Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2791	6.7	警告 Network	フォーティネット	FortiSandbox FortiSandbox Cloud	フォーティネットのFortiSandbox等の複数製品におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-25691	2026-04-24 11:33	2026-04-14	Show	GitHub Exploit DB Packet Storm

2792	6.1	警告 Local	Zulip	Zulip	Zulipにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-26058	2026-04-24 11:33	2026-04-3	Show	GitHub Exploit DB Packet Storm

2793	8.8	重要 Network	デル	PowerProtect DP Series Appliance data domain operating system	デルのdata domain operating system等の複数製品における重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-26944	2026-04-24 11:33	2026-04-20	Show	GitHub Exploit DB Packet Storm

2794	6.1	警告 Network	Jeremiah Lowin	FastMCP	Jeremiah LowinのFastMCPにおけるフィルタリングの回避に関する脆弱性	CWE-441 フィルタリング回避	CVE-2026-27124	2026-04-24 11:33	2026-04-3	Show	GitHub Exploit DB Packet Storm

2795	2.7	低 Network	フォーティネット	FortiSandbox FortiSandbox Cloud	フォーティネットのFortiSandbox等の複数製品における認証情報の不十分な保護に関する脆弱性	CWE-522 認証情報の不十分な保護	CVE-2026-27316	2026-04-24 11:33	2026-04-14	Show	GitHub Exploit DB Packet Storm

2796	6.3	警告 Network	OpenPrinting	CUPS	OpenPrintingのCUPSにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-27447	2026-04-24 11:32	2026-04-3	Show	GitHub Exploit DB Packet Storm

2797	4.7	警告 Local	kernel.org	util-linux	kernel.orgのutil-linuxにおける複数の脆弱性	CWE-269 CWE-367 CWE-367 CWE-59	CVE-2026-27456	2026-04-24 11:32	2026-04-3	Show	GitHub Exploit DB Packet Storm

2798	5.3	警告 Network	Discourse	Discourse	Discourseにおける情報漏えいに関する脆弱性	CWE-200 CWE-noinfo	CVE-2026-27481	2026-04-24 11:32	2026-04-3	Show	GitHub Exploit DB Packet Storm

2799	2.7	低 Network	Mattermost, Inc.	Mattermost Server	Mattermost, Inc.のMattermost Serverにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-27769	2026-04-24 11:32	2026-04-15	Show	GitHub Exploit DB Packet Storm

2800	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows 11 26h1 Microsoft Windows Server 2025 Microsoft Windows 11 24h2 Microsoft Wind…	Windows 記憶域スペースコントローラーの特権昇格の脆弱性	CWE-191 整数アンダーフロー	CVE-2026-27907	2026-04-24 11:32	2026-04-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348551	-	eric_allman	sendmail	Sendmail allows local users to reinitialize the aliases database via the newaliases command, then cause a denial of service by interrupting Sendmail.	NVD-CWE-Other	CVE-1999-0976	2008-09-9 21:36	1999-12-7	Show	GitHub Exploit DB Packet Storm

348552	-	debian	debian_linux	htdig allows remote attackers to execute commands via filenames with shell metacharacters.	NVD-CWE-Other	CVE-1999-0978	2008-09-9 21:36	1999-12-9	Show	GitHub Exploit DB Packet Storm

348553	-	debian linux redhat	debian_linux linux_kernel linux	The ping command in Linux 2.0.3x allows local users to cause a denial of service by sending large packets with the -R (record route) option.	NVD-CWE-Other	CVE-1999-0986	2008-09-9 21:36	1999-12-8	Show	GitHub Exploit DB Packet Storm

348554	-	microsoft	ie	Buffer overflow in Internet Explorer 5 directshow filter (MSDXM.OCX) allows remote attackers to execute commands via the vnd.ms.radio protocol.	NVD-CWE-Other	CVE-1999-0989	2008-09-9 21:36	1999-12-6	Show	GitHub Exploit DB Packet Storm

348555	-	goodtech	telnet_server_nt	Buffer overflow in GoodTech Telnet Server NT allows remote users to cause a denial of service via a long login name.	NVD-CWE-Other	CVE-1999-0991	2008-09-9 21:36	1999-12-6	Show	GitHub Exploit DB Packet Storm

348556	-	infoseek	ultraseek_server	Buffer overflow in Infoseek Ultraseek search engine allows remote attackers to execute commands via a long GET request.	NVD-CWE-Other	CVE-1999-0996	2008-09-9 21:36	1999-12-15	Show	GitHub Exploit DB Packet Storm

348557	-	sgi	irix	Vulnerability in (1) diskalign and (2) diskperf in IRIX 6.4 patches 2291 and 2848 allow a local user to create root-owned files leading to a root compromise.	NVD-CWE-Other	CVE-1999-1039	2008-09-9 21:36	1998-05-27	Show	GitHub Exploit DB Packet Storm

348558	-	webmin	webmin	Webmin before 0.5 does not restrict the number of invalid passwords that are entered for a valid username, which could allow remote attackers to gain privileges via brute force password cracking.	NVD-CWE-Other	CVE-1999-1074	2008-09-9 21:36	1999-12-31	Show	GitHub Exploit DB Packet Storm

348559	-	kab_software	lydia	Kabsoftware Lydia utility uses weak encryption to store user passwords in the lydia.ini file, which allows local users to easily decrypt the passwords and gain privileges.	NVD-CWE-Other	CVE-1999-1101	2008-09-9 21:36	1999-02-19	Show	GitHub Exploit DB Packet Storm

348560	-	hp	openmail	HP OpenMail can be misconfigured to allow users to run arbitrary commands using malicious print requests.	NVD-CWE-Other	CVE-1999-0551	2008-09-9 21:35	1998-04-1	Show	GitHub Exploit DB Packet Storm