Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2591 8.4 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Microsoft Word
Office Long Term Servicing Channel (LTSC) 		Microsoft Word のリモートでコードが実行される脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-40366 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
2592 8.4 重要
Local 		マイクロソフト Microsoft Office
Office Long Term Servicing Channel (LTSC)
Microsoft 365 Apps
Microsoft SharePoint Server
Microsoft Word 		Microsoft Word のリモートでコードが実行される脆弱性 CWE-822
信頼性のないポインタデリファレンス 		CVE-2026-40367 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
2593 7.8 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Office Long Term Servicing Channel (LTSC) 		Microsoft Office クイック実行の特権の昇格の脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-40418 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
2594 7.8 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Office Long Term Servicing Channel (LTSC) 		Microsoft Office クイック実行の特権の昇格の脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-40419 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
2595 8.8 重要
Local 		マイクロソフト Microsoft 365 Apps
Microsoft Office
Office Long Term Servicing Channel (LTSC) 		Microsoft Office クイック実行の特権の昇格の脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-40420 2026-05-21 10:52 2026-05-12 Show GitHub Exploit DB Packet Storm
2596 5.8 警告
Network 		traefik traefik traefikにおける送信データへの重要な情報の挿入に関する脆弱性 CWE-201
送信データへの重要な情報の挿入 		CVE-2026-41181 2026-05-21 10:52 2026-05-15 Show GitHub Exploit DB Packet Storm
2597 7.5 重要
Network 		DHTMLX PDF Export Module DHTMLXのPDF Export Moduleにおけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2026-41552 2026-05-21 10:52 2026-05-15 Show GitHub Exploit DB Packet Storm
2598 9.1 緊急
Network 		Apache Software Foundation Apache OFBiz Apache Software FoundationのApache OFBizにおけるLDAP インジェクションの脆弱性 CWE-90
LDAP インジェクション 		CVE-2026-41919 2026-05-21 10:52 2026-05-19 Show GitHub Exploit DB Packet Storm
2599 9.1 緊急
Network 		LangGenius, Inc. Dify LangGenius, Inc.のDifyにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-41947 2026-05-21 10:52 2026-05-18 Show GitHub Exploit DB Packet Storm
2600 9.4 緊急
Network 		LangGenius, Inc. Dify LangGenius, Inc.のDifyにおける相対パストラバーサルの脆弱性 CWE-23
相対的パストラバーサル 		CVE-2026-41948 2026-05-21 10:52 2026-05-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345431 - ipsec-tools
kame
redhat 		ipsec-tools
racoon
enterprise_linux
enterprise_linux_desktop 		The eay_check_x509cert function in KAME Racoon successfully verifies certificates even when OpenSSL validation fails, which could allow remote attackers to bypass authentication. NVD-CWE-Other
CVE-2004-0607 2017-10-11 10:29 2004-12-6 Show GitHub Exploit DB Packet Storm
345432 - redhat fedora_core
linux
kernel 		Integer overflow in the ubsec_keysetup function for Linux Broadcom 5820 cryptonet driver allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a negative add… NVD-CWE-Other
CVE-2004-0619 2017-10-11 10:29 2004-12-6 Show GitHub Exploit DB Packet Storm
345433 - sun solaris Solaris 9, when configured as a Kerberos client with patch 112908-12 or 115168-03 and using pam_krb5 as an "auth" module with the debug feature enabled, records passwords in plaintext, which could al… NVD-CWE-Other
CVE-2004-0653 2017-10-11 10:29 2004-08-6 Show GitHub Exploit DB Packet Storm
345434 - linux
redhat
trustix 		linux_kernel
enterprise_linux
enterprise_linux_desktop
secure_linux 		Certain USB drivers in the Linux 2.4 kernel use the copy_to_user function on uninitialized structures, which could allow local users to obtain sensitive information by reading memory that was not cle… NVD-CWE-Other
CVE-2004-0685 2017-10-11 10:29 2004-12-23 Show GitHub Exploit DB Packet Storm
345435 - trolltech qt Heap-based buffer overflow in the BMP image format parser for the QT library (qt3) before 3.3.3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary… NVD-CWE-Other
CVE-2004-0691 2017-10-11 10:29 2004-09-28 Show GitHub Exploit DB Packet Storm
345436 - trolltech qt The XPM parser in the QT library (qt3) before 3.3.3 allows remote attackers to cause a denial of service (application crash) via a malformed image file that triggers a null dereference, a different v… NVD-CWE-Other
CVE-2004-0692 2017-10-11 10:29 2004-09-28 Show GitHub Exploit DB Packet Storm
345437 - trolltech qt The GIF parser in the QT library (qt3) before 3.3.3 allows remote attackers to cause a denial of service (application crash) via a malformed image file that triggers a null dereference, a different v… NVD-CWE-Other
CVE-2004-0693 2017-10-11 10:29 2004-09-28 Show GitHub Exploit DB Packet Storm
345438 - cisco ios IP Security VPN Services Module (VPNSM) in Cisco Catalyst 6500 Series Switch and the Cisco 7600 Series Internet Routers running IOS before 12.2(17b)SXA, before 12.2(17d)SXB, or before 12.2(14)SY03 co… NVD-CWE-Other
CVE-2004-0710 2017-10-11 10:29 2004-07-27 Show GitHub Exploit DB Packet Storm
345439 - firebirdsql
mozilla
netscape 		firebird
mozilla
navigator 		The (1) Mozilla 1.6, (2) Firebird 0.7, (3) Firefox 0.8, and (4) Netscape 7.1 web browsers do not properly prevent a frame in one domain from injecting content into a frame that belongs to another dom… NVD-CWE-Other
CVE-2004-0718 2017-10-11 10:29 2004-07-27 Show GitHub Exploit DB Packet Storm
345440 - kde konqueror Konqueror 3.1.3, 3.2.2, and possibly other versions does not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoo… NVD-CWE-Other
CVE-2004-0721 2017-10-11 10:29 2004-07-27 Show GitHub Exploit DB Packet Storm