Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 29, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
181 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 New CWE-noinfo
情報不足 		CVE-2026-23446 2026-04-27 11:23 2026-04-3 Show GitHub Exploit DB Packet Storm
182 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける配列インデックスの検証に関する脆弱性 New CWE-129
配列インデックスの不適切な検証 		CVE-2026-23447 2026-04-27 11:23 2026-04-3 Show GitHub Exploit DB Packet Storm
183 4.8 警告
Network 		OctoberCMS October OctoberCMSのOctoberにおけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-25133 2026-04-27 11:23 2026-04-14 Show GitHub Exploit DB Packet Storm
184 8.1 重要
Network 		OpenMage Magento OpenMageのMagentoにおける信頼できないデータのデシリアライゼーションに関する脆弱性 New CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-25524 2026-04-27 11:23 2026-04-20 Show GitHub Exploit DB Packet Storm
185 4.9 警告
Network 		OpenMage Magento OpenMageのMagentoにおける複数の脆弱性 New CWE-184
CWE-22
CVE-2026-25525 2026-04-27 11:23 2026-04-20 Show GitHub Exploit DB Packet Storm
186 7 重要
Local 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 10 1607
Microsoft Windows Server 2016
Microsoft Windows 11 23h2
Microsoft … 		Windows Server Update Services (WSUS) の特権の昇格の脆弱性 New CWE-362
CWE-416
CVE-2026-26174 2026-04-27 11:23 2026-04-14 Show GitHub Exploit DB Packet Storm
187 4.6 警告
Physics 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 10 1607
Microsoft Windows Server 2016
Microsoft Windows 11 23h2
Microsoft … 		Windows ブート マネージャーのセキュリティ機能のバイパスの脆弱性 New CWE-908
初期化されていないリソースの使用 		CVE-2026-26175 2026-04-27 11:23 2026-04-14 Show GitHub Exploit DB Packet Storm
188 7.8 重要
Local 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 10 1607
Microsoft Windows Server 2016
Microsoft Windows 11 23h2
Microsoft … 		Windows クライアント側のキャッシュ ドライバー (csc.sys) の特権昇格の脆弱性 New CWE-122
ヒープオーバーフロー 		CVE-2026-26176 2026-04-27 11:23 2026-04-14 Show GitHub Exploit DB Packet Storm
189 7 重要
Local 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 10 1607
Microsoft Windows Server 2016
Microsoft Windows 11 23h2
Microsoft … 		WinSock 用 Windows Ancillary Function Driver の特権の昇格の脆弱性 New CWE-416
解放済みメモリの使用 		CVE-2026-26177 2026-04-27 11:23 2026-04-14 Show GitHub Exploit DB Packet Storm
190 8.8 重要
Network 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 10 1607
Microsoft Windows Server 2016
Microsoft Windows 11 23h2
Microsoft … 		Windows Advanced Rasterization Platform の特権昇格の脆弱性 New CWE-190
CWE-681
CVE-2026-26178 2026-04-27 11:23 2026-04-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348591 - orange_software orange_web_server Orange Web Server 2.1, based on GoAhead, allows a remote attacker to perform a denial of service via an HTTP GET request that does not include the HTTP version. NVD-CWE-Other
CVE-2001-0647 2008-09-6 05:24 2001-08-6 Show GitHub Exploit DB Packet Storm
348592 - ibm aix Buffer overflows in (1) send_status, (2) kill_print, and (3) chk_fhost in lpd in AIX 4.3 and 5.1 allow remote attackers to gain root privileges. NVD-CWE-Other
CVE-2001-0671 2008-09-6 05:24 2001-12-6 Show GitHub Exploit DB Packet Storm
348593 - transsoft broker_ftp_server Broker FTP Server 5.9.5.0 allows a remote attacker to cause a denial of service by repeatedly issuing an invalid CD or CWD ("CD . .") command. NVD-CWE-Other
CVE-2001-0688 2008-09-6 05:24 2001-09-20 Show GitHub Exploit DB Packet Storm
348594 - trend_micro virus_control_system Vulnerability in TrendMicro Virus Control System 1.8 allows a remote attacker to view configuration files and change the configuration via a certain CGI program. NVD-CWE-Other
CVE-2001-0689 2008-09-6 05:24 2001-09-20 Show GitHub Exploit DB Packet Storm
348595 - university_of_washington imapd Buffer overflows in Washington University imapd 2000a through 2000c could allow local users without shell access to execute code as themselves in certain configurations. NVD-CWE-Other
CVE-2001-0691 2008-09-6 05:24 2001-09-20 Show GitHub Exploit DB Packet Storm
348596 - texas_imperial_software wftpd Directory traversal vulnerability in WFTPD 3.00 R5 allows a remote attacker to view arbitrary files via a dot dot attack in the CD command. NVD-CWE-Other
CVE-2001-0694 2008-09-6 05:24 2001-09-20 Show GitHub Exploit DB Packet Storm
348597 - sendmail sendmail Sendmail before 8.12.1 does not properly drop privileges when the -C option is used to load custom configuration files, which allows local users to gain privileges via malformed arguments in the conf… NVD-CWE-Other
CVE-2001-0713 2008-09-6 05:24 2001-10-30 Show GitHub Exploit DB Packet Storm
348598 - sendmail sendmail Sendmail before 8.12.1, without the RestrictQueueRun option enabled, allows local users to cause a denial of service (data loss) by (1) setting a high initial message hop count option (-h), which cau… NVD-CWE-Other
CVE-2001-0714 2008-09-6 05:24 2001-10-30 Show GitHub Exploit DB Packet Storm
348599 - computalynx cmail Buffer overflow in Computalynx CMail POP3 mail server 2.4.9 allows remote attackers to run arbitrary code via a long HELO command. NVD-CWE-Other
CVE-2001-0742 2008-09-6 05:24 2001-10-18 Show GitHub Exploit DB Packet Storm
348600 - oreilly webboard Paging function in O'Reilly WebBoard Pager 4.10 allows remote attackers to cause a denial of service via a message with an escaped ' character followed by JavaScript commands. NVD-CWE-Other
CVE-2001-0743 2008-09-6 05:24 2001-10-18 Show GitHub Exploit DB Packet Storm