Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3191 8.8 重要
Local 		neutrinolabs xrdp neutrinolabsのxrdpにおける削除された特権に対する不適切なチェックに関する脆弱性 CWE-273
削除された特権に対する不適切なチェック 		CVE-2026-32107 2026-04-28 10:13 2026-04-17 Show GitHub Exploit DB Packet Storm
3192 8.1 重要
Network 		neutrinolabs xrdp neutrinolabsのxrdpにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-32623 2026-04-28 10:13 2026-04-17 Show GitHub Exploit DB Packet Storm
3193 6.5 警告
Network 		neutrinolabs xrdp neutrinolabsのxrdpにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-32624 2026-04-28 10:13 2026-04-17 Show GitHub Exploit DB Packet Storm
3194 6.3 警告
Network 		neutrinolabs xrdp neutrinolabsのxrdpにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-33145 2026-04-28 10:13 2026-04-17 Show GitHub Exploit DB Packet Storm
3195 9.1 緊急
Network 		neutrinolabs xrdp neutrinolabsのxrdpにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-33516 2026-04-28 10:13 2026-04-17 Show GitHub Exploit DB Packet Storm
3196 9.1 緊急
Network 		neutrinolabs xrdp neutrinolabsのxrdpにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2026-33689 2026-04-28 10:13 2026-04-17 Show GitHub Exploit DB Packet Storm
3197 2.9
Local 		オラクル Oracle GraalVM for JDK
Oracle GraalVM
JRE
JDK 		オラクルのOracle GraalVM等の複数製品における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2026-34268 2026-04-28 10:13 2026-04-21 Show GitHub Exploit DB Packet Storm
3198 9.8 緊急
Network 		オラクル Oracle Advanced Inbound Telephony オラクルのOracle Advanced Inbound Telephonyにおける重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-34275 2026-04-28 10:13 2026-04-21 Show GitHub Exploit DB Packet Storm
3199 7.5 重要
Network 		オラクル Oracle GraalVM for JDK
Oracle GraalVM
JRE
JDK 		オラクルのOracle GraalVM等の複数製品におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2026-34282 2026-04-28 10:13 2026-04-21 Show GitHub Exploit DB Packet Storm
3200 2.4
Network 		オラクル Oracle Database オラクルのOracle Databaseにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-34312 2026-04-28 10:13 2026-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348361 - thomson speedtouch Thomson SpeedTouch modem running firmware 5.3.2.6.0 allows remote attackers to create users that cannot be deleted via scripting code in the "31" parameter in a NewUser function, which is not filtere… NVD-CWE-Other
CVE-2006-0947 2011-03-8 11:31 2006-03-1 Show GitHub Exploit DB Packet Storm
348362 - eset_software nod32_antivirus The GUI (nod32.exe) in NOD32 2.5 runs with SYSTEM privileges when the scheduler runs a scheduled on-demand scan, which allows local users to execute arbitrary code during a scheduled scan via unspeci… NVD-CWE-Other
CVE-2006-0951 2011-03-8 11:31 2006-04-8 Show GitHub Exploit DB Packet Storm
348363 - nufw nufw_firewall nuauth in NuFW before 1.0.21 does not properly handle blocking TLS sockets, which allows remote authenticated users to cause a denial of service (service hang) by flooding packets at the authenticati… NVD-CWE-Other
CVE-2006-0956 2011-03-8 11:31 2006-03-3 Show GitHub Exploit DB Packet Storm
348364 - nufw nufw_firewall This vulnerability affects NuFW, NuFW Firewall versions 1.0.20 and previous. NVD-CWE-Other
CVE-2006-0956 2011-03-8 11:31 2006-03-3 Show GitHub Exploit DB Packet Storm
348365 - phprpc phprpc Eval injection vulnerability in the decode function in rpc_decoder.php for phpRPC 0.7 and earlier, as used by runcms, exoops, and possibly other programs, allows remote attackers to execute arbitrary… NVD-CWE-Other
CVE-2006-1032 2011-03-8 11:31 2006-03-7 Show GitHub Exploit DB Packet Storm
348366 - geeklog geeklog Unspecified vulnerability in the session handling for Geeklog 1.4.x before 1.4.0sr2, 1.3.11 before 1.3.11sr5, 1.3.9 before 1.3.9sr5, and possibly earlier versions allows attackers to gain privileges … NVD-CWE-Other
CVE-2006-1069 2011-03-8 11:31 2006-03-8 Show GitHub Exploit DB Packet Storm
348367 - hp systems_insight_manager Directory traversal vulnerability in HP Systems Insight Manager 4.2 through 5.0 SP3 for Windows allows remote attackers to access arbitrary files via unspecified vectors, a different vulnerability th… NVD-CWE-Other
CVE-2006-0656 2011-03-8 11:30 2006-02-13 Show GitHub Exploit DB Packet Storm
348368 - mantis mantis Unspecified vulnerability in (1) query_store.php and (2) manage_proj_create.php in Mantis before 1.0.0 has unknown impact and attack vectors. NOTE: the provenance of this information is unknown; the… NVD-CWE-Other
CVE-2006-0665 2011-03-8 11:30 2006-02-13 Show GitHub Exploit DB Packet Storm
348369 - ibm aix lscfg in IBM AIX 5.2 and 5.3 allows local users to modify arbitrary files via a symlink attack. NVD-CWE-Other
CVE-2006-0667 2011-03-8 11:30 2006-03-10 Show GitHub Exploit DB Packet Storm
348370 - musox df_msanalysis SQL injection vulnerability in mstrack.php in MusOX DF MSAnalysis (DFMSA), as used in some environments that use CPG-Nuke Dragonfly CMS, allows remote attackers to trigger path disclosure from a SQL … NVD-CWE-Other
CVE-2006-0727 2011-03-8 11:30 2006-02-16 Show GitHub Exploit DB Packet Storm