Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4621	7.8	重要 Local	マイクロソフト	Microsoft 365 Apps Office Long Term Servicing Channel (LTSC) Microsoft PowerPoint Microsoft Office	Microsoft PowerPoint のリモートでコードが実行される脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-32200	2026-04-30 11:03	2026-04-14	Show	GitHub Exploit DB Packet Storm

4622	7.8	重要 Local	デル	Alienware Command Center	デルのAlienware Command Centerにおける最小権限の違反に関する脆弱性	CWE-272 最小権限の違反	CVE-2026-32655	2026-04-30 11:03	2026-04-27	Show	GitHub Exploit DB Packet Storm

4623	2.7	低 Network	GitHub	Enterprise Server	GitHubのEnterprise Serverにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-3307	2026-04-30 11:03	2026-04-21	Show	GitHub Exploit DB Packet Storm

4624	5.5	警告 Local	マイクロソフト	Microsoft Dynamics 365	Microsoft Dynamics 365 の(オンプレミス) で、情報漏えいの脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-33103	2026-04-30 11:03	2026-04-14	Show	GitHub Exploit DB Packet Storm

4625	10	緊急 Network	Apache Software Foundation	Apache Camel	Apache Software FoundationのApache Camelにおける動的に決定されたオブジェクト属性の不適切に制御された変更に関する脆弱性	CWE-915 動的に決定されたオブジェクト属性の不適切に制御された変更	CVE-2026-33453	2026-04-30 11:03	2026-04-27	Show	GitHub Exploit DB Packet Storm

4626	9.4	緊急 Network	Apache Software Foundation	Apache Camel	Apache Software FoundationのApache Camelにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-33454	2026-04-30 11:03	2026-04-27	Show	GitHub Exploit DB Packet Storm

4627	7.5	重要 Network	Linaro	OP-TEE Trusted OS	LinaroのOP-TEE Trusted OSにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-33662	2026-04-30 11:03	2026-04-24	Show	GitHub Exploit DB Packet Storm

4628	7.4	重要 Network	OpenProject	OpenProject	OpenProjectにおける過度な認証試行の不適切な制限に関する脆弱性	CWE-307 過度な認証試行の不適切な制限	CVE-2026-33667	2026-04-30 11:03	2026-04-15	Show	GitHub Exploit DB Packet Storm

4629	6.7	警告 Local	デル	data domain operating system	デルのdata domain operating systemにおける権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2026-35154	2026-04-30 11:03	2026-04-20	Show	GitHub Exploit DB Packet Storm

4630	3.3	低 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおける指定された機能の不適切な提供に関する脆弱性	CWE-684 指定された機能の不適切な提供	CVE-2026-35379	2026-04-30 11:03	2026-04-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347131	-	debian	debian_linux	snmptrapfmt in Debian 3.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary log file.	NVD-CWE-Other	CVE-2006-0050	2017-07-20 10:29	2006-03-23	Show	GitHub Exploit DB Packet Storm

347132	-	tony_cook	imager	Imager (libimager-perl) before 0.50 allows user-assisted attackers to cause a denial of service (segmentation fault) by writing a 2- or 4-channel JPEG image (or a 2-channel TGA image) to a scalar, wh…	CWE-399 Resource Management Errors	CVE-2006-0053	2017-07-20 10:29	2006-04-11	Show	GitHub Exploit DB Packet Storm

347133	-	freebsd	freebsd	The ispell_op function in ee on FreeBSD 4.10 to 6.0 uses predictable filenames and does not confirm which file is being written, which allows local users to overwrite arbitrary files via a symlink at…	NVD-CWE-Other	CVE-2006-0055	2017-07-20 10:29	2006-01-12	Show	GitHub Exploit DB Packet Storm

347134	-	livedata	iccp_server	Heap-based buffer overflow in the ISO Transport Service over TCP (RFC 1006) implementation of LiveData ICCP Server before 5.00.035 allows remote attackers to cause a denial of service or execute arbi…	NVD-CWE-Other	CVE-2006-0059	2017-07-20 10:29	2006-05-20	Show	GitHub Exploit DB Packet Storm

347135	-	livedata	iccp_server	This vulnerability is addressed in the following product release: LiveData, ICCP Server, 5.00.035	NVD-CWE-Other	CVE-2006-0059	2017-07-20 10:29	2006-05-20	Show	GitHub Exploit DB Packet Storm

347136	-	stefan_frings	sms_server_tools	Format string vulnerability in the logging code of SMS Server Tools (smstools) 1.14.8 and earlier allows local users to execute arbitrary code via unspecified attack vectors.	NVD-CWE-Other	CVE-2006-0083	2017-07-20 10:29	2006-01-10	Show	GitHub Exploit DB Packet Storm

347137	-	sblog	sblog	Multiple cross-site scripting (XSS) vulnerabilities in sBLOG 0.7.1 Beta 20051202 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) p and (2) keyword parameters in …	CWE-79 Cross-site Scripting	CVE-2006-0101	2017-07-20 10:29	2006-01-6	Show	GitHub Exploit DB Packet Storm

347138	-	idea_development_id_oy	timecan_cms	SQL injection vulnerability in Timecan CMS allows remote attackers to execute arbitrary SQL commands via the viewID parameter. NOTE: the provenance of this information is unknown; the details are ob…	NVD-CWE-Other	CVE-2006-0107	2017-07-20 10:29	2006-01-7	Show	GitHub Exploit DB Packet Storm

347139	-	idea_development_id_oy	timecan_cms	SQL injection vulnerability in mcl_login.asp in Timecan CMS allows remote attackers to execute arbitrary SQL commands via the email parameter. NOTE: the provenance of this information is unknown; th…	NVD-CWE-Other	CVE-2006-0108	2017-07-20 10:29	2006-01-7	Show	GitHub Exploit DB Packet Storm

347140	-	boxcar_media	shopping_cart	Cross-site scripting vulnerability in index.php in Boxcar Media Shopping Cart allows remote attackers to inject arbitrary web script or HTML via the (1) parent or (2) pg parameter.	NVD-CWE-Other	CVE-2006-0111	2017-07-20 10:29	2006-01-7	Show	GitHub Exploit DB Packet Storm