Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2541	4.4	警告 Local	マイクロソフト	Microsoft 365 Copilot	Android 用の Microsoft 365 Copilot のスプーフィングの脆弱性	CWE-284 CWE-Other	CVE-2026-41100	2026-05-18 11:31	2026-05-12	Show	GitHub Exploit DB Packet Storm

2542	5.5	警告 Local	マイクロソフト	Microsoft Word	Microsoft Edge for Android のスプーフィングの脆弱性	CWE-284 CWE-noinfo	CVE-2026-41101	2026-05-18 11:31	2026-05-12	Show	GitHub Exploit DB Packet Storm

2543	5.5	警告 Local	マイクロソフト	Microsoft PowerPoint	Microsoft PowerPoint for Android のスプーフィングの脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-41102	2026-05-18 11:31	2026-05-12	Show	GitHub Exploit DB Packet Storm

2544	7.4	重要 Network	Outlook.com	Microsoft Edge Chromium	Microsoft Edge (Chromium ベース) の情報漏えいの脆弱性	CWE-610 CWE-73	CVE-2026-41107	2026-05-18 11:31	2026-05-12	Show	GitHub Exploit DB Packet Storm

2545	8.8	重要 Network	マイクロソフト	Visual Studio Code	GitHub Copilot と Visual Studio Code セキュリティ機能バイパスの脆弱性	CWE-74 インジェクション	CVE-2026-41109	2026-05-18 11:31	2026-05-12	Show	GitHub Exploit DB Packet Storm

2546	7.4	重要 Network	Open Knowledge Foundation	CKAN	Open Knowledge FoundationのCKANにおける証明書検証に関する脆弱性	CWE-295 不正な証明書検証	CVE-2026-41132	2026-05-18 11:31	2026-05-13	Show	GitHub Exploit DB Packet Storm

2547	6.1	警告 Network	Open Knowledge Foundation	CKAN	Open Knowledge FoundationのCKANにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2026-41255	2026-05-18 11:31	2026-05-13	Show	GitHub Exploit DB Packet Storm

2548	9.8	緊急 Network	Apache Software Foundation	Apache Tomcat	Apache Software FoundationのApache Tomcatにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-41293	2026-05-18 11:31	2026-05-12	Show	GitHub Exploit DB Packet Storm

2549	5	警告 Local	マイクロソフト	Visual Studio Code	マイクロソフトのVisual Studio Codeにおける複数の脆弱性	CWE-200 CWE-59 CWE-79 CWE-79	CVE-2026-41610	2026-05-18 11:31	2026-05-12	Show	GitHub Exploit DB Packet Storm

2550	3.3	低 Local	マイクロソフト	Visual Studio Code	Visual Studio Code のリモートでコードが実行される脆弱性	CWE-77 CWE-79 CWE-80	CVE-2026-41611	2026-05-18 11:30	2026-05-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311961	7.8	HIGH Local	adobe	indesign	InDesign Desktop versions ID18.5.2, ID19.5 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exp…	CWE-787 Out-of-bounds Write	CVE-2024-49508	2024-11-16 09:33	2024-11-13	Show	GitHub Exploit DB Packet Storm

311962	7.8	HIGH Local	adobe	indesign	InDesign Desktop versions ID18.5.2, ID19.5 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exp…	CWE-787 Out-of-bounds Write	CVE-2024-49507	2024-11-16 09:33	2024-11-13	Show	GitHub Exploit DB Packet Storm

311963	8.1	HIGH Network	ibm	soar	IBM Security SOAR 51.0.1.0 and earlier contains a mechanism for users to recover or change their passwords without knowing the original password, but the user account must be compromised prior to the…	CWE-640 Weak Password Recovery Mechanism for Forgotten Password	CVE-2024-45670	2024-11-16 09:24	2024-11-14	Show	GitHub Exploit DB Packet Storm

311964	5.3	MEDIUM Network	ibm	security_qradar_edr	IBM Security ReaQta 3.12 is vulnerable to cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality p…	NVD-CWE-noinfo	CVE-2024-45642	2024-11-16 09:13	2024-11-14	Show	GitHub Exploit DB Packet Storm

311965	4.8	MEDIUM Network	ibm	security_qradar_edr	IBM Security ReaQta 3.12 is vulnerable to cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality p…	CWE-79 Cross-site Scripting	CVE-2024-45099	2024-11-16 09:11	2024-11-14	Show	GitHub Exploit DB Packet Storm

311966	7.8	HIGH Local	microsoft	excel office 365_apps office_long_term_servicing_channel	Microsoft Excel Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-49027	2024-11-16 09:09	2024-11-13	Show	GitHub Exploit DB Packet Storm

311967	7.8	HIGH Local	microsoft	office_online_server excel office 365_apps office_long_term_servicing_channel	Microsoft Excel Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-49026	2024-11-16 09:08	2024-11-13	Show	GitHub Exploit DB Packet Storm

311968	7.8	HIGH Local	microsoft	excel office 365_apps office_long_term_servicing_channel	Microsoft Excel Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-49030	2024-11-16 09:06	2024-11-13	Show	GitHub Exploit DB Packet Storm

311969	7.8	HIGH Local	microsoft	excel office 365_apps office_long_term_servicing_channel	Microsoft Excel Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-49029	2024-11-16 09:06	2024-11-13	Show	GitHub Exploit DB Packet Storm

311970	7.5	HIGH Network	microsoft	exchange_server	Microsoft Exchange Server Spoofing Vulnerability	NVD-CWE-noinfo	CVE-2024-49040	2024-11-16 09:05	2024-11-13	Show	GitHub Exploit DB Packet Storm