Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4721	7.7	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows Server 2022 Microsoft Windows Server 2012 Microsoft Windows Server 2016	Windows BitLocker セキュリティ機能バイパスの脆弱性	CWE-20 不適切な入力確認	CVE-2026-27913	2026-04-24 11:32	2026-04-14	Show	GitHub Exploit DB Packet Storm

4722	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Microsoft 管理コンソールの特権昇格の脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-27914	2026-04-24 11:32	2026-04-14	Show	GitHub Exploit DB Packet Storm

4723	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows UPnP Device Host の特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-27915	2026-04-24 11:32	2026-04-14	Show	GitHub Exploit DB Packet Storm

4724	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows UPnP Device Host の特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-27916	2026-04-24 11:32	2026-04-14	Show	GitHub Exploit DB Packet Storm

4725	7	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows WFP NDIS ライトウェイトフィルタードライバー (wfplwfs.sys) の特権昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-27917	2026-04-24 11:32	2026-04-14	Show	GitHub Exploit DB Packet Storm

4726	7	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 11 23h2 Microsoft Windows 11 26h1 Microsoft Windows 10 1809 Microsoft Wind…	Windows シェルの特権の昇格の脆弱性	CWE-362 競合状態	CVE-2026-27918	2026-04-24 11:32	2026-04-14	Show	GitHub Exploit DB Packet Storm

4727	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows UPnP Device Host の特権の昇格の脆弱性	CWE-822 信頼性のないポインタデリファレンス	CVE-2026-27919	2026-04-24 11:32	2026-04-14	Show	GitHub Exploit DB Packet Storm

4728	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows UPnP Device Host の特権の昇格の脆弱性	CWE-822 信頼性のないポインタデリファレンス	CVE-2026-27920	2026-04-24 11:32	2026-04-14	Show	GitHub Exploit DB Packet Storm

4729	7	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	Windows TDI 翻訳ドライバー (tdx.sys) の特権昇格の脆弱性	CWE-362 CWE-416	CVE-2026-27921	2026-04-24 11:32	2026-04-14	Show	GitHub Exploit DB Packet Storm

4730	7	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 10 1607 Microsoft Windows Server 2016 Microsoft Windows 11 23h2 Microsoft …	WinSock 用 Windows Ancillary Function Driver の特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-27922	2026-04-24 11:32	2026-04-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
349381	-	eset_software	nod32_antivirus	Buffer overflow in Eset Software NOD32 for UNIX before 1.013 allows local users to execute arbitrary code via a long path name.	NVD-CWE-Other	CVE-2003-0062	2016-10-18 11:28	2003-02-19	Show	GitHub Exploit DB Packet Storm

349382	-	phorum	phorum	Cross-site scripting (XSS) vulnerability in read.php in Phorum 3.3.2a allows remote attackers to inject arbitrary web script or HTML via (1) the t parameter or (2) the body of an email response.	CWE-79 Cross-site Scripting	CVE-2002-2340	2016-10-18 11:28	2002-12-31	Show	GitHub Exploit DB Packet Storm

349383	-	joe_depasquale	bannermatic	Bannermatic 1, 2, and 3 stores the (1) ban.log, (2) ban.bak, (3) ban.dat and (4) banmat.pwd data files under the web document root with insufficient access control, which allows attackers to obtain s…	CWE-200 Information Exposure	CVE-2002-2342	2016-10-18 11:28	2002-12-31	Show	GitHub Exploit DB Packet Storm

349384	-	hughes_technologies	libhttpd	Buffer overflow in the httpdProcessRequest function in LibHTTPD 1.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP POST request.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2002-2400	2016-10-18 11:28	2002-12-31	Show	GitHub Exploit DB Packet Storm

349385	-	surecom	ep-4501	SURECOM broadband router EP-4501 uses a default SNMP read community string of "public" and a default SNMP read/write community string of "secret," which allows remote attackers to read and modify rou…	NVD-CWE-Other	CVE-2002-2402	2016-10-18 11:28	2002-12-31	Show	GitHub Exploit DB Packet Storm

349386	-	curtis_specialty_consulting	iispop	Buffer overflow in IISPop email server 1.161 and 1.181 allows remote attackers to cause a denial of service (crash) via a long request to the POP3 port (TCP port 110).	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2002-2404	2016-10-18 11:28	2002-12-31	Show	GitHub Exploit DB Packet Storm

349387	-	opera_software squid	opera squid	Opera 6.0.3, when using Squid 2.4 for HTTPS proxying, does not properly handle when accepting a non-global certificate authority (CA) certificate from a site and establishing a subsequent HTTPS conne…	NVD-CWE-Other	CVE-2002-2414	2016-10-18 11:28	2002-12-31	Show	GitHub Exploit DB Packet Storm

349388	-	openbsd	openbsd	Integer signedness error in select() on OpenBSD 3.1 and earlier allows local users to overwrite arbitrary kernel memory via a negative value for the size parameter, which satisfies the boundary check…	NVD-CWE-Other	CVE-2002-1420	2016-10-18 11:27	2003-04-11	Show	GitHub Exploit DB Packet Storm

349389	-	mywebserver	mywebserver	Buffer overflow in the search capability for MyWebServer 1.0.2 allows remote attackers to execute arbitrary code via a long searchTarget parameter.	NVD-CWE-Other	CVE-2002-1452	2016-10-18 11:27	2002-08-14	Show	GitHub Exploit DB Packet Storm

349390	-	mywebserver	mywebserver	Cross-site scripting (XSS) vulnerability in MyWebServer 1.0.2 allows remote attackers to insert script and HTML via a long request followed by the malicious script, which is echoed back to the user i…	NVD-CWE-Other	CVE-2002-1453	2016-10-18 11:27	2002-08-14	Show	GitHub Exploit DB Packet Storm