Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
133491 7.8 重要
Local 		FastStone Soft FastStone Image Viewer FastStone Image Viewer における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2020-35845 2021-10-5 17:22 2020-12-30 Show GitHub Exploit DB Packet Storm
133492 7.8 重要
Local 		FastStone Soft FastStone Image Viewer FastStone Image Viewer における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2020-35844 2021-10-5 17:21 2020-12-30 Show GitHub Exploit DB Packet Storm
133493 5.5 警告
Local 		FastStone Soft FastStone Image Viewer FastStone Image Viewer における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2020-35843 2021-10-5 17:21 2020-12-30 Show GitHub Exploit DB Packet Storm
133494 6.1 警告
Network 		MISP project Malware Information Sharing Platform (MISP) MISP におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2020-24085 2021-10-5 17:21 2020-07-14 Show GitHub Exploit DB Packet Storm
133495 7.5 重要
Network 		1C Company 1C:Enterprise 1C:Enterprise における認証情報の不十分な保護に関する脆弱性 CWE-522
認証情報の不十分な保護 		CVE-2021-3131 2021-10-5 17:07 2021-01-13 Show GitHub Exploit DB Packet Storm
133496 8.1 重要
Network 		Open-iSCSI tcmu-runner Open-iSCSI tcmu-runner におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2021-3139 2021-10-5 16:57 2021-01-13 Show GitHub Exploit DB Packet Storm
133497 7.8 重要
Local 		Canonical
Linux		 Ubuntu
Linux Kernel 		Linux Kernel における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2020-16119 2021-10-5 16:19 2020-06-17 Show GitHub Exploit DB Packet Storm
133498 7.5 重要
Local 		日立
インテル		 RV3000
HA8000V シリーズ
2nd Generation Intel Xeon
Intel Xeon
Intel Core X-series 		Intel 製 BIOS のテスト設計機能に権限昇格の脆弱性 CWE-453
変数の安全ではないデフォルト値への初期化 		CVE-2021-0144 2021-10-5 16:15 2021-07-16 Show GitHub Exploit DB Packet Storm
133499 8.8 重要
Local 		Debian
Flatpak		 Debian GNU/Linux
Flatpak 		Flatpak におけるインジェクションに関する脆弱性 CWE-74
インジェクション 		CVE-2021-21261 2021-10-5 15:24 2021-01-14 Show GitHub Exploit DB Packet Storm
133500 - - 日立 Hitachi Tuning Manager
Hitachi Infrastructure Analytics Advisor
Hitachi Ops Center Analyzer 		Hitachi Tuning Manager、Hitachi Infrastructure Analytics Advisor および Hitachi Ops Center Analyzer における情報露出の脆弱性 CWE-noinfo
情報不足 		- 2021-10-5 15:09 2021-10-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
241 4.6 MEDIUM
Network 		- - Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network. New CWE-79
Cross-site Scripting 		CVE-2026-45467 2026-06-10 02:17 2026-06-10 Show GitHub Exploit DB Packet Storm
242 3.3 LOW
Local 		- - Heap-based buffer overflow in Microsoft Office Word allows an unauthorized attacker to disclose information locally. New CWE-122
Heap-based Buffer Overflow 		CVE-2026-45466 2026-06-10 02:17 2026-06-10 Show GitHub Exploit DB Packet Storm
243 5.4 MEDIUM
Network 		- - Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network. New CWE-79
Cross-site Scripting 		CVE-2026-45465 2026-06-10 02:17 2026-06-10 Show GitHub Exploit DB Packet Storm
244 5.4 MEDIUM
Network 		- - Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network. New CWE-79
Cross-site Scripting 		CVE-2026-45464 2026-06-10 02:17 2026-06-10 Show GitHub Exploit DB Packet Storm
245 8.4 HIGH
Local 		- - Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally. New CWE-121
CWE-191
Stack-based Buffer Overflow
 Integer Underflow (Wrap or Wraparound) 		CVE-2026-45463 2026-06-10 02:17 2026-06-10 Show GitHub Exploit DB Packet Storm
246 4.6 MEDIUM
Network 		- - Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network. New CWE-79
Cross-site Scripting 		CVE-2026-45462 2026-06-10 02:17 2026-06-10 Show GitHub Exploit DB Packet Storm
247 8.4 HIGH
Local 		- - Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally. New CWE-416
 Use After Free 		CVE-2026-45461 2026-06-10 02:17 2026-06-10 Show GitHub Exploit DB Packet Storm
248 4.7 MEDIUM
Local 		- - Out-of-bounds read in Microsoft Office allows an unauthorized attacker to disclose information locally. New CWE-126
 Buffer Over-read 		CVE-2026-45460 2026-06-10 02:17 2026-06-10 Show GitHub Exploit DB Packet Storm
249 3.3 LOW
Local 		- - Protection mechanism failure in Microsoft Office Excel allows an unauthorized attacker to bypass a security feature locally. New CWE-693
 Protection Mechanism Failure 		CVE-2026-45459 2026-06-10 02:17 2026-06-10 Show GitHub Exploit DB Packet Storm
250 8.4 HIGH
Local 		- - Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally. New CWE-416
 Use After Free 		CVE-2026-45458 2026-06-10 02:17 2026-06-10 Show GitHub Exploit DB Packet Storm