Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 21, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3151 7.8 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Office Long Term Servicing Channel (LTSC) 		Microsoft Office クイック実行の特権の昇格の脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-40419 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
3152 8.8 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Office Long Term Servicing Channel (LTSC) 		Microsoft Office クイック実行の特権の昇格の脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-40420 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
3153 5.8 警告
Network 		traefik traefik traefikにおける送信データへの重要な情報の挿入に関する脆弱性 CWE-201
送信データへの重要な情報の挿入 		CVE-2026-41181 2026-05-21 10:52 2026-05-15 Show GitHub Exploit DB Packet Storm
3154 7.5 重要
Network 		DHTMLX PDF Export Module DHTMLXのPDF Export Moduleにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-41552 2026-05-21 10:52 2026-05-15 Show GitHub Exploit DB Packet Storm
3155 9.1 緊急
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおけるLDAP インジェクションの脆弱性 CWE-90
LDAP インジェクション 		CVE-2026-41919 2026-05-21 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
3156 9.1 緊急
Network 		LangGenius, Inc. Dify LangGenius, Inc.のDifyにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-41947 2026-05-21 10:52 2026-05-18 Show GitHub Exploit DB Packet Storm
3157 9.4 緊急
Network 		LangGenius, Inc. Dify LangGenius, Inc.のDifyにおける相対パストラバーサルの脆弱性 CWE-23
相対的パストラバーサル 		CVE-2026-41948 2026-05-21 10:52 2026-05-18 Show GitHub Exploit DB Packet Storm
3158 7.5 重要
Network 		LangGenius, Inc. Dify LangGenius, Inc.のDifyにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-41949 2026-05-21 10:51 2026-05-18 Show GitHub Exploit DB Packet Storm
3159 7.5 重要
Network 		twisted twisted twistedにおける複数の脆弱性 CWE-400
CWE-407
CVE-2026-42304 2026-05-21 10:51 2026-05-13 Show GitHub Exploit DB Packet Storm
3160 4.3 警告
Network 		Mattermost, Inc. Mattermost Server Mattermost, Inc.のMattermost Serverにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-4273 2026-05-21 10:51 2026-05-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
307701 - microsoft sharepoint_server
excel
excel_viewer
office_compatibility_pack
office 		Microsoft Excel 2007 SP2; Excel in Office 2007 SP2; Excel Viewer SP2; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2; and Excel Services on Office SharePoint Server 2… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2011-1990 2024-11-21 10:27 2011-09-15 Show GitHub Exploit DB Packet Storm
307702 - microsoft open_xml_file_format_converter
office
excel
excel_viewer
office_compatibility_pack 		Microsoft Excel 2003 SP3 and 2007 SP2; Excel in Office 2007 SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Excel Viewer SP2; and Office Compatibility Pack for Word, Excel,… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2011-1988 2024-11-21 10:27 2011-09-15 Show GitHub Exploit DB Packet Storm
307703 - microsoft office
open_xml_file_format_converter
excel
excel_viewer
office_compatibility_pack 		Array index error in Microsoft Excel 2003 SP3 and 2007 SP2; Excel in Office 2007 SP2; Excel 2010 Gold and SP1; Excel in Office 2010 Gold and SP1; Office 2004, 2008, and 2011 for Mac; Open XML File Fo… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2011-1987 2024-11-21 10:27 2011-09-15 Show GitHub Exploit DB Packet Storm
307704 - microsoft excel Use-after-free vulnerability in Microsoft Excel 2003 SP3 allows remote attackers to execute arbitrary code via a crafted spreadsheet, aka "Excel Use after Free WriteAV Vulnerability." CWE-399
 Resource Management Errors 		CVE-2011-1986 2024-11-21 10:27 2011-09-15 Show GitHub Exploit DB Packet Storm
307705 - microsoft office
open_xml_file_format_converter
sharepoint_server
excel
excel_viewer
office_compatibility_pack
excel_web_app 		Microsoft Excel 2003 SP3 and 2007 SP2; Excel in Office 2007 SP2; Excel 2010 Gold and SP1; Excel in Office 2010 Gold and SP1; Office 2004, 2008, and 2011 for Mac; Open XML File Format Converter for Ma… CWE-20
 Improper Input Validation  		CVE-2011-1989 2024-11-21 10:27 2011-09-15 Show GitHub Exploit DB Packet Storm
307706 - microsoft windows_server_2008
windows_server_2003
windows_2003_server 		WINS in Microsoft Windows Server 2003 SP2 and Server 2008 SP2, R2, and R2 SP1 allows local users to gain privileges by sending crafted packets over the loopback interface, aka "WINS Local Elevation o… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-1984 2024-11-21 10:27 2011-09-15 Show GitHub Exploit DB Packet Storm
307707 - microsoft office Microsoft Office 2007 SP2, and 2010 Gold and SP1, does not initialize an unspecified object pointer during the opening of Word documents, which allows remote attackers to execute arbitrary code via a… CWE-20
 Improper Input Validation  		CVE-2011-1982 2024-11-21 10:27 2011-09-15 Show GitHub Exploit DB Packet Storm
307708 - microsoft office Untrusted search path vulnerability in Microsoft Office 2003 SP3 and 2007 SP2 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a direc… NVD-CWE-Other
CVE-2011-1980 2024-11-21 10:27 2011-09-15 Show GitHub Exploit DB Packet Storm
307709 - microsoft sharepoint_services
sharepoint_foundation
sharepoint_server 		Cross-site scripting (XSS) vulnerability in Microsoft Office SharePoint Server 2010, Windows SharePoint Services 2.0 and 3.0 SP2, and SharePoint Foundation 2010 allows remote attackers to inject arbi… CWE-79
Cross-site Scripting 		CVE-2011-1893 2024-11-21 10:27 2011-09-15 Show GitHub Exploit DB Packet Storm
307710 - microsoft sharepoint_services
sharepoint_server
groove_server
groove
sharepoint_workspace
groove_data_bridge_server
forms_server
office_web_apps
sharepoint_foundation
groove_manageme… 		Microsoft Office Groove 2007 SP2, SharePoint Workspace 2010 Gold and SP1, Office Forms Server 2007 SP2, Office SharePoint Server 2007 SP2, Office SharePoint Server 2010 Gold and SP1, Office Groove Da… CWE-200
Information Exposure 		CVE-2011-1892 2024-11-21 10:27 2011-09-15 Show GitHub Exploit DB Packet Storm