Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
5821 7.8 重要
Local 		マイクロソフト Microsoft 365 Apps
Office Long Term Servicing Channel (LTSC) 		Microsoft Word のリモートでコードが実行される脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-33095 2026-05-1 10:48 2026-04-14 Show GitHub Exploit DB Packet Storm
5822 9.3 緊急
Network 		マイクロソフト Microsoft 365 Copilot Microsoft 365 Copilot の特権昇格の脆弱性 CWE-601
オープンリダイレクト 		CVE-2026-33102 2026-05-1 10:48 2026-04-23 Show GitHub Exploit DB Packet Storm
5823 8.4 重要
Local 		マイクロソフト Microsoft 365 Apps
Office Long Term Servicing Channel (LTSC) 		Microsoft Word のリモートでコードが実行される脆弱性 CWE-822
信頼性のないポインタデリファレンス 		CVE-2026-33114 2026-05-1 10:48 2026-04-14 Show GitHub Exploit DB Packet Storm
5824 8.4 重要
Local 		マイクロソフト Microsoft 365 Apps
Office Long Term Servicing Channel (LTSC) 		Microsoft Word のリモートでコードが実行される脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-33115 2026-05-1 10:47 2026-04-14 Show GitHub Exploit DB Packet Storm
5825 7.8 重要
Local 		ggml.ai llama.cpp ggml.aiのllama.cppにおける複数の脆弱性 CWE-122
CWE-190
CVE-2026-33298 2026-05-1 10:47 2026-03-24 Show GitHub Exploit DB Packet Storm
5826 6.1 警告
Local 		マイクロソフト Microsoft 365 Apps
Office Long Term Servicing Channel (LTSC) 		Microsoft Word の情報漏えいの脆弱性 CWE-125
境界外読み取り 		CVE-2026-33822 2026-05-1 10:47 2026-04-14 Show GitHub Exploit DB Packet Storm
5827 5.2 警告
Physics 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおけるPRNG におけるシードの不正な使用に関する脆弱性 CWE-335
PRNGにおけるシードの不正な使用 		CVE-2026-3503 2026-05-1 10:47 2026-03-19 Show GitHub Exploit DB Packet Storm
5828 9.8 緊急
Network 		wolfSSL Inc. wolfSSL wolfSSL Inc.のwolfSSLにおける複数の脆弱性 CWE-122
CWE-787
CWE-787
CVE-2026-3548 2026-05-1 10:47 2026-03-19 Show GitHub Exploit DB Packet Storm
5829 5.9 警告
Network 		VMware Spring AI VMwareのSpring AIにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-40966 2026-05-1 10:47 2026-04-28 Show GitHub Exploit DB Packet Storm
5830 8.6 重要
Network 		VMware Spring AI VMwareのSpring AIにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-40967 2026-05-1 10:47 2026-04-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347331 - google chrome Google Chrome before 4.0.249.89 attempts to make direct connections to web sites when all configured proxy servers are unavailable, which allows remote HTTP servers to obtain potentially sensitive in… CWE-200
Information Exposure 		CVE-2010-0643 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
347332 - google chrome Google Chrome before 4.0.249.89, when a SOCKS 5 proxy server is configured, sends DNS queries directly, which allows remote DNS servers to obtain potentially sensitive information about the identity … CWE-200
Information Exposure 		CVE-2010-0644 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
347333 - google chrome Multiple integer overflows in factory.cc in Google V8 before r3560, as used in Google Chrome before 4.0.249.89, allow remote attackers to execute arbitrary code in the Chrome sandbox via crafted use … CWE-189
Numeric Errors 		CVE-2010-0645 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
347334 - google chrome Multiple integer signedness errors in factory.cc in Google V8 before r3560, as used in Google Chrome before 4.0.249.89, allow remote attackers to execute arbitrary code in the Chrome sandbox via craf… CWE-189
Numeric Errors 		CVE-2010-0646 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
347335 - apple
google 		webkit
chrome 		WebKit before r53525, as used in Google Chrome before 4.0.249.89, allows remote attackers to execute arbitrary code in the Chrome sandbox via a malformed RUBY element, as demonstrated by a <ruby>><ta… CWE-94
Code Injection 		CVE-2010-0647 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
347336 - mozilla firefox Mozilla Firefox, possibly before 3.6, allows remote attackers to discover a redirect's target URL, for the session of a specific user of a web site, by placing the site's URL in the HREF attribute of… CWE-200
Information Exposure 		CVE-2010-0648 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
347337 - google chrome Integer overflow in the CrossCallParamsEx::CreateFromBuffer function in sandbox/src/crosscall_server.cc in Google Chrome before 4.0.249.89 allows attackers to leverage renderer access to cause a deni… CWE-189
Numeric Errors 		CVE-2010-0649 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
347338 - apple
google 		webkit
chrome
safari 		WebKit before r52784, as used in Google Chrome before 4.0.249.78 and Apple Safari before 4.0.5, permits cross-origin loading of CSS stylesheets even when the stylesheet download has an incorrect MIME… CWE-200
Information Exposure 		CVE-2010-0651 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
347339 - mozilla firefox
seamonkey
thunderbird 		Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 permit cross-origin loading of CSS stylesheets even when … CWE-200
Information Exposure 		CVE-2010-0654 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
347340 - google chrome Use-after-free vulnerability in Google Chrome before 4.0.249.78 allows user-assisted remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors i… CWE-399
 Resource Management Errors 		CVE-2010-0655 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm