Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3631 5.7 警告
Physics 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 11 23h2
Microsoft Windows 11 26h1
Microsoft Windows 10 1809
Microsoft Wind… 		Windows 生体認証サービスのセキュリティ機能のバイパスの脆弱性 CWE-362
競合状態 		CVE-2026-32088 2026-04-23 10:13 2026-04-14 Show GitHub Exploit DB Packet Storm
3632 7.8 重要
Local 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 10 1607
Microsoft Windows Server 2016
Microsoft Windows 11 23h2
Microsoft … 		Windows Speech Brokered API の特権昇格の脆弱性 CWE-362
CWE-416
CVE-2026-32089 2026-04-23 10:13 2026-04-14 Show GitHub Exploit DB Packet Storm
3633 7 重要
Local 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 10 1607
Microsoft Windows Server 2016
Microsoft Windows 11 23h2
Microsoft … 		Windows Speech Brokered API の特権昇格の脆弱性 CWE-362
CWE-416
CVE-2026-32090 2026-04-23 10:13 2026-04-14 Show GitHub Exploit DB Packet Storm
3634 7 重要
Local 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 10 1607
Microsoft Windows Server 2016
Microsoft Windows 11 23h2
Microsoft … 		Microsoft Resilient File System の特権昇格の脆弱性 CWE-362
CWE-416
CVE-2026-32091 2026-04-23 10:13 2026-04-14 Show GitHub Exploit DB Packet Storm
3635 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 23h2
Microsoft Windows 10 22h2
Microsoft Windows 10 21h2
Microsoft Windows Server 2025
Microsoft Wind… 		デスクトップ ウィンドウ マネージャーの特権昇格の脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-32155 2026-04-23 10:13 2026-04-14 Show GitHub Exploit DB Packet Storm
3636 7.5 重要
Network 		Apache Software Foundation Apache Airflow Apache Software FoundationのApache Airflowにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-32228 2026-04-23 10:13 2026-04-18 Show GitHub Exploit DB Packet Storm
3637 3.7
Network 		Apache Software Foundation Apache Airflow Apache Software FoundationのApache Airflowにおける誤った領域へのリソースの漏えいに関する脆弱性 CWE-668
誤った領域へのリソースの漏えい 		CVE-2026-32690 2026-04-23 10:13 2026-04-18 Show GitHub Exploit DB Packet Storm
3638 7.8 重要
Local 		Curtis Galloway libexif Libexif ProjectのLibexifにおける整数アンダーフローの脆弱性 CWE-191
整数アンダーフロー 		CVE-2026-32775 2026-04-23 10:13 2026-03-16 Show GitHub Exploit DB Packet Storm
3639 3.1
Network 		Weblate Weblate Weblateにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-33212 2026-04-23 10:13 2026-04-15 Show GitHub Exploit DB Packet Storm
3640 4.3 警告
Network 		Weblate Weblate Weblateにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-33214 2026-04-23 10:13 2026-04-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347551 - sawmill sawmill Sawmill for Solaris 6.2.14 and earlier creates the AdminPassword file with world-writable permissions, which allows local users to gain privileges by modifying the file. NVD-CWE-Other
CVE-2002-0265 2016-10-18 11:17 2002-05-29 Show GitHub Exploit DB Packet Storm
347552 - thunderstone_software texis Thunderstone Texis CGI script allows remote attackers to obtain the full path of the web root via a request for a nonexistent file, which generates an error message that includes the full pathname. NVD-CWE-Other
CVE-2002-0266 2016-10-18 11:17 2002-05-29 Show GitHub Exploit DB Packet Storm
347553 - sips sips preferences.php in Simple Internet Publishing System (SIPS) before 0.3.1 allows remote attackers to gain administrative privileges via a linebreak in the "theme" field followed by the Status::admin c… NVD-CWE-Other
CVE-2002-0267 2016-10-18 11:17 2002-05-29 Show GitHub Exploit DB Packet Storm
347554 - identix biologon Identix BioLogon 3 allows users with physical access to the system to gain administrative privileges by using CTRL-ALT-DEL and running a "Browse" function, which runs Explorer with SYSTEM privileges. NVD-CWE-Other
CVE-2002-0268 2016-10-18 11:17 2002-05-29 Show GitHub Exploit DB Packet Storm
347555 - apache-ssl
mod_ssl 		apache-ssl
mod_ssl 		The dbm and shm session cache code in mod_ssl before 2.8.7-1.3.23, and Apache-SSL before 1.3.22+1.46, does not properly initialize memory using the i2d_SSL_SESSION function, which allows remote attac… NVD-CWE-Other
CVE-2002-0082 2016-10-18 11:16 2002-03-15 Show GitHub Exploit DB Packet Storm
347556 - cvs cvs CVS before 1.10.8 does not properly initialize a global variable, which allows remote attackers to cause a denial of service (server crash) via the diff capability. NVD-CWE-Other
CVE-2002-0092 2016-10-18 11:16 2002-03-15 Show GitHub Exploit DB Packet Storm
347557 - boozt boozt_standard Buffer overflow in index.cgi administration interface for Boozt! Standard 0.9.8 allows local users to execute arbitrary code via a long name field when creating a new banner. NVD-CWE-Other
CVE-2002-0098 2016-10-18 11:16 2002-03-25 Show GitHub Exploit DB Packet Storm
347558 - michael_lamont savant_webserver Buffer overflow in Michael Lamont Savant Web Server 3.0 allows remote attackers to cause a denial of service (crash) via a long HTTP request to the cgi-bin directory in which the CGI program name con… NVD-CWE-Other
CVE-2002-0099 2016-10-18 11:16 2002-03-25 Show GitHub Exploit DB Packet Storm
347559 - aol aol_server AOL AOLserver 3.4.2 Win32 allows remote attackers to bypass authentication and read password-protected files via a URL that directly references the file. NVD-CWE-Other
CVE-2002-0100 2016-10-18 11:16 2002-03-25 Show GitHub Exploit DB Packet Storm
347560 - oracle application_server_web_cache An installer program for Oracle9iAS Web Cache 2.0.0.x creates executable and configuration files with insecure permissions, which allows local users to gain privileges by (1) running webcached or (2)… NVD-CWE-Other
CVE-2002-0103 2016-10-18 11:16 2002-03-25 Show GitHub Exploit DB Packet Storm