Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1801	7	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows Simple Search Discovery Protocol (SSDP) サービスの特権昇格の脆弱性	CWE-362 競合状態	CVE-2026-32082	2026-04-23 10:14	2026-04-14	Show	GitHub Exploit DB Packet Storm

1802	7	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows Simple Search Discovery Protocol (SSDP) サービスの特権昇格の脆弱性	CWE-362 競合状態	CVE-2026-32083	2026-04-23 10:14	2026-04-14	Show	GitHub Exploit DB Packet Storm

1803	5.5	警告 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows 印刷スプーラーの情報漏えいの脆弱性	CWE-200 情報漏えい	CVE-2026-32084	2026-04-23 10:14	2026-04-14	Show	GitHub Exploit DB Packet Storm

1804	5.5	警告 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	リモートプロシージャコールの情報漏えいの脆弱性	CWE-200 情報漏えい	CVE-2026-32085	2026-04-23 10:14	2026-04-14	Show	GitHub Exploit DB Packet Storm

1805	7	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows Function Discovery Service (fdwsd.dll) の特権昇格の脆弱性	CWE-362 競合状態	CVE-2026-32086	2026-04-23 10:13	2026-04-14	Show	GitHub Exploit DB Packet Storm

1806	7	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows Function Discovery Service (fdwsd.dll) の特権昇格の脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-32087	2026-04-23 10:13	2026-04-14	Show	GitHub Exploit DB Packet Storm

1807	5.7	警告 Physics	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 11 23h2 Microsoft Windows 11 26h1 Microsoft Windows 10 1809 Microsoft Wind…	Windows 生体認証サービスのセキュリティ機能のバイパスの脆弱性	CWE-362 競合状態	CVE-2026-32088	2026-04-23 10:13	2026-04-14	Show	GitHub Exploit DB Packet Storm

1808	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows Speech Brokered API の特権昇格の脆弱性	CWE-362 CWE-416	CVE-2026-32089	2026-04-23 10:13	2026-04-14	Show	GitHub Exploit DB Packet Storm

1809	7	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows Speech Brokered API の特権昇格の脆弱性	CWE-362 CWE-416	CVE-2026-32090	2026-04-23 10:13	2026-04-14	Show	GitHub Exploit DB Packet Storm

1810	7	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Microsoft Resilient File System の特権昇格の脆弱性	CWE-362 CWE-416	CVE-2026-32091	2026-04-23 10:13	2026-04-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
671	7.5	HIGH Network	-	-	An issue was discovered in Open-SAE-J1939 thru commit b6caf884df46435e539b1ecbf92b6c29b345bdfe (2025-11-30) in SAE_J1939_Read_Binary_Data_Transfer_DM16 causing a denial of service via crafted CAN fra…	CWE-400 Uncontrolled Resource Consumption	CVE-2026-42467	2026-05-2 03:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

672	7.5	HIGH Network	exim	exim	In Exim before 4.99.2, on systems using musl libc (not glibc), an attacker can crash the connection instance when malformed DNS data is present in PTR records. This is caused by a dn_expand oddity in…	CWE-684 Incorrect Provision of Specified Functionality	CVE-2026-40684	2026-05-2 03:16	2026-05-1	Show	GitHub Exploit DB Packet Storm

673	10.0	CRITICAL Network	-	-	Buffer overflow vulnerability in Open Vehicle Monitoring System 3 (OVMS3) 3.3.005. In canformat_gvret.cpp, the length field in GVRET binary data is not properly validated, allowing remote attackers t…	CWE-121 Stack-based Buffer Overflow	CVE-2026-37541	2026-05-2 03:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

674	8.4	HIGH Local	-	-	OpenAMP v2025.10.0 ELF loader contains an integer overflow vulnerability in firmware image parsing. In elf_loader.c, it performs multiplication of two attacker-controlled 16-bit values from the ELF h…	CWE-190 Integer Overflow or Wraparound	CVE-2026-37540	2026-05-2 03:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

675	9.8	CRITICAL Network	-	-	Buffer overflow vulnerability in cannelloni v2.0.0 in CAN frame parsing in parser.cpp in function parseCANFrame, and decoder.cpp in function decodeFrame allowing remote attackers to cause a denial of…	CWE-121 Stack-based Buffer Overflow	CVE-2026-37539	2026-05-2 03:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

676	-		-	-	An off-by-one out-of-bounds write vulnerability in the bgp_flowspec_op_decode() function (bgpd/bgp_flowspec_util.c) of FRRouting (FRR) stable/10.0 allows attackers to cause a Denial of Service (DoS) …	-	CVE-2026-37457	2026-05-2 03:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

677	-		-	-	A Command Injection vulnerability in the web management interface in Aver PTC320UV2 0.1.0000.65 allows an unauthenticated attacker to execute arbitrary commands via a crafted web request.	-	CVE-2026-26461	2026-05-2 03:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

678	9.6	CRITICAL Network	-	-	A web page that contains unusual WebGPU content loaded into the GPU GLES render process and can trigger write UAF crash in the GPU GLES user-space shared library. On certain platforms, when the proce…	CWE-416 Use After Free	CVE-2026-22166	2026-05-2 03:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

679	-		-	-	Cross-Site Scripting (XSS) vulnerability was discovered in the GSVoIP web panel version 2.0.90. The `msg` parameter in the `/painel/gateways.php/error` endpoint does not properly sanitize user-suppli…	-	CVE-2025-69606	2026-05-2 03:16	2026-05-2	Show	GitHub Exploit DB Packet Storm

680	-		-	-	An issue in Eprosima Micro-XREC-DDS Agent v.3.0.1 allows a remote attacker to cause a denial of service via a packet specially crafted to bear a non-valid value in any Boolean field.	-	CVE-2025-63548	2026-05-2 03:16	2026-05-2	Show	GitHub Exploit DB Packet Storm