Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4641	9.8	緊急 Network	マイクロソフト	Microsoft Windows Server 2025 Microsoft Windows 11 25h2 Microsoft Windows 11 26h1 Microsoft Windows 11 24h2 Microsoft Wind…	Windows DNS クライアントのリモートでコードが実行される脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-41096	2026-05-18 11:31	2026-05-12	Show	GitHub Exploit DB Packet Storm

4642	6.7	警告 Local	マイクロソフト	Microsoft Windows Server 2025 Microsoft Windows 10 22h2 Microsoft Windows 11 25h2 Microsoft Windows Server 2022 Microsoft …	セキュアブートのセキュリティ機能のバイパスの脆弱性	CWE-1329 アップデートができないコンポーネントへの依存	CVE-2026-41097	2026-05-18 11:31	2026-05-12	Show	GitHub Exploit DB Packet Storm

4643	4.4	警告 Local	マイクロソフト	Microsoft 365 Copilot	Android 用の Microsoft 365 Copilot のスプーフィングの脆弱性	CWE-284 CWE-Other	CVE-2026-41100	2026-05-18 11:31	2026-05-12	Show	GitHub Exploit DB Packet Storm

4644	5.5	警告 Local	マイクロソフト	Microsoft Word	Microsoft Edge for Android のスプーフィングの脆弱性	CWE-284 CWE-noinfo	CVE-2026-41101	2026-05-18 11:31	2026-05-12	Show	GitHub Exploit DB Packet Storm

4645	5.5	警告 Local	マイクロソフト	Microsoft PowerPoint	Microsoft PowerPoint for Android のスプーフィングの脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-41102	2026-05-18 11:31	2026-05-12	Show	GitHub Exploit DB Packet Storm

4646	7.4	重要 Network	Outlook.com	Microsoft Edge Chromium	Microsoft Edge (Chromium ベース) の情報漏えいの脆弱性	CWE-610 CWE-73	CVE-2026-41107	2026-05-18 11:31	2026-05-12	Show	GitHub Exploit DB Packet Storm

4647	8.8	重要 Network	マイクロソフト	Visual Studio Code	GitHub Copilot と Visual Studio Code セキュリティ機能バイパスの脆弱性	CWE-74 インジェクション	CVE-2026-41109	2026-05-18 11:31	2026-05-12	Show	GitHub Exploit DB Packet Storm

4648	7.4	重要 Network	Open Knowledge Foundation	CKAN	Open Knowledge FoundationのCKANにおける証明書検証に関する脆弱性	CWE-295 不正な証明書検証	CVE-2026-41132	2026-05-18 11:31	2026-05-13	Show	GitHub Exploit DB Packet Storm

4649	6.1	警告 Network	Open Knowledge Foundation	CKAN	Open Knowledge FoundationのCKANにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-41255	2026-05-18 11:31	2026-05-13	Show	GitHub Exploit DB Packet Storm

4650	9.8	緊急 Network	Apache Software Foundation	Apache Tomcat	Apache Software FoundationのApache Tomcatにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-41293	2026-05-18 11:31	2026-05-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345371	-	xfree86_project	x11r6	Buffer overflow in fbglyph.c in XFree86 before 4.2.0, related to glyph clipping for large origins, allows attackers to cause a denial of service and possibly gain privileges via a large number of cha…	NVD-CWE-Other	CVE-2001-0955	2017-12-19 11:29	2001-09-22	Show	GitHub Exploit DB Packet Storm

345372	-	speechio	speechd	speechd 0.54 and earlier, with the Festival or rsynth speech synthesis package, allows attackers to execute arbitrary commands via shell metacharacters.	NVD-CWE-Other	CVE-2001-0956	2017-12-19 11:29	2001-09-11	Show	GitHub Exploit DB Packet Storm

345373	-	trend_micro	interscan_emanager interscan_viruswall	Buffer overflows in eManager plugin for Trend Micro InterScan VirusWall for NT 3.51 and 3.51J allow remote attackers to execute arbitrary code via long arguments to the CGI programs (1) register.dll,…	NVD-CWE-Other	CVE-2001-0958	2017-12-19 11:29	2001-09-12	Show	GitHub Exploit DB Packet Storm

345374	-	valve_software	half-life	Buffer overflow in client for Half-Life 1.1.0.8 and earlier allows malicious remote servers to execute arbitrary code via a long console command.	NVD-CWE-Other	CVE-2001-0964	2017-12-19 11:29	2001-09-20	Show	GitHub Exploit DB Packet Storm

345375	-	oracle	internet_directory	Format string vulnerabilities in Oracle Internet Directory Server (LDAP) 2.1.1.x and 3.0.1 allow remote attackers to execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.	NVD-CWE-Other	CVE-2001-0974	2017-12-19 11:29	2001-07-17	Show	GitHub Exploit DB Packet Storm

345376	-	oracle	internet_directory	Buffer overflow vulnerabilities in Oracle Internet Directory Server (LDAP) 2.1.1.x and 3.0.1 allow remote attackers to execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite.	NVD-CWE-Other	CVE-2001-0975	2017-12-19 11:29	2001-07-16	Show	GitHub Exploit DB Packet Storm

345377	-	hp	hp-ux	Buffer overflow in swverify in HP-UX 11.0, and possibly other programs, allows local users to gain privileges via a long command line argument.	NVD-CWE-Other	CVE-2001-0979	2017-12-19 11:29	2001-09-3	Show	GitHub Exploit DB Packet Storm

345378	-	hassan_consulting	shopping_cart	shop.pl in Hassan Consulting Shopping Cart 1.23 allows remote attackers to execute arbitrary commands via shell metacharacters in the "page" parameter.	NVD-CWE-Other	CVE-2001-0985	2017-12-19 11:29	2001-09-8	Show	GitHub Exploit DB Packet Storm

345379	-	microsoft	index_server	SQLQHit.asp sample file in Microsoft Index Server 2.0 allows remote attackers to obtain sensitive information such as the physical path, file attributes, or portions of source code by directly callin…	NVD-CWE-Other	CVE-2001-0986	2017-12-19 11:29	2001-09-14	Show	GitHub Exploit DB Packet Storm

345380	-	knox_software	arkeia	Arkeia backup server 4.2.8-2 and earlier creates its database files with world-writable permissions, which could allow local users to overwrite the files or obtain sensitive information.	NVD-CWE-Other	CVE-2001-0988	2017-12-19 11:29	2001-07-23	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed