Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2491	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows Win32k の特権の昇格の脆弱性	CWE-190 CWE-416	CVE-2026-34333	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

2492	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows TCP/IP の特権昇格の脆弱性	CWE-362 競合状態	CVE-2026-34334	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

2493	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows DWM Core ライブラリの情報漏えいの脆弱性	CWE-126 バッファオーバーリード	CVE-2026-34336	2026-05-18 12:17	2026-05-12	Show	GitHub Exploit DB Packet Storm

2494	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Wind…	Windows Cloud Files Mini Filter ドライバーの特権の昇格の脆弱性	CWE-362 CWE-416	CVE-2026-34337	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

2495	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows テレフォニーサービスの特権昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-34338	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

2496	5.5	警告 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows ライトウェイトディレクトリアクセスプロトコル (LDAP) のサービス拒否の脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-34339	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

2497	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Windows Server 2022 Microsoft Wind…	Windows Projected File System の特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-34340	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

2498	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows Link-Layer Discovery Protocol (LLDP) の特権昇格の脆弱性	CWE-415 二重解放	CVE-2026-34341	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

2499	7	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows 印刷スプーラーの特権の昇格の脆弱性	CWE-362 競合状態	CVE-2026-34342	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

2500	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows アプリケーション ID (AppID) のサブシステムの特権昇格の脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-34343	2026-05-18 12:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
344971	-	open_webmail sgi squirrelmail	open_webmail propack squirrelmail	Cross-site scripting (XSS) vulnerability in mime.php for SquirrelMail before 1.4.3 allows remote attackers to insert arbitrary HTML and script via the content-type mail header, as demonstrated using …	NVD-CWE-Other	CVE-2004-0520	2017-10-11 10:29	2004-08-18	Show	GitHub Exploit DB Packet Storm

344972	-	sgi squirrelmail	propack squirrelmail	SQL injection vulnerability in SquirrelMail before 1.4.3 RC1 allows remote attackers to execute unauthorized SQL statements, with unknown impact, probably via abook_database.php.	NVD-CWE-Other	CVE-2004-0521	2017-10-11 10:29	2004-08-18	Show	GitHub Exploit DB Packet Storm

344973	-	mandrakesoft suse conectiva engardelinux gentoo linux	mandrake_multi_network_firewall suse_email_server suse_linux_admin-cd_for_firewall suse_linux_connectivity_server suse_linux_database_server suse_linux_firewall_cd suse_linux_firewa…	The e1000 driver for Linux kernel 2.4.26 and earlier does not properly initialize memory before using it, which allows local users to read portions of kernel memory. NOTE: this issue was originally …	NVD-CWE-Other	CVE-2004-0535	2017-10-11 10:29	2004-08-6	Show	GitHub Exploit DB Packet Storm

344974	-	sox conectiva gentoo redhat	sox linux enterprise_linux enterprise_linux_desktop fedora_core	Multiple buffer overflows in the st_wavstartread function in wav.c for Sound eXchange (SoX) 12.17.2 through 12.17.4 allow remote attackers to execute arbitrary code via certain WAV file header fields.	NVD-CWE-Other	CVE-2004-0557	2017-10-11 10:29	2004-08-6	Show	GitHub Exploit DB Packet Storm

344975	-	avaya gentoo linux redhat suse conectiva	converged_communications_server modular_messaging_message_storage_server linux linux_kernel enterprise_linux suse_linux intuity_audix suse_email_server suse_linux_admin-cd_for…	Linux kernel 2.4.x and 2.6.x for x86 allows local users to cause a denial of service (system crash), possibly via an infinite loop that triggers a signal handler with a certain sequence of fsave and …	NVD-CWE-Other	CVE-2004-0554	2017-10-11 10:29	2004-08-6	Show	GitHub Exploit DB Packet Storm

344976	-	mandrakesoft gentoo linux trustix	mandrake_multi_network_firewall linux linux_kernel mandrake_linux mandrake_linux_corporate_server secure_linux	Floating point information leak in the context switch code for Linux 2.4.x only checks the MFH bit but does not verify the FPH owner, which allows local users to read register values of other process…	NVD-CWE-Other	CVE-2004-0565	2017-10-11 10:29	2004-12-6	Show	GitHub Exploit DB Packet Storm

344977	-	mandrakesoft redhat suse	mandrake_linux mandrake_linux_corporate_server fedora_core suse_linux	Insecure permissions for the /proc/scsi/qla2300/HbaApiNode file in Linux allows local users to cause a denial of service.	NVD-CWE-Other	CVE-2004-0587	2017-10-11 10:29	2004-08-6	Show	GitHub Exploit DB Packet Storm

344978	-	greg_roelofs	libpng	The png_handle_iCCP function in libpng 1.2.5 and earlier allows remote attackers to cause a denial of service (application crash) via a certain PNG image that triggers a null dereference.	NVD-CWE-Other	CVE-2004-0598	2017-10-11 10:29	2004-11-23	Show	GitHub Exploit DB Packet Storm

344979	-	greg_roelofs	libpng	Multiple integer overflows in the (1) png_read_png in pngread.c or (2) png_handle_sPLT functions in pngrutil.c or (3) progressive display image reading capability in libpng 1.2.5 and earlier allow re…	NVD-CWE-Other	CVE-2004-0599	2017-10-11 10:29	2004-11-23	Show	GitHub Exploit DB Packet Storm

344980	-	samba trustix	samba secure_linux	Buffer overflow in the Samba Web Administration Tool (SWAT) in Samba 3.0.2 to 3.0.4 allows remote attackers to execute arbitrary code via an invalid base-64 character during HTTP basic authentication.	NVD-CWE-Other	CVE-2004-0600	2017-10-11 10:29	2004-07-27	Show	GitHub Exploit DB Packet Storm