Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1961 8.8 重要
Network 		マイクロソフト Microsoft SharePoint Server Microsoft SharePoint Server のリモートでコードが実行される脆弱性 CWE-1220
アクセス制御の不十分な粒度 		CVE-2026-40365 2026-05-15 11:01 2026-05-12 Show GitHub Exploit DB Packet Storm
1962 8 重要
Network 		マイクロソフト Microsoft SharePoint Server Microsoft SharePoint Server のリモートでコードが実行される脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-40368 2026-05-15 11:01 2026-05-12 Show GitHub Exploit DB Packet Storm
1963 5.5 警告
Local 		jqlang jq jqlangのjqにおける再帰制御に関する脆弱性 CWE-674
不適切な再帰制御 		CVE-2026-40612 2026-05-15 11:01 2026-05-11 Show GitHub Exploit DB Packet Storm
1964 7.5 重要
Network 		PHPOffice PhpSpreadsheet PHPOfficeのPhpSpreadsheetにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-40863 2026-05-15 11:01 2026-05-12 Show GitHub Exploit DB Packet Storm
1965 5.5 警告
Local 		jqlang jq jqlangのjqにおけるNULL バイトまたは NULL キャラクタの無害化に関する脆弱性 CWE-158
NULL バイトまたは NULL キャラクタの不適切な無害化 		CVE-2026-41256 2026-05-15 11:01 2026-05-11 Show GitHub Exploit DB Packet Storm
1966 5.5 警告
Local 		jqlang jq jqlangのjqにおける複数の脆弱性 CWE-190
CWE-787
CVE-2026-41257 2026-05-15 11:01 2026-05-11 Show GitHub Exploit DB Packet Storm
1967 5.4 警告
Network 		Langfuse GmbH Langfuse Langfuse GmbHのLangfuseにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-41487 2026-05-15 11:00 2026-05-8 Show GitHub Exploit DB Packet Storm
1968 9.8 緊急
Network 		Nhost Nhost/auth NhostのNhost/authにおける認証に関する脆弱性 CWE-287
CWE-noinfo
CVE-2026-41574 2026-05-15 11:00 2026-05-8 Show GitHub Exploit DB Packet Storm
1969 7.5 重要
Network 		Web Technologies Change Detection Web TechnologiesのChange DetectionにおけるXML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2026-41895 2026-05-15 11:00 2026-05-12 Show GitHub Exploit DB Packet Storm
1970 9.8 緊急
Network 		レッドハット
GNU Project		 Red Hat OpenShift Container Platform
Red Hat Hardened Images
GnuTLS
Red Hat Enterprise Linux 		GNU Project等の複数ベンダの製品におけるNull バイト相互作用エラー (Poison Null Byte) の脆弱性 CWE-626
Null バイト相互作用エラー (Poison Null Byte) 		CVE-2026-42010 2026-05-15 11:00 2026-05-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
355791 - samba samba Samba before 2.2.5 does not properly terminate the enum_csc_policy data structure, which may allow remote attackers to execute arbitrary code via a buffer overflow attack. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2002-2196 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355792 - zmailer zmailer Buffer overflow in ZMailer before 2.99.51_1 allows remote attackers to execute arbitrary code during HELO processing from an IPv6 address, possibly using an address that resolves to a long hostname. NVD-CWE-Other
CVE-2002-2198 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355793 - webmin webmin The Printer Administration module for Webmin 0.990 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the printer name. NVD-CWE-Other
CVE-2002-2201 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355794 - microsoft outlook_express Outlook Express 6.0 does not delete messages from dbx files, even when a user empties the Deleted items folder, which allows local users to read other users email. NVD-CWE-Other
CVE-2002-2202 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355795 - microsoft outlook_express This vulnerability affects Outlook Express 6.0 on any version of the Windows OS. NVD-CWE-Other
CVE-2002-2202 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355796 - redhat redhat_package_manager The default --checksig setting in RPM Package Manager 4.0.4 checks that a package's signature is valid without listing who signed it, which can allow remote attackers to make it appear that a malicio… NVD-CWE-Other
CVE-2002-2204 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355797 - redhat redhat_package_manager A large degree of social engineering and user interaction is neccessary to exploit this vulnerbility. NVD-CWE-Other
CVE-2002-2204 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355798 - webresolve webresolve Buffer overflow in Webresolve 0.1.0 and earlier allows remote attackers to execute arbitrary code by connecting to the server from an IP address that resolves to a long hostname. NVD-CWE-Other
CVE-2002-2205 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355799 - symantec norton_antivirus The POP3 proxy service (POPROXY.EXE) in Norton AntiVirus 2001 allows local users to cause a denial of service (CPU consumption and crash) via a long username with multiple /localhost entries. NVD-CWE-Other
CVE-2002-2206 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355800 - eric_rescorla ssldump Buffer overflow in ssldump 0.9b2 and earlier, when running in decryption mode, allows remote attackers to execute arbitrary code via a long RSA PreMasterSecret. NVD-CWE-Other
CVE-2002-2207 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm