Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3221 5.5 警告
Local 		マイクロソフト Microsoft Word Microsoft Edge for Android のスプーフィングの脆弱性 CWE-284
CWE-noinfo
CVE-2026-41101 2026-05-18 11:31 2026-05-12 Show GitHub Exploit DB Packet Storm
3222 5.5 警告
Local 		マイクロソフト Microsoft PowerPoint Microsoft PowerPoint for Android のスプーフィングの脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-41102 2026-05-18 11:31 2026-05-12 Show GitHub Exploit DB Packet Storm
3223 7.4 重要
Network 		Outlook.com Microsoft Edge Chromium Microsoft Edge (Chromium ベース) の情報漏えいの脆弱性 CWE-610
CWE-73
CVE-2026-41107 2026-05-18 11:31 2026-05-12 Show GitHub Exploit DB Packet Storm
3224 8.8 重要
Network 		マイクロソフト Visual Studio Code GitHub Copilot と Visual Studio Code セキュリティ機能バイパスの脆弱性 CWE-74
インジェクション 		CVE-2026-41109 2026-05-18 11:31 2026-05-12 Show GitHub Exploit DB Packet Storm
3225 7.4 重要
Network 		Open Knowledge Foundation CKAN Open Knowledge FoundationのCKANにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2026-41132 2026-05-18 11:31 2026-05-13 Show GitHub Exploit DB Packet Storm
3226 6.1 警告
Network 		Open Knowledge Foundation CKAN Open Knowledge FoundationのCKANにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2026-41255 2026-05-18 11:31 2026-05-13 Show GitHub Exploit DB Packet Storm
3227 9.8 緊急
Network 		Apache Software Foundation Apache Tomcat Apache Software FoundationのApache Tomcatにおける入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2026-41293 2026-05-18 11:31 2026-05-12 Show GitHub Exploit DB Packet Storm
3228 5 警告
Local 		マイクロソフト Visual Studio Code マイクロソフトのVisual Studio Codeにおける複数の脆弱性 CWE-200
CWE-59
CWE-79
CWE-79
CVE-2026-41610 2026-05-18 11:31 2026-05-12 Show GitHub Exploit DB Packet Storm
3229 3.3
Local 		マイクロソフト Visual Studio Code Visual Studio Code のリモートでコードが実行される脆弱性 CWE-77
CWE-79
CWE-80
CVE-2026-41611 2026-05-18 11:30 2026-05-12 Show GitHub Exploit DB Packet Storm
3230 8.8 重要
Network 		マイクロソフト Visual Studio Code マイクロソフトのVisual Studio Codeにおける複数の脆弱性 CWE-384
CWE-384
CWE-78
CVE-2026-41613 2026-05-18 11:30 2026-05-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345411 - x.org
xfree86_project
gentoo 		x11r6
xdm
linux 		XDM in XFree86 opens a chooserFd TCP socket even when DisplayManager.requestPort is 0, which could allow remote attackers to connect to the port, in violation of the intended restrictions. NVD-CWE-Other
CVE-2004-0419 2017-10-11 10:29 2004-08-18 Show GitHub Exploit DB Packet Storm
345412 - andrew_tridgell rsync rsync before 2.6.1 does not properly sanitize paths when running a read/write daemon without using chroot, which allows remote attackers to write files outside of the module's path. NVD-CWE-Other
CVE-2004-0426 2017-10-11 10:29 2004-07-7 Show GitHub Exploit DB Packet Storm
345413 - linux linux_kernel Unknown vulnerability in Linux before 2.4.26 for IA64 allows local users to cause a denial of service, with unknown impact. NOTE: due to a typo, this issue was accidentally assigned CVE-2004-0477. … NVD-CWE-Other
CVE-2004-0447 2017-10-11 10:29 2004-08-6 Show GitHub Exploit DB Packet Storm
345414 - larry_wall perl Race condition in the rmtree function in the File::Path module in Perl 5.6.1 and 5.8.4 sets read/write permissions for the world, which allows local users to delete arbitrary files and directories, a… NVD-CWE-Other
CVE-2004-0452 2017-10-11 10:29 2004-12-21 Show GitHub Exploit DB Packet Storm
345415 - redhat enterprise_linux The linux-2.4.21-mlock.patch in Red Hat Enterprise Linux 3 does not properly maintain the mlock page count when one process unlocks pages that belong to another process, which allows local users to m… NVD-CWE-Other
CVE-2004-0491 2017-10-11 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
345416 - avaya
redhat 		cvlan
enterprise_linux
enterprise_linux_desktop
linux_advanced_workstation 		Multiple extfs backend scripts for GNOME virtual file system (VFS) before 1.0.1 may allow remote attackers to perform certain unauthorized actions via a gnome-vfs URI. NVD-CWE-Other
CVE-2004-0494 2017-10-11 10:29 2004-11-23 Show GitHub Exploit DB Packet Storm
345417 - avaya
gentoo
linux
redhat
suse
conectiva 		converged_communications_server
modular_messaging_message_storage_server
linux
linux_kernel
enterprise_linux
suse_linux
intuity_audix
suse_email_server
suse_linux_admin-cd_for… 		Multiple unknown vulnerabilities in Linux kernel 2.4 and 2.6 allow local users to gain privileges or access kernel memory, as found by the Sparse source code checking tool. NVD-CWE-Other
CVE-2004-0495 2017-10-11 10:29 2004-08-6 Show GitHub Exploit DB Packet Storm
345418 - mandrakesoft
conectiva
gentoo
linux
redhat
suse
trustix 		mandrake_multi_network_firewall
linux
linux_kernel
mandrake_linux
mandrake_linux_corporate_server
enterprise_linux
suse_linux
secure_linux 		Unknown vulnerability in Linux kernel 2.x may allow local users to modify the group ID of files, such as NFS exported files in kernel 2.4. NVD-CWE-Other
CVE-2004-0497 2017-10-11 10:29 2004-12-6 Show GitHub Exploit DB Packet Storm
345419 - rob_flynn
gentoo
mandrakesoft 		gaim
linux
mandrake_linux 		Buffer overflow in the MSN protocol plugins (1) object.c and (2) slp.c for Gaim before 0.82 allows remote attackers to cause a denial of service and possibly execute arbitrary code via MSNSLP protoco… NVD-CWE-Other
CVE-2004-0500 2017-10-11 10:29 2004-09-28 Show GitHub Exploit DB Packet Storm
345420 - sgi
squirrelmail 		propack
squirrelmail 		Multiple cross-site scripting (XSS) vulnerabilities in SquirrelMail 1.4.2 allow remote attackers to execute arbitrary script as other users and possibly steal authentication information via multiple … NVD-CWE-Other
CVE-2004-0519 2017-10-11 10:29 2004-08-18 Show GitHub Exploit DB Packet Storm