Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241 8.4 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Office Long Term Servicing Channel (LTSC) 		Microsoft Office のリモート コードが実行される脆弱性 New CWE-416
解放済みメモリの使用 		CVE-2026-40358 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
242 7.8 重要
Local 		マイクロソフト Microsoft Office Online Server
Microsoft Excel
Microsoft Office
Office Long Term Servicing Channel (LTSC)
Microsoft 365 Apps 		Microsoft Excel のリモートでコードが実行される脆弱性 New CWE-416
解放済みメモリの使用 		CVE-2026-40359 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
243 7.8 重要
Local 		マイクロソフト Microsoft Office Online Server
Microsoft Excel
Microsoft Office
Office Long Term Servicing Channel (LTSC)
Microsoft 365 Apps 		Microsoft Excel の情報漏えいの脆弱性 New CWE-125
境界外読み取り 		CVE-2026-40360 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
244 8.4 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Microsoft Word
Office Long Term Servicing Channel (LTSC) 		Microsoft Word のリモートでコードが実行される脆弱性 New CWE-416
解放済みメモリの使用 		CVE-2026-40361 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
245 7.8 重要
Local 		マイクロソフト Microsoft Office Online Server
Microsoft Excel
Microsoft Office
Office Long Term Servicing Channel (LTSC)
Microsoft 365 Apps 		Microsoft Excel のリモートでコードが実行される脆弱性 New CWE-122
ヒープオーバーフロー 		CVE-2026-40362 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
246 8.4 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Office Long Term Servicing Channel (LTSC) 		Microsoft Office のリモート コードが実行される脆弱性 New CWE-122
ヒープオーバーフロー 		CVE-2026-40363 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
247 8.4 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Microsoft Word
Office Long Term Servicing Channel (LTSC) 		Microsoft Word のリモートでコードが実行される脆弱性 New CWE-122
CWE-843
CWE-908
CVE-2026-40364 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
248 8.4 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Microsoft Word
Office Long Term Servicing Channel (LTSC) 		Microsoft Word のリモートでコードが実行される脆弱性 New CWE-416
解放済みメモリの使用 		CVE-2026-40366 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
249 8.4 重要
Local 		マイクロソフト Microsoft Office
Office Long Term Servicing Channel (LTSC)
Microsoft 365 Apps
Microsoft SharePoint Server
Microsoft Word 		Microsoft Word のリモートでコードが実行される脆弱性 New CWE-822
信頼性のないポインタデリファレンス 		CVE-2026-40367 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
250 7.8 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Office Long Term Servicing Channel (LTSC) 		Microsoft Office クイック実行の特権の昇格の脆弱性 New CWE-416
解放済みメモリの使用 		CVE-2026-40418 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
318391 - - - Rejected reason: This flaw was found to be a duplicate of CVE-2023-6927. Please see https://access.redhat.com/security/cve/CVE-2023-6927 for information about affected products and security errata. - CVE-2023-6920 2023-12-19 02:15 2023-12-19 Show GitHub Exploit DB Packet Storm
318392 - - - Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2023-2804. Reason: This record is a duplicate of CVE-2023-2804. Notes: All CVE users should reference CVE-2023-2804 instead of this record… - CVE-2023-31813 2023-12-16 11:15 2023-12-16 Show GitHub Exploit DB Packet Storm
318393 - microsoft windows_embedded_compact WinCE 3.0.9348 generates predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections. NVD-CWE-Other
CVE-2001-0162 2023-12-16 04:06 2001-01-1 Show GitHub Exploit DB Packet Storm
318394 - - - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none. - CVE-2023-27171 2023-12-13 23:15 2023-12-13 Show GitHub Exploit DB Packet Storm
318395 - microsoft directx Unspecified vulnerability in Quartz.dll for DirectShow on Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista SP1, and Server 2008 allows remote attackers to execute arbitrary code via… CWE-94
Code Injection 		CVE-2010-1880 2023-12-8 03:38 2010-06-9 Show GitHub Exploit DB Packet Storm
318396 - microsoft internet_explorer Microsoft Internet Explorer 6 SP1 and SP2, 7, and 8 allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory… CWE-94
Code Injection 		CVE-2010-1262 2023-12-8 03:38 2010-06-9 Show GitHub Exploit DB Packet Storm
318397 - microsoft internet_explorer The IE8 Developer Toolbar in Microsoft Internet Explorer 8 SP1, SP2, and SP3 allows user-assisted remote attackers to execute arbitrary code by accessing an object that (1) was not properly initializ… CWE-94
Code Injection 		CVE-2010-1261 2023-12-8 03:38 2010-06-9 Show GitHub Exploit DB Packet Storm
318398 - microsoft internet_explorer Microsoft Internet Explorer 6 SP1 and SP2, 7, and 8 allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory… CWE-94
Code Injection 		CVE-2010-1259 2023-12-8 03:38 2010-06-9 Show GitHub Exploit DB Packet Storm
318399 - microsoft windows_2000
windows_xp
windows_2003_server
windows_vista
windows_server_2008
windows_7 		The Windows kernel-mode drivers in win32k.sys in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, Server 2008 Gold and SP2, Windows 7, and Server 2008 R2 allows local u… CWE-94
Code Injection 		CVE-2010-1255 2023-12-8 03:38 2010-06-9 Show GitHub Exploit DB Packet Storm
318400 - microsoft windows_xp
windows_2003_server
windows_vista
windows_server_2008
windows_7 		Multiple unspecified vulnerabilities in the Microsoft Internet Explorer 8 Developer Tools ActiveX control in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista… CWE-94
Code Injection 		CVE-2010-0811 2023-12-8 03:38 2010-06-9 Show GitHub Exploit DB Packet Storm