Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1351	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows テレフォニーサービスの特権昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-40382	2026-05-18 12:06	2026-05-12	Show	GitHub Exploit DB Packet Storm

1352	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows 共通ログファイルシステムドライバーの特権の昇格の脆弱性	CWE-191 整数アンダーフロー	CVE-2026-40397	2026-05-18 12:06	2026-05-12	Show	GitHub Exploit DB Packet Storm

1353	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows リモートデスクトップサービスの特権昇格の脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-40398	2026-05-18 12:06	2026-05-12	Show	GitHub Exploit DB Packet Storm

1354	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows TCP/IP の特権昇格の脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-40399	2026-05-18 12:06	2026-05-12	Show	GitHub Exploit DB Packet Storm

1355	7.1	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows TCP/IP のサービス拒否の脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-40401	2026-05-18 12:06	2026-05-12	Show	GitHub Exploit DB Packet Storm

1356	9.3	緊急 Local	マイクロソフト	Microsoft Windows 11 23h2 Microsoft Windows Server 2022	Windows Hyper-V の特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-40402	2026-05-18 12:06	2026-05-12	Show	GitHub Exploit DB Packet Storm

1357	8.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows グラフィックスコンポーネントのリモートでコードが実行される脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-40403	2026-05-18 12:06	2026-05-12	Show	GitHub Exploit DB Packet Storm

1358	7.5	重要 Network	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows 11 24h2 Microsoft Windows 11 26h1 Microsoft Windows Server 2025	Windows TCP/IP のサービス拒否の脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-40405	2026-05-18 12:06	2026-05-12	Show	GitHub Exploit DB Packet Storm

1359	7.5	重要 Network	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows TCP/IP の情報漏えいの脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-40406	2026-05-18 12:06	2026-05-12	Show	GitHub Exploit DB Packet Storm

1360	7.8	重要 Local	マイクロソフト	Microsoft Windows 11 25h2 Microsoft Windows Server 2016 Microsoft Windows 10 1809 Microsoft Windows 11 23h2 Microsoft Wind…	Windows 共通ログファイルシステムドライバーの特権の昇格の脆弱性	CWE-122 ヒープオーバーフロー	CVE-2026-40407	2026-05-18 12:06	2026-05-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
354351	-	symantec	norton_antivirus	Symantec AntiVirus 9 Corporate Edition allows local users to gain privileges via the "Scan for viruses" option, which launches a help window with raised privileges, a re-introduction of a vulnerabili…	NVD-CWE-Other	CVE-2005-2017	2008-09-6 05:50	2005-08-30	Show	GitHub Exploit DB Packet Storm

354352	-	freebsd	freebsd	ipfw in FreeBSD 5.4, when running on Symmetric Multi-Processor (SMP) or Uni Processor (UP) systems with the PREEMPTION kernel option enabled, does not sufficiently lock certain resources while perfor…	NVD-CWE-Other	CVE-2005-2019	2008-09-6 05:50	2005-07-5	Show	GitHub Exploit DB Packet Storm

354353	-	cpanel	cpanel	Cross-site scripting (XSS) vulnerability in cPanel 9.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the user parameter in the login page.	NVD-CWE-Other	CVE-2005-2021	2008-09-6 05:50	2005-06-20	Show	GitHub Exploit DB Packet Storm

354354	-	vipul	razor-agents	Vipul Razor Agents (razor-agents) before 2.70 allows remote attackers to cause a denial of service via (1) certain "unusual HTML messages" or (2) "certain malformed headers" such as Content-Type.	NVD-CWE-Other	CVE-2005-2024	2008-09-6 05:50	2005-06-17	Show	GitHub Exploit DB Packet Storm

354355	-	enterasys	vertical_horizon-2402s	Enterasys Vertical Horizon VH-2402S before firmware 2.05.05.09 has a hard-coded account and password for debugging, which allows remote attackers to gain privileges.	NVD-CWE-Other	CVE-2005-2026	2008-09-6 05:50	2005-06-16	Show	GitHub Exploit DB Packet Storm

354356	-	enterasys	vertical_horizon-2402s	Enterasys Vertical Horizon VH-2402S before firmware 2.05.05.09 does not properly restrict certain debugging commands to the ADMIN account, which could allow attackers to obtain sensitive information …	NVD-CWE-Other	CVE-2005-2027	2008-09-6 05:50	2005-06-16	Show	GitHub Exploit DB Packet Storm

354357	-	amarok	web_frontend	amaroK Web Frontend 1.3 stores the globals.inc file under the web root without a .php extension and insufficient access control, which allows remote attackers to obtain the database username and pass…	NVD-CWE-Other	CVE-2005-2029	2008-09-6 05:50	2005-06-17	Show	GitHub Exploit DB Packet Storm

354358	-	socialmpn	socialmpn	Multiple SQL injection vulnerabilities in socialMPN allow remote attackers to execute arbitrary SQL commands via (1) the sid parameter to article.php, (2) uname parameter to user.php, (3) siteid para…	NVD-CWE-Other	CVE-2005-2031	2008-09-6 05:50	2005-06-16	Show	GitHub Exploit DB Packet Storm

354359	-	fortibus	fortibus_cms	Fortibus CMS 4.0.0 allows remote attackers to modify information of other users, including Admin, via the "My info" page.	NVD-CWE-Other	CVE-2005-2038	2008-09-6 05:50	2005-06-20	Show	GitHub Exploit DB Packet Storm

354360	-	nanoblogger	nanoblogger	Unknown vulnerability in "various plugins" for NanoBlogger 3.2.1 and earlier allows remote attackers to execute arbitrary commands.	NVD-CWE-Other	CVE-2005-2039	2008-09-6 05:50	2005-06-19	Show	GitHub Exploit DB Packet Storm