Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1651 7.8 重要
Local 		マイクロソフト Microsoft Office Online Server
Microsoft Excel
Microsoft Office
Office Long Term Servicing Channel (LTSC)
Microsoft 365 Apps 		Microsoft Excel の情報漏えいの脆弱性 CWE-125
境界外読み取り 		CVE-2026-40360 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
1652 8.4 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Microsoft Word
Office Long Term Servicing Channel (LTSC) 		Microsoft Word のリモートでコードが実行される脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-40361 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
1653 7.8 重要
Local 		マイクロソフト Microsoft Office Online Server
Microsoft Excel
Microsoft Office
Office Long Term Servicing Channel (LTSC)
Microsoft 365 Apps 		Microsoft Excel のリモートでコードが実行される脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-40362 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
1654 8.4 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Office Long Term Servicing Channel (LTSC) 		Microsoft Office のリモート コードが実行される脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-40363 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
1655 8.4 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Microsoft Word
Office Long Term Servicing Channel (LTSC) 		Microsoft Word のリモートでコードが実行される脆弱性 CWE-122
CWE-843
CWE-908
CVE-2026-40364 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
1656 8.4 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Microsoft Word
Office Long Term Servicing Channel (LTSC) 		Microsoft Word のリモートでコードが実行される脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-40366 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
1657 8.4 重要
Local 		マイクロソフト Microsoft Office
Office Long Term Servicing Channel (LTSC)
Microsoft 365 Apps
Microsoft SharePoint Server
Microsoft Word 		Microsoft Word のリモートでコードが実行される脆弱性 CWE-822
信頼性のないポインタデリファレンス 		CVE-2026-40367 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
1658 7.8 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Office Long Term Servicing Channel (LTSC) 		Microsoft Office クイック実行の特権の昇格の脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-40418 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
1659 7.8 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Office Long Term Servicing Channel (LTSC) 		Microsoft Office クイック実行の特権の昇格の脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-40419 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
1660 8.8 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Office Long Term Servicing Channel (LTSC) 		Microsoft Office クイック実行の特権の昇格の脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-40420 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345101 - ibm tivoli_secureway_policy_director Directory traversal vulnerability in IBM Tivoli WebSEAL Policy Director 3.01 through 3.7.1 allows remote attackers to read arbitrary files or directories via encoded .. (dot dot) sequences containing… NVD-CWE-Other
CVE-2001-0982 2017-10-10 10:29 2001-07-23 Show GitHub Exploit DB Packet Storm
345102 - nathan_neulinger cgiwrap Cross-site scripting vulnerability in CGIWrap before 3.7 allows remote attackers to execute arbitrary Javascript on other web clients by causing the Javascript to be inserted into error messages that… NVD-CWE-Other
CVE-2001-0987 2017-10-10 10:29 2001-07-22 Show GitHub Exploit DB Packet Storm
345103 - netbsd netbsd sendmsg function in NetBSD 1.3 through 1.5 allows local users to cause a denial of service (kernel trap or panic) via a msghdr structure with a large msg_controllen length. NVD-CWE-Other
CVE-2001-0993 2017-10-10 10:29 2001-07-24 Show GitHub Exploit DB Packet Storm
345104 - phpprojekt phpprojekt PHProjekt before 2.4a allows remote attackers to perform actions as other PHProjekt users by modifying the ID number in an HTTP request to PHProjekt CGI programs. NVD-CWE-Other
CVE-2001-0995 2017-10-10 10:29 2001-08-31 Show GitHub Exploit DB Packet Storm
345105 - ibm hacmp
aix 		IBM HACMP 4.4 allows remote attackers to cause a denial of service via a completed TCP connection to HACMP ports (e.g., using a port scan) that does not send additional data, which causes a failure i… NVD-CWE-Other
CVE-2001-0998 2017-10-10 10:29 2001-09-24 Show GitHub Exploit DB Packet Storm
345106 - redhat linux The default configuration of the DVI print filter (dvips) in Red Hat Linux 7.0 and earlier does not run dvips in secure mode when dvips is executed by lpd, which could allow remote attackers to gain … NVD-CWE-Other
CVE-2001-1002 2017-10-10 10:29 2001-08-31 Show GitHub Exploit DB Packet Storm
345107 - sambar sambar_server Directory traversal vulnerability in pagecount CGI script in Sambar Server before 5.0 beta 5 allows remote attackers to overwrite arbitrary files via a .. (dot dot) attack on the page parameter. NVD-CWE-Other
CVE-2001-1010 2017-10-10 10:29 2001-07-22 Show GitHub Exploit DB Packet Storm
345108 - mambo mambo_site_server index2.php in Mambo Site Server 3.0.0 through 3.0.5 allows remote attackers to gain Mambo administrator privileges by setting the PHPSESSID parameter and providing the appropriate administrator infor… NVD-CWE-Other
CVE-2001-1011 2017-10-10 10:29 2001-07-25 Show GitHub Exploit DB Packet Storm
345109 - pgp corporate_desktop
e-business_server
freeware
personal_security
pgp 		PGP Corporate Desktop before 7.1, Personal Security before 7.0.3, Freeware before 7.0.3, and E-Business Server before 7.1 does not properly display when invalid userID's are used to sign a message, w… NVD-CWE-Other
CVE-2001-1016 2017-10-10 10:29 2001-09-4 Show GitHub Exploit DB Packet Storm
345110 - freebsd freebsd rmuser utility in FreeBSD 4.2 and 4.3 creates a copy of the master.passwd file with world-readable permissions while updating the original file, which could allow local users to gain privileges by re… NVD-CWE-Other
CVE-2001-1017 2017-10-10 10:29 2001-09-4 Show GitHub Exploit DB Packet Storm