Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253141	9.3	危険	マイクロソフト	-	Microsoft Windows の kernel における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2514	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

253142	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-2513	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

253143	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

253144	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

253145	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

253146	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

253147	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 28, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
561	6.6	MEDIUM Local	vim	vim	Vim is an open source, command line text editor. Prior to 9.2.0357, A command injection vulnerability exists in Vim's tag file processing. When resolving a tag, the filename field from the tags file … Update	CWE-78 OS Command	CVE-2026-41411	2026-04-27 22:39	2026-04-25	Show	GitHub Exploit DB Packet Storm

562	9.8	CRITICAL Network	oracle	advanced_inbound_telephony	Vulnerability in the Oracle Advanced Inbound Telephony product of Oracle E-Business Suite (component: Setup and Administration). Supported versions that are affected are 12.2.3-12.2.15. Easily explo… Update	CWE-306 Missing Authentication for Critical Function	CVE-2026-34275	2026-04-27 22:09	2026-04-22	Show	GitHub Exploit DB Packet Storm

563	6.5	MEDIUM Network	oracle	peoplesoft_enterprise_fin_contracts	Vulnerability in the PeopleSoft Enterprise FIN Contracts product of Oracle PeopleSoft (component: Contracts). The supported version that is affected is 9.2. Easily exploitable vulnerability allows … Update	CWE-200 Information Exposure	CVE-2026-34300	2026-04-27 22:08	2026-04-22	Show	GitHub Exploit DB Packet Storm

564	2.4	LOW Network	oracle	database_server	Vulnerability in the RDBMS component of Oracle Database Server. Supported versions that are affected are 19.3-19.30. Easily exploitable vulnerability allows high privileged attacker having Row Acces… Update	CWE-284 Improper Access Control	CVE-2026-34312	2026-04-27 22:04	2026-04-22	Show	GitHub Exploit DB Packet Storm

565	5.4	MEDIUM Network	oracle	fusion_middleware	Vulnerability in Oracle Fusion Middleware (component: Dynamic Monitoring Service). Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows low pr… Update	CWE-284 Improper Access Control	CVE-2026-35232	2026-04-27 22:03	2026-04-22	Show	GitHub Exploit DB Packet Storm

566	6.4	MEDIUM Network	oracle	fusion_middleware	Vulnerability in the Oracle Security Service product of Oracle Fusion Middleware (component: C Oracle SSL API). Supported versions that are affected are 12.2.1.4.0 and 12.1.3.0.0. Difficult to expl… Update	CWE-284 Improper Access Control	CVE-2026-35252	2026-04-27 22:02	2026-04-22	Show	GitHub Exploit DB Packet Storm

567	7.3	HIGH Local	uutils	coreutils	A vulnerability in the chmod utility of uutils coreutils allows users to bypass the --preserve-root safety mechanism. The implementation only validates if the target path is literally / and does not … Update	CWE-22 Path Traversal	CVE-2026-35338	2026-04-27 21:28	2026-04-23	Show	GitHub Exploit DB Packet Storm

568	3.3	LOW Local	uutils	coreutils	The comm utility in uutils coreutils silently corrupts data by performing lossy UTF-8 conversion on all output lines. The implementation uses String::from_utf8_lossy(), which replaces invalid UTF-8 b… Update	CWE-176 Improper Handling of Unicode Encoding	CVE-2026-35346	2026-04-27 21:28	2026-04-23	Show	GitHub Exploit DB Packet Storm

569	4.4	MEDIUM Local	uutils	coreutils	The comm utility in uutils coreutils incorrectly consumes data from non-regular file inputs before performing comparison operations. The are_files_identical function opens and reads from both input p… Update	CWE-20 Improper Input Validation	CVE-2026-35347	2026-04-27 21:28	2026-04-23	Show	GitHub Exploit DB Packet Storm

570	7.7	HIGH Local	uutils	coreutils	A vulnerability in the rm utility of uutils coreutils allows a bypass of the --preserve-root protection. The implementation uses a path-string check rather than comparing device and inode numbers to … Update	CWE-59 Link Following	CVE-2026-35349	2026-04-27 21:28	2026-04-23	Show	GitHub Exploit DB Packet Storm