Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4231	4.3	警告 Network	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows シェルのスプーフィングの脆弱性	CWE-693 保護メカニズムの不具合	CVE-2026-32202	2026-04-21 10:49	2026-04-14	Show	GitHub Exploit DB Packet Storm

4232	5.5	警告 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	ユニバーサルプラグアンドプレイ (upnp.dll) の情報漏えいの脆弱性	CWE-269 CWE-59	CVE-2026-32212	2026-04-21 10:49	2026-04-14	Show	GitHub Exploit DB Packet Storm

4233	5.5	警告 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	ユニバーサルプラグアンドプレイ (upnp.dll) の情報漏えいの脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-32214	2026-04-21 10:49	2026-04-14	Show	GitHub Exploit DB Packet Storm

4234	5.5	警告 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 11 23h2 Microsoft Windows 11 26h1 Microsoft Windows 10 1809 Microsoft Wind…	Windows カーネルの情報漏えいの脆弱性	CWE-532 ログファイルからの情報漏えい	CVE-2026-32215	2026-04-21 10:49	2026-04-14	Show	GitHub Exploit DB Packet Storm

4235	5.5	警告 Local	マイクロソフト	Microsoft Windows 11 26h1	Windows リダイレクトドライブバッファリングシステムのサービス拒否の脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-32216	2026-04-21 10:49	2026-04-14	Show	GitHub Exploit DB Packet Storm

4236	5.5	警告 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows カーネルの情報漏えいの脆弱性	CWE-532 ログファイルからの情報漏えい	CVE-2026-32217	2026-04-21 10:49	2026-04-14	Show	GitHub Exploit DB Packet Storm

4237	5.5	警告 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows 11 26h1 Microsoft Windows 10 22h2 Microsoft Windows 10 21h2 Microsoft Windows&…	Windows カーネルの情報漏えいの脆弱性	CWE-532 ログファイルからの情報漏えい	CVE-2026-32218	2026-04-21 10:49	2026-04-14	Show	GitHub Exploit DB Packet Storm

4238	7	重要 Local	マイクロソフト	Microsoft Windows 11 24h2 Microsoft Windows 11 26h1 Microsoft Windows Server 2025 Microsoft Windows 11 25h2	Microsoft Resilient File System の特権昇格の脆弱性	CWE-362 CWE-415	CVE-2026-32219	2026-04-21 10:49	2026-04-14	Show	GitHub Exploit DB Packet Storm

4239	9.8	緊急 Network	DataEase	DataEase	DataEaseにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-33082	2026-04-21 10:49	2026-04-16	Show	GitHub Exploit DB Packet Storm

4240	8.8	重要 Network	DataEase	DataEase	DataEaseにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-33083	2026-04-21 10:49	2026-04-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
161	3.7	LOW Network	-	-	Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13 fail to validate that the RefreshedToken differs from the original invite token during remote cluster invite confirmation which allows an aut… New	CWE-863 Incorrect Authorization	CVE-2026-4273	2026-05-19 02:32	2026-05-18	Show	GitHub Exploit DB Packet Storm

162	3.1	LOW Network	-	-	Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13 fail to enforce client identity binding during the OAuth authorization code redemption flow which allows an authenticated OAuth client to red… New	CWE-305 Authentication Bypass by Primary Weakness	CVE-2026-6334	2026-05-19 02:32	2026-05-18	Show	GitHub Exploit DB Packet Storm

163	4.3	MEDIUM Network	-	-	Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13, 11.4.x <= 11.4.3 fail to validate 7zip archive structure before processing which allows an authenticated attacker to cause server memory exh… New	CWE-789 Memory Allocation with Excessive Size Value	CVE-2026-6340	2026-05-19 02:32	2026-05-18	Show	GitHub Exploit DB Packet Storm

164	4.3	MEDIUM Network	-	-	Mattermost Plugins versions <=11.5 11.1.5 10.13.11 11.3.4.0 fail to have API-level checks on which groups the user can create issues or attach comments to which allows a user that is member of multip… New	CWE-863 Incorrect Authorization	CVE-2026-6341	2026-05-19 02:32	2026-05-18	Show	GitHub Exploit DB Packet Storm

165	4.3	MEDIUM Network	-	-	Mattermost Plugins versions <=11.5 11.1.5 10.13.11 11.3.4.0 fail to appropriately check for valid namespaces which allows plugin users to create subscriptions to groups that were not whitelisted via … New	CWE-863 Incorrect Authorization	CVE-2026-6342	2026-05-19 02:32	2026-05-18	Show	GitHub Exploit DB Packet Storm

166	4.3	MEDIUM Network	-	-	Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13, 11.4.x <= 11.4.3 Fail to enforce slash command trigger-word uniqueness during command updates which allows an authenticated team member with… New	CWE-863 Incorrect Authorization	CVE-2026-28732	2026-05-19 02:32	2026-05-18	Show	GitHub Exploit DB Packet Storm

167	6.5	MEDIUM Network	-	-	Mattermost Plugins versions <=11.5 11.1.5 10.13.11 11.3.4.0 fail to properly check for permissions when processing commands in the Gitlab plugin which allows normal users to uninstall instances or se… New	CWE-862 Missing Authorization	CVE-2026-3117	2026-05-19 02:32	2026-05-18	Show	GitHub Exploit DB Packet Storm

168	6.5	MEDIUM Network	-	-	Mattermost Desktop App versions <=6.1 6.0.1 5.4.13.0 fail to prevent an invalid URL from loading in a pop-up window in the Mattermost Desktop App which allows a malicious server owner to repeated cra… New	CWE-939 Improper Authorization in Handler for Custom URL Scheme	CVE-2026-3471	2026-05-19 02:32	2026-05-18	Show	GitHub Exploit DB Packet Storm

169	3.1	LOW Network	-	-	Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13 fail to check if {{team_id}} was being changed when updating playbooks, allowing users with only {{Manage Playbook Configurations}} permissio… New	CWE-863 Incorrect Authorization	CVE-2026-4286	2026-05-19 02:32	2026-05-18	Show	GitHub Exploit DB Packet Storm

170	3.5	LOW Network	-	-	Mattermost Desktop App versions <=6.1 6.0.1 5.4.13.0 fail to prevent server-rendered content from closing an underlying application view in the Mattermost Desktop App which allows a malicious server … New	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2026-4643	2026-05-19 02:32	2026-05-18	Show	GitHub Exploit DB Packet Storm