Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4331	7	重要 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows 11 26h1 Microsoft Windows Server 2025 Microsoft Windows 11 24h2 Microsoft Wind…	AppLocker フィルタードライバー (applockerfltr.sys) の特権昇格の脆弱性	CWE-362 競合状態	CVE-2026-25184	2026-04-27 10:52	2026-04-14	Show	GitHub Exploit DB Packet Storm

4332	7.1	重要 Network	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	リモートデスクトップのスプーフィングの脆弱性	CWE-357 危険な操作に対する不十分な警告	CVE-2026-26151	2026-04-27 10:52	2026-04-14	Show	GitHub Exploit DB Packet Storm

4333	7	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Microsoft Cryptographic Services の特権の昇格の脆弱性	CWE-922 重要な情報のセキュアでない格納	CVE-2026-26152	2026-04-27 10:52	2026-04-14	Show	GitHub Exploit DB Packet Storm

4334	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 11 23h2 Microsoft Windows 11 26h1 Microsoft Windows 10 1809 Microsoft Wind…	Windows 暗号化ファイルシステム (EFS) の特権昇格の脆弱性	CWE-125 境界外読み取り	CVE-2026-26153	2026-04-27 10:52	2026-04-14	Show	GitHub Exploit DB Packet Storm

4335	7.5	重要 Network	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows Server 2025 Microsoft Windows Server 2019 Microsoft Windows Server 2022 Microso…	Windows Server Update Service (WSUS) の改ざんの脆弱性	CWE-20 不適切な入力確認	CVE-2026-26154	2026-04-27 10:52	2026-04-14	Show	GitHub Exploit DB Packet Storm

4336	6.5	警告 Network	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Microsoft Local Security Authority Subsystem Service の情報漏えいの脆弱性	CWE-126 バッファオーバーリード	CVE-2026-26155	2026-04-27 10:52	2026-04-14	Show	GitHub Exploit DB Packet Storm

4337	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows Hyper-V のリモートでコードが実行される脆弱性	CWE-122 CWE-125 CWE-20	CVE-2026-26156	2026-04-27 10:51	2026-04-14	Show	GitHub Exploit DB Packet Storm

4338	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	リモートデスクトップライセンスサービスの特権昇格の脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-26159	2026-04-27 10:51	2026-04-14	Show	GitHub Exploit DB Packet Storm

4339	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	リモートデスクトップライセンスサービスの特権昇格の脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-26160	2026-04-27 10:51	2026-04-14	Show	GitHub Exploit DB Packet Storm

4340	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 11 23h2 Microsoft Windows 11 26h1 Microsoft Windows 10 1809 Microsoft Wind…	Windows Sensor Data Service の特権昇格の脆弱性	CWE-20 CWE-822	CVE-2026-26161	2026-04-27 10:51	2026-04-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347401	-	rsa	securid	Directory traversal vulnerability in WebID in RSA Security SecurID 5.0 as used by ACE/Agent for Windows, Windows NT and Windows 2000 allows attackers to access restricted resources via URL-encoded (1…	NVD-CWE-Other	CVE-2001-1461	2017-07-11 10:29	2001-10-22	Show	GitHub Exploit DB Packet Storm

347402	-	rsa	securid	WebID in RSA Security SecurID 5.0 as used by ACE/Agent for Windows, Windows NT and Windows 2000 allows attackers to cause the WebID agent to enter debug mode via a URL containing null characters, whi…	NVD-CWE-Other	CVE-2001-1462	2017-07-11 10:29	2001-10-24	Show	GitHub Exploit DB Packet Storm

347403	-	businessobjects	crystal_reports	Crystal Reports, when displaying data for a password protected database using HTML pages, embeds the username and password in cleartext in the HTML page and the URL, which allows remote attackers to …	NVD-CWE-Other	CVE-2001-1464	2017-07-11 10:29	2001-01-10	Show	GitHub Exploit DB Packet Storm

347404	-	van_dyke_technologies	securecrt	Buffer overflow in VanDyke SecureCRT before 3.4.2, when using the SSH-1 protocol, allows remote attackers to execute arbitrary code via a long (1) username or (2) password.	NVD-CWE-Other	CVE-2001-1466	2017-07-11 10:29	2001-12-30	Show	GitHub Exploit DB Packet Storm

347405	-	don_libes	expect	mkpasswd in expect 5.2.8, as used by Red Hat Linux 6.2 through 7.0, seeds its random number generator with its process ID, which limits the space of possible seeds and makes it easier for attackers t…	NVD-CWE-Other	CVE-2001-1467	2017-07-11 10:29	2001-04-11	Show	GitHub Exploit DB Packet Storm

347406	-	secure_reality	phpsecurepages	PHP remote file inclusion vulnerability in checklogin.php in phpSecurePages 0.24 and earlier allows remote attackers to execute arbitrary PHP code by modifying the cfgProgDir parameter to reference a…	NVD-CWE-Other	CVE-2001-1468	2017-07-11 10:29	2001-02-7	Show	GitHub Exploit DB Packet Storm

347407	-	ssh	ssh	The RC4 stream cipher as used by SSH1 allows remote attackers to modify messages without detection by XORing the original message's cyclic redundancy check (CRC) with the CRC of a mask consisting of …	NVD-CWE-Other	CVE-2001-1469	2017-07-11 10:29	2001-01-18	Show	GitHub Exploit DB Packet Storm

347408	-	ssh	ssh	The IDEA cipher as implemented by SSH1 does not protect the final block of a message against modification, which allows remote attackers to modify the block without detection by changing its cyclic r…	NVD-CWE-Other	CVE-2001-1470	2017-07-11 10:29	2001-01-18	Show	GitHub Exploit DB Packet Storm

347409	-	phpbb_group	phpbb	SQL injection vulnerability in prefs.php in phpBB 1.4.0 and 1.4.1 allows remote authenticated users to execute arbitrary SQL commands and gain administrative access via the viewemail parameter.	NVD-CWE-Other	CVE-2001-1472	2017-07-11 10:29	2001-08-3	Show	GitHub Exploit DB Packet Storm

347410	-	ssh	ssh	The SSH-1 protocol allows remote servers to conduct man-in-the-middle attacks and replay a client challenge response to a target server by creating a Session ID that matches the Session ID of the tar…	CWE-310 Cryptographic Issues	CVE-2001-1473	2017-07-11 10:29	2001-01-18	Show	GitHub Exploit DB Packet Storm