Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2591	8.4	重要 Local	マイクロソフト	Microsoft 365 Apps Microsoft Office Microsoft Word Office Long Term Servicing Channel (LTSC)	Microsoft Word のリモートでコードが実行される脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-40366	2026-05-21 10:52	2026-05-12	Show	GitHub Exploit DB Packet Storm

2592	8.4	重要 Local	マイクロソフト	Microsoft Office Office Long Term Servicing Channel (LTSC) Microsoft 365 Apps Microsoft SharePoint Server Microsoft Word	Microsoft Word のリモートでコードが実行される脆弱性	CWE-822 信頼性のないポインタデリファレンス	CVE-2026-40367	2026-05-21 10:52	2026-05-12	Show	GitHub Exploit DB Packet Storm

2593	7.8	重要 Local	マイクロソフト	Microsoft 365 Apps Microsoft Office Office Long Term Servicing Channel (LTSC)	Microsoft Office クイック実行の特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-40418	2026-05-21 10:52	2026-05-12	Show	GitHub Exploit DB Packet Storm

2594	7.8	重要 Local	マイクロソフト	Microsoft 365 Apps Microsoft Office Office Long Term Servicing Channel (LTSC)	Microsoft Office クイック実行の特権の昇格の脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-40419	2026-05-21 10:52	2026-05-12	Show	GitHub Exploit DB Packet Storm

2595	8.8	重要 Local	マイクロソフト	Microsoft 365 Apps Microsoft Office Office Long Term Servicing Channel (LTSC)	Microsoft Office クイック実行の特権の昇格の脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-40420	2026-05-21 10:52	2026-05-12	Show	GitHub Exploit DB Packet Storm

2596	5.8	警告 Network	traefik	traefik	traefikにおける送信データへの重要な情報の挿入に関する脆弱性	CWE-201 送信データへの重要な情報の挿入	CVE-2026-41181	2026-05-21 10:52	2026-05-15	Show	GitHub Exploit DB Packet Storm

2597	7.5	重要 Network	DHTMLX	PDF Export Module	DHTMLXのPDF Export Moduleにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-41552	2026-05-21 10:52	2026-05-15	Show	GitHub Exploit DB Packet Storm

2598	9.1	緊急 Network	Apache Software Foundation	Apache OFBiz	Apache Software FoundationのApache OFBizにおけるLDAP インジェクションの脆弱性	CWE-90 LDAP インジェクション	CVE-2026-41919	2026-05-21 10:52	2026-05-19	Show	GitHub Exploit DB Packet Storm

2599	9.1	緊急 Network	LangGenius, Inc.	Dify	LangGenius, Inc.のDifyにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-41947	2026-05-21 10:52	2026-05-18	Show	GitHub Exploit DB Packet Storm

2600	9.4	緊急 Network	LangGenius, Inc.	Dify	LangGenius, Inc.のDifyにおける相対パストラバーサルの脆弱性	CWE-23 相対的パストラバーサル	CVE-2026-41948	2026-05-21 10:52	2026-05-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345341	-	linux	linux_kernel	Linux kernel before 2.6.9, when running on the AMD64 and Intel EM64T architectures, allows local users to write to privileged IO ports via the OUTS instruction.	NVD-CWE-Other	CVE-2005-0204	2017-10-11 10:29	2005-05-2	Show	GitHub Exploit DB Packet Storm

345342	-	bernd_wuebben kde	kppp kde	KPPP 2.1.2 in KDE 3.1.5 and earlier, when setuid root without certain wrappers, does not properly close a privileged file descriptor for a domain socket, which allows local users to read and write to…	NVD-CWE-Other	CVE-2005-0205	2017-10-11 10:29	2005-05-2	Show	GitHub Exploit DB Packet Storm

345343	-	conectiva linux redhat suse	linux linux_kernel enterprise_linux enterprise_linux_desktop suse_linux	Unknown vulnerability in Linux kernel 2.4.x, 2.5.x, and 2.6.x allows NFS clients to cause a denial of service via O_DIRECT.	NVD-CWE-Other	CVE-2005-0207	2017-10-11 10:29	2005-05-2	Show	GitHub Exploit DB Packet Storm

345344	-	linux	linux_kernel	Netfilter in Linux kernel 2.6.8.1 allows remote attackers to cause a denial of service (kernel crash) via crafted IP packet fragments.	CWE-20 Improper Input Validation	CVE-2005-0209	2017-10-11 10:29	2005-05-2	Show	GitHub Exploit DB Packet Storm

345345	-	linux	linux_kernel	Netfilter in the Linux kernel 2.6.8.1 allows local users to cause a denial of service (memory consumption) via certain packet fragments that are reassembled twice, which causes a data structure to be…	CWE-399 Resource Management Errors	CVE-2005-0210	2017-10-11 10:29	2005-05-2	Show	GitHub Exploit DB Packet Storm

345346	-	ascii cstex easy_software_products gnome kde pdftohtml sgi tetex xpdf debian gentoo mandrakesoft redhat suse ubuntu	ptex cstetex cups gpdf koffice kpdf pdftohtml propack tetex xpdf advanced_linux_environment debian_linux linux kde mandrake_linux_corporate_server enterpr…	The patch for integer overflow vulnerabilities in Xpdf 2.0 and 3.0 (CVE-2004-0888) is incomplete for 64-bit architectures on certain Linux distributions such as Red Hat, which could leave Xpdf users …	NVD-CWE-Other	CVE-2005-0206	2017-10-11 10:29	2005-04-27	Show	GitHub Exploit DB Packet Storm

345347	-	mozilla	firefox	Firefox 1.0 does not prevent the user from dragging an executable file to the desktop when it has an image/gif content type but has a dangerous extension such as .bat or .exe, which allows remote att…	NVD-CWE-Other	CVE-2005-0230	2017-10-11 10:29	2005-05-2	Show	GitHub Exploit DB Packet Storm

345348	-	mozilla	firefox	Firefox 1.0 does not invoke the Javascript Security Manager when a user drags a javascript: or data: URL to a tab, which allows remote attackers to bypass the security model, aka "firetabbing."	NVD-CWE-Other	CVE-2005-0231	2017-10-11 10:29	2005-02-7	Show	GitHub Exploit DB Packet Storm

345349	-	mozilla	firefox	Firefox 1.0 allows remote attackers to modify Boolean configuration parameters for the about:config site by using a plugin such as Flash, and the -moz-opacity filter, to display the about:config site…	NVD-CWE-Other	CVE-2005-0232	2017-10-11 10:29	2005-05-2	Show	GitHub Exploit DB Packet Storm

345350	-	squid	squid	The httpProcessReplyHeader function in http.c for Squid 2.5-STABLE7 and earlier does not properly set the debug context when it is handling "oversized" HTTP reply headers, which might allow remote at…	NVD-CWE-Other	CVE-2005-0241	2017-10-11 10:29	2005-05-2	Show	GitHub Exploit DB Packet Storm