Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3571	7.5	重要 Network	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows Server 2025 Microsoft Windows Server 2019 Microsoft Windows Server 2022 Microso…	Windows Server Update Service (WSUS) の改ざんの脆弱性	CWE-20 不適切な入力確認	CVE-2026-26154	2026-04-27 10:52	2026-04-14	Show	GitHub Exploit DB Packet Storm

3572	6.5	警告 Network	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Microsoft Local Security Authority Subsystem Service の情報漏えいの脆弱性	CWE-126 バッファオーバーリード	CVE-2026-26155	2026-04-27 10:52	2026-04-14	Show	GitHub Exploit DB Packet Storm

3573	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows Hyper-V のリモートでコードが実行される脆弱性	CWE-122 CWE-125 CWE-20	CVE-2026-26156	2026-04-27 10:51	2026-04-14	Show	GitHub Exploit DB Packet Storm

3574	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	リモートデスクトップライセンスサービスの特権昇格の脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-26159	2026-04-27 10:51	2026-04-14	Show	GitHub Exploit DB Packet Storm

3575	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	リモートデスクトップライセンスサービスの特権昇格の脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-26160	2026-04-27 10:51	2026-04-14	Show	GitHub Exploit DB Packet Storm

3576	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 11 23h2 Microsoft Windows 11 26h1 Microsoft Windows 10 1809 Microsoft Wind…	Windows Sensor Data Service の特権昇格の脆弱性	CWE-20 CWE-822	CVE-2026-26161	2026-04-27 10:51	2026-04-14	Show	GitHub Exploit DB Packet Storm

3577	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows OLE の特権の昇格の脆弱性	CWE-843 型の取り違え	CVE-2026-26162	2026-04-27 10:51	2026-04-14	Show	GitHub Exploit DB Packet Storm

3578	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows カーネルの特権の昇格の脆弱性	CWE-415 二重解放	CVE-2026-26163	2026-04-27 10:51	2026-04-14	Show	GitHub Exploit DB Packet Storm

3579	7	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows 11 26h1 Microsoft Windows Server 2025 Microsoft Windows 11 24h2 Microsoft Wind…	Windows シェルの特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-26165	2026-04-27 10:51	2026-04-14	Show	GitHub Exploit DB Packet Storm

3580	7	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows 11 26h1 Microsoft Windows Server 2025 Microsoft Windows 11 24h2 Microsoft Wind…	Windows シェルの特権の昇格の脆弱性	CWE-415 二重解放	CVE-2026-26166	2026-04-27 10:51	2026-04-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347331	-	elinks links university_of_kansas	elinks links lynx	CRLF injection vulnerability in Lynx 2.8.4 and earlier allows remote attackers to inject false HTTP headers into an HTTP request that is provided on the command line, via a URL containing encoded car…	NVD-CWE-Other	CVE-2002-1405	2016-10-18 11:26	2003-02-19	Show	GitHub Exploit DB Packet Storm

347332	-	inter7	qmailadmin	Buffer overflow in qmailadmin allows local users to gain privileges via a long QMAILADMIN_TEMPLATEDIR environment variable.	NVD-CWE-Other	CVE-2002-1414	2016-10-18 11:26	2003-04-11	Show	GitHub Exploit DB Packet Storm

347333	-	debian hp redhat	debian_linux secure_os linux	Memory leak in ypdb_open in yp_db.c for ypserv before 2.5 in the NIS package 3.9 and earlier allows remote attackers to cause a denial of service (memory consumption) via a large number of requests f…	NVD-CWE-Other	CVE-2002-1232	2016-10-18 11:25	2002-11-4	Show	GitHub Exploit DB Packet Storm

347334	-	apache	http_server	A regression error in the Debian distributions of the apache-ssl package (before 1.3.9 on Debian 2.2, and before 1.3.26 on Debian 3.0), for Apache 1.3.27 and earlier, allows local users to read or mo…	NVD-CWE-Other	CVE-2002-1233	2016-10-18 11:25	2002-11-4	Show	GitHub Exploit DB Packet Storm

347335	-	linksys	befsr41	The remote management web server for Linksys BEFSR41 EtherFast Cable/DSL Router before firmware 1.42.7 allows remote attackers to cause a denial of service (crash) via an HTTP request to Gozila.cgi w…	NVD-CWE-Other	CVE-2002-1236	2016-10-18 11:25	2002-11-12	Show	GitHub Exploit DB Packet Storm

347336	-	qnx	rtos	QNX Neutrino RTOS 6.2.0 uses the PATH environment variable to find and execute the cp program while operating at raised privileges, which allows local users to gain privileges by modifying the PATH t…	NVD-CWE-Other	CVE-2002-1239	2016-10-18 11:25	2002-11-12	Show	GitHub Exploit DB Packet Storm

347337	-	francisco_burzi	php-nuke	SQL injection vulnerability in PHP-Nuke before 6.0 allows remote authenticated users to modify the database and gain privileges via the "bio" argument to modules.php.	NVD-CWE-Other	CVE-2002-1242	2016-10-18 11:25	2002-11-12	Show	GitHub Exploit DB Packet Storm

347338	-	pablo_software_solutions	pablo_ftp_server	Format string vulnerability in Pablo FTP Server 1.5, 1.3, and possibly other versions, allows remote attackers to cause a denial of service and possibly execute arbitrary code via format strings in t…	NVD-CWE-Other	CVE-2002-1244	2016-10-18 11:25	2002-11-12	Show	GitHub Exploit DB Packet Storm

347339	-	frank_mcingvale	luxman	Maped in LuxMan 0.41 uses the user-provided search path to find and execute the gzip program, which allows local users to modify /dev/mem and gain privileges via a modified PATH environment variable …	NVD-CWE-Other	CVE-2002-1245	2016-10-18 11:25	2002-11-12	Show	GitHub Exploit DB Packet Storm

347340	-	kde lisa	klisa lisa kde	Buffer overflow in LISa allows local users to gain access to a raw socket via a long LOGNAME environment variable for the resLISa daemon.	NVD-CWE-Other	CVE-2002-1247	2016-10-18 11:25	2002-11-29	Show	GitHub Exploit DB Packet Storm