Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2911 7.8 重要
Local 		マイクロソフト Microsoft Office Online Server
Microsoft Excel
Microsoft Office
Office Long Term Servicing Channel (LTSC)
Microsoft 365 Apps 		Microsoft Excel のリモートでコードが実行される脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-40362 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
2912 8.4 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Office Long Term Servicing Channel (LTSC) 		Microsoft Office のリモート コードが実行される脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-40363 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
2913 8.4 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Microsoft Word
Office Long Term Servicing Channel (LTSC) 		Microsoft Word のリモートでコードが実行される脆弱性 CWE-122
CWE-843
CWE-908
CVE-2026-40364 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
2914 8.4 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Microsoft Word
Office Long Term Servicing Channel (LTSC) 		Microsoft Word のリモートでコードが実行される脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-40366 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
2915 8.4 重要
Local 		マイクロソフト Microsoft Office
Office Long Term Servicing Channel (LTSC)
Microsoft 365 Apps
Microsoft SharePoint Server
Microsoft Word 		Microsoft Word のリモートでコードが実行される脆弱性 CWE-822
信頼性のないポインタデリファレンス 		CVE-2026-40367 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
2916 7.8 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Office Long Term Servicing Channel (LTSC) 		Microsoft Office クイック実行の特権の昇格の脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-40418 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
2917 7.8 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Office Long Term Servicing Channel (LTSC) 		Microsoft Office クイック実行の特権の昇格の脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-40419 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
2918 8.8 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Office Long Term Servicing Channel (LTSC) 		Microsoft Office クイック実行の特権の昇格の脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-40420 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
2919 5.8 警告
Network 		traefik traefik traefikにおける送信データへの重要な情報の挿入に関する脆弱性 CWE-201
送信データへの重要な情報の挿入 		CVE-2026-41181 2026-05-21 10:52 2026-05-15 Show GitHub Exploit DB Packet Storm
2920 7.5 重要
Network 		DHTMLX PDF Export Module DHTMLXのPDF Export Moduleにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-41552 2026-05-21 10:52 2026-05-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
344931 - sun netdynamics ndcgi.exe in Netdynamics 4.x through 5.x, and possibly earlier versions, allows remote attackers to steal session IDs and hijack user sessions by reading the SPIDERSESSION and uniqueValue variables f… NVD-CWE-Other
CVE-2001-0922 2017-12-19 11:29 2001-11-26 Show GitHub Exploit DB Packet Storm
344932 - redhat redhat_package_manager RPM Package Manager 4.0.x through 4.0.2.x allows an attacker to execute arbitrary code via corrupted data in the RPM file when the file is queried. NVD-CWE-Other
CVE-2001-0923 2017-12-19 11:29 2001-10-25 Show GitHub Exploit DB Packet Storm
344933 - ibm informix_web_datablade Directory traversal vulnerability in ifx CGI program in Informix Web DataBlade allows remote attackers to read arbitrary files via a .. (dot dot) in the LO parameter. NVD-CWE-Other
CVE-2001-0924 2017-12-19 11:29 2001-11-22 Show GitHub Exploit DB Packet Storm
344934 - macromedia jrun SSIFilter in Allaire JRun 3.1, 3.0 and 2.3.3 allows remote attackers to obtain source code for Java server pages (.jsp) and other files in the web root via an HTTP request for a non-existent SSI page… NVD-CWE-Other
CVE-2001-0926 2017-12-19 11:29 2001-11-28 Show GitHub Exploit DB Packet Storm
344935 - cooolsoft powerftp Directory traversal vulnerability in Cooolsoft PowerFTP Server 2.03 allows attackers to list or read arbitrary files and directories via a .. (dot dot) in (1) LS or (2) GET. NVD-CWE-Other
CVE-2001-0931 2017-12-19 11:29 2001-11-28 Show GitHub Exploit DB Packet Storm
344936 - cooolsoft powerftp Buffer overflow in Cooolsoft PowerFTP Server 2.03 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long command. NVD-CWE-Other
CVE-2001-0932 2017-12-19 11:29 2001-11-28 Show GitHub Exploit DB Packet Storm
344937 - volition red_faction THQ Volition Red Faction Game allows remote attackers to cause a denial of service (hang) of a client or server via packets to UDP port 7755. NVD-CWE-Other
CVE-2001-0952 2017-12-19 11:29 2001-12-7 Show GitHub Exploit DB Packet Storm
344938 - nara_vision kebi_community Kebi WebMail allows remote attackers to access the administrator menu and gain privileges via the /a/ hidden directory, which is installed under the web document root. NVD-CWE-Other
CVE-2001-0953 2017-12-19 11:29 2001-12-8 Show GitHub Exploit DB Packet Storm
344939 - xfree86_project x11r6 Buffer overflow in fbglyph.c in XFree86 before 4.2.0, related to glyph clipping for large origins, allows attackers to cause a denial of service and possibly gain privileges via a large number of cha… NVD-CWE-Other
CVE-2001-0955 2017-12-19 11:29 2001-09-22 Show GitHub Exploit DB Packet Storm
344940 - speechio speechd speechd 0.54 and earlier, with the Festival or rsynth speech synthesis package, allows attackers to execute arbitrary commands via shell metacharacters. NVD-CWE-Other
CVE-2001-0956 2017-12-19 11:29 2001-09-11 Show GitHub Exploit DB Packet Storm