DB Packet Storm
2433 9.8 緊急
Network 		デル PowerProtect DP Series Appliance
data domain operating system 		デルのdata domain operating system等の複数製品における複数の脆弱性 CWE-121
CWE-787
CVE-2026-26354 2026-04-30 12:11 2026-04-22 Show GitHub Exploit DB Packet Storm
2434 6.2 警告
Local 		アップル iPadOS
iOS 		アップルのiPadOS等の複数製品における認可されていない行為者への個人情報の漏えいに関する脆弱性 CWE-359
認可されていないアクターへの個人情報の漏えい 		CVE-2026-28950 2026-04-30 12:11 2026-04-22 Show GitHub Exploit DB Packet Storm
2435 6.1 警告
Local 		Chainguard Melange ChainguardのMelangeにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-29050 2026-04-30 12:11 2026-04-24 Show GitHub Exploit DB Packet Storm
2436 3.3
Local 		Chainguard Melange ChainguardのMelangeにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-29051 2026-04-30 12:11 2026-04-24 Show GitHub Exploit DB Packet Storm
2437 6.5 警告
Network 		TOTOLINK a3300r ファームウェア TOTOLINKのa3300r ファームウェアにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-31162 2026-04-30 12:11 2026-04-23 Show GitHub Exploit DB Packet Storm
2438 6.5 警告
Network 		TOTOLINK a3300r ファームウェア TOTOLINKのa3300r ファームウェアにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-31163 2026-04-30 12:11 2026-04-23 Show GitHub Exploit DB Packet Storm
2439 6.5 警告
Network 		TOTOLINK a3300r ファームウェア TOTOLINKのa3300r ファームウェアにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-31166 2026-04-30 12:11 2026-04-23 Show GitHub Exploit DB Packet Storm
2440 6.5 警告
Network 		TOTOLINK a3300r ファームウェア TOTOLINKのa3300r ファームウェアにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2026-31167 2026-04-30 12:10 2026-04-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
317201 - microsoft windows_2000
windows_xp
windows_2003_server
windows_vista
windows_server_2008 		The Windows kernel-mode drivers in win32k.sys in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, and Server 2008 Gold and SP2 "do not properly validate changes in cert… CWE-20
 Improper Input Validation  		CVE-2010-0484 2023-12-8 03:38 2010-06-9 Show GitHub Exploit DB Packet Storm
317202 - microsoft office_infopath
sharepoint_server
sharepoint_services
internet_explorer 		Cross-site scripting (XSS) vulnerability in the toStaticHTML API, as used in Microsoft Office InfoPath 2003 SP3, 2007 SP1, and 2007 SP2; Office SharePoint Server 2007 SP1 and SP2; SharePoint Services… CWE-79
Cross-site Scripting 		CVE-2010-1257 2023-12-8 03:38 2010-06-9 Show GitHub Exploit DB Packet Storm
317203 - microsoft internet_information_server Unspecified vulnerability in Microsoft IIS 6.0, 7.0, and 7.5, when Extended Protection for Authentication is enabled, allows remote authenticated users to execute arbitrary code via unknown vectors r… CWE-94
Code Injection 		CVE-2010-1256 2023-12-8 03:38 2010-06-9 Show GitHub Exploit DB Packet Storm
317204 - microsoft windows_2000
windows_xp
windows_2003_server
windows_vista
windows_server_2008
windows_7 		Unspecified vulnerability in the Windows OpenType Compact Font Format (CFF) driver in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, Server 2008 SP2 and R2, and Windo… CWE-20
 Improper Input Validation  		CVE-2010-0819 2023-12-8 03:38 2010-06-9 Show GitHub Exploit DB Packet Storm
317205 - microsoft windows_xp
windows_server_2003
windows_2003_server
windows_server_2008
windows_vista 		Microsoft Windows XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allow remote attackers to bypass intended IPv4 source-address restrictions via a mismatched I… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-0812 2023-12-8 03:38 2010-04-15 Show GitHub Exploit DB Packet Storm
317206 - microsoft windows_server_2008
windows_vista 		The kernel in Microsoft Windows Vista Gold, SP1, and SP2, and Windows Server 2008 Gold and SP2, does not properly handle unspecified exceptions, which allows local users to cause a denial of service … NVD-CWE-noinfo
CVE-2010-0810 2023-12-8 03:38 2010-04-15 Show GitHub Exploit DB Packet Storm
317207 - microsoft windows_7
windows_server_2008
windows_vista 		The kernel in Microsoft Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 does not properly translate a registry key's virtual path to its real path, which allows… NVD-CWE-Other
CVE-2010-0481 2023-12-8 03:38 2010-04-15 Show GitHub Exploit DB Packet Storm
317208 - microsoft outlook_express
windows_live_mail
windows_mail 		Integer overflow in inetcomm.dll in Microsoft Outlook Express 5.5 SP2, 6, and 6 SP1; Windows Live Mail on Windows XP SP2 and SP3, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and… CWE-189
Numeric Errors 		CVE-2010-0816 2023-12-8 03:38 2010-05-12 Show GitHub Exploit DB Packet Storm
317209 - microsoft windows_7
windows_2000
windows_xp
windows_server_2003
windows_2003_server
windows_server_2008
windows_vista 		The Authenticode Signature verification functionality in cabview.dll in Cabinet File Viewer Shell Extension 5.1, 6.0, and 6.1 in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 200… CWE-20
 Improper Input Validation  		CVE-2010-0487 2023-12-8 03:38 2010-04-15 Show GitHub Exploit DB Packet Storm
317210 - microsoft windows_7
windows_2000
windows_xp
windows_server_2003
windows_2003_server
windows_server_2008
windows_vista 		The WinVerifyTrust function in Authenticode Signature Verification 5.1, 6.0, and 6.1 in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, … CWE-20
 Improper Input Validation  		CVE-2010-0486 2023-12-8 03:38 2010-04-15 Show GitHub Exploit DB Packet Storm