Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
219301	9	危険	VMware	-	VMware vCenter Server Appliance の Ruby vSphere Console における任意のコマンドを root として実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-3790	2014-06-3 15:20	2014-05-30	Show	GitHub Exploit DB Packet Storm

219302	7.5	危険	シトリックス・システムズ	-	Citrix VDI-In-A-Box における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2014-3780	2014-06-3 14:55	2014-05-27	Show	GitHub Exploit DB Packet Storm

219303	7.5	危険	Bitrix	-	Bitrix Site Manager 用 Bitrix e-Store モジュールにおける Cookie の値を推測される脆弱	CWE-287 不適切な認証	CVE-2013-6788	2014-06-3 14:09	2013-11-12	Show	GitHub Exploit DB Packet Storm

219304	5	警告	Open Information Security Foundation	-	Suricata におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-5919	2014-06-3 13:57	2013-09-24	Show	GitHub Exploit DB Packet Storm

219305	2.1	注意	David Bagley	-	xlockmore の checkPasswd および checkGroupXlockPasswds 関数におけるスクリーンロックを回避される脆弱性	CWE-Other その他	CVE-2013-4143	2014-06-3 13:52	2013-07-14	Show	GitHub Exploit DB Packet Storm

219306	5	警告	Nero	-	Nero MediaHome におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2012-5877	2014-06-3 12:09	2012-11-21	Show	GitHub Exploit DB Packet Storm

219307	5	警告	Nero	-	Nero MediaHome の NMMediaServerService.dll におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2012-5876	2014-06-3 12:04	2012-11-21	Show	GitHub Exploit DB Packet Storm

219308	5	警告	Alexis Sukrieh	-	Dancer の cookie メソッドにおける CRLF インジェクションの脆弱性	CWE-20 不適切な入力確認	CVE-2012-5572	2014-06-3 11:26	2012-11-15	Show	GitHub Exploit DB Packet Storm

219309	2.1	注意	The MATE Team	-	mate-settings-daemon のデフォルト設定におけるシステムのタイムゾーンを変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-5560	2014-06-3 11:16	2012-11-19	Show	GitHub Exploit DB Packet Storm

219310	4.3	警告	Wireshark	-	Wireshark の RLC 解析機能の epan/dissectors/packet-rlc におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2014-2283	2014-06-2 18:22	2014-03-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2311	8.8	HIGH Local	microsoft	365_apps office office_long_term_servicing_channel	Insufficient granularity of access control in Microsoft Office Click-To-Run allows an authorized attacker to elevate privileges locally.	CWE-1220 Insufficient Granularity of Access Control	CVE-2026-35436	2026-05-20 03:05	2026-05-13	Show	GitHub Exploit DB Packet Storm

2312	5.5	MEDIUM Local	microsoft	365_apps office office_long_term_servicing_channel word	Files or directories accessible to external parties in Microsoft Office Word allows an unauthorized attacker to disclose information locally.	CWE-552 Files or Directories Accessible to External Parties	CVE-2026-35440	2026-05-20 03:05	2026-05-13	Show	GitHub Exploit DB Packet Storm

2313	8.4	HIGH Local	microsoft	365_apps office office_long_term_servicing_channel	Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.	CWE-416 Use After Free	CVE-2026-40358	2026-05-20 03:05	2026-05-13	Show	GitHub Exploit DB Packet Storm

2314	7.8	HIGH Local	microsoft	365_apps excel office office_long_term_servicing_channel office_online_server	Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.	CWE-416 Use After Free	CVE-2026-40359	2026-05-20 03:05	2026-05-13	Show	GitHub Exploit DB Packet Storm

2315	7.8	HIGH Local	microsoft	365_apps excel office office_long_term_servicing_channel office_online_server	Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.	CWE-125 Out-of-bounds Read	CVE-2026-40360	2026-05-20 03:05	2026-05-13	Show	GitHub Exploit DB Packet Storm

2316	8.4	HIGH Local	microsoft	365_apps office office_long_term_servicing_channel word	Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.	CWE-416 Use After Free	CVE-2026-40361	2026-05-20 03:05	2026-05-13	Show	GitHub Exploit DB Packet Storm

2317	7.8	HIGH Local	microsoft	365_apps excel office office_long_term_servicing_channel office_online_server	Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.	CWE-122 Heap-based Buffer Overflow	CVE-2026-40362	2026-05-20 03:05	2026-05-13	Show	GitHub Exploit DB Packet Storm

2318	8.4	HIGH Local	microsoft	365_apps office office_long_term_servicing_channel	Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.	CWE-122 Heap-based Buffer Overflow	CVE-2026-40363	2026-05-20 03:05	2026-05-13	Show	GitHub Exploit DB Packet Storm

2319	8.4	HIGH Local	microsoft	365_apps office office_long_term_servicing_channel word	Access of resource using incompatible type ('type confusion') in Microsoft Office Word allows an unauthorized attacker to execute code locally.	CWE-122 CWE-843 CWE-908 Heap-based Buffer Overflow Type Confusion Use of Uninitialized Resource	CVE-2026-40364	2026-05-20 03:05	2026-05-13	Show	GitHub Exploit DB Packet Storm

2320	8.4	HIGH Local	microsoft	365_apps office office_long_term_servicing_channel word	Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.	CWE-416 Use After Free	CVE-2026-40366	2026-05-20 03:05	2026-05-13	Show	GitHub Exploit DB Packet Storm