Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3331	8.4	重要 Local	マイクロソフト	Microsoft 365 Apps Microsoft Office Office Long Term Servicing Channel (LTSC)	Microsoft Office のリモートコードが実行される脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-32190	2026-05-1 10:48	2026-04-14	Show	GitHub Exploit DB Packet Storm

3332	7.8	重要 Local	マイクロソフト	Microsoft 365 Apps Office Long Term Servicing Channel (LTSC)	Microsoft Word のリモートでコードが実行される脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-33095	2026-05-1 10:48	2026-04-14	Show	GitHub Exploit DB Packet Storm

3333	9.3	緊急 Network	マイクロソフト	Microsoft 365 Copilot	Microsoft 365 Copilot の特権昇格の脆弱性	CWE-601 オープンリダイレクト	CVE-2026-33102	2026-05-1 10:48	2026-04-23	Show	GitHub Exploit DB Packet Storm

3334	8.4	重要 Local	マイクロソフト	Microsoft 365 Apps Office Long Term Servicing Channel (LTSC)	Microsoft Word のリモートでコードが実行される脆弱性	CWE-822 信頼性のないポインタデリファレンス	CVE-2026-33114	2026-05-1 10:48	2026-04-14	Show	GitHub Exploit DB Packet Storm

3335	8.4	重要 Local	マイクロソフト	Microsoft 365 Apps Office Long Term Servicing Channel (LTSC)	Microsoft Word のリモートでコードが実行される脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-33115	2026-05-1 10:47	2026-04-14	Show	GitHub Exploit DB Packet Storm

3336	7.8	重要 Local	ggml.ai	llama.cpp	ggml.aiのllama.cppにおける複数の脆弱性	CWE-122 CWE-190	CVE-2026-33298	2026-05-1 10:47	2026-03-24	Show	GitHub Exploit DB Packet Storm

3337	6.1	警告 Local	マイクロソフト	Microsoft 365 Apps Office Long Term Servicing Channel (LTSC)	Microsoft Word の情報漏えいの脆弱性	CWE-125 境界外読み取り	CVE-2026-33822	2026-05-1 10:47	2026-04-14	Show	GitHub Exploit DB Packet Storm

3338	5.2	警告 Physics	wolfSSL Inc.	wolfSSL	wolfSSL Inc.のwolfSSLにおけるPRNG におけるシードの不正な使用に関する脆弱性	CWE-335 PRNGにおけるシードの不正な使用	CVE-2026-3503	2026-05-1 10:47	2026-03-19	Show	GitHub Exploit DB Packet Storm

3339	9.8	緊急 Network	wolfSSL Inc.	wolfSSL	wolfSSL Inc.のwolfSSLにおける複数の脆弱性	CWE-122 CWE-787 CWE-787	CVE-2026-3548	2026-05-1 10:47	2026-03-19	Show	GitHub Exploit DB Packet Storm

3340	5.9	警告 Network	VMware	Spring AI	VMwareのSpring AIにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-40966	2026-05-1 10:47	2026-04-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347131	-	psoproxy	psoproxy_server	Buffer overflow in PSOProxy 0.91 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long HTTP request, as demonstrated using a long (1) GET argument or (2)…	NVD-CWE-Other	CVE-2004-0313	2017-07-11 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

347132	-	freewebs	webzedit	Cross-site scripting (XSS) vulnerability in done.jsp in WebzEdit 1.9 and earlier allows remote attackers to execute arbitrary script as other users via the message parameter.	NVD-CWE-Other	CVE-2004-0314	2017-07-11 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

347133	-	avirt	voice	Buffer overflow in Avirt Voice 4.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long GET request on port 1080.	NVD-CWE-Other	CVE-2004-0315	2017-07-11 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

347134	-	avirt	avirt_soho	Buffer overflow in Avirt Soho 4.3 allows remote attackers to cause a denial of service (crash) via (1) a large GET request to port 1080 or (2) a large GET request of % characters to port 8080.	NVD-CWE-Other	CVE-2004-0316	2017-07-11 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

347135	-	platform	lsf	Buffer overflow in eauth in Load Sharing Facility 4.x, 5.x, and 6.x allows local users or remote attackers within the LSF cluster to cause a denial of service (segmentation fault) and possibly execut…	NVD-CWE-Other	CVE-2004-0317	2017-07-11 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

347136	-	platform	lsf	Load Sharing Facility (LSF) 4.x, 5.x, and 6.x uses the LSF_EAUTH_UID environment variable, if it exists, instead of the real UID of the user, which could allow remote attackers within the local clust…	NVD-CWE-Other	CVE-2004-0318	2017-07-11 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

347137	-	ezboard	ezboard	Cross-site scripting (XSS) vulnerability in the font tag in ezBoard 7.3u allows remote attackers to execute arbitrary script as other users, as demonstrated using the background:url in a (1) font col…	NVD-CWE-Other	CVE-2004-0319	2017-07-11 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

347138	-	singularity_software	team_factor	Team Factor 1.25 and earlier allows remote attackers to cause a denial of service (crash) via a packet that uses a negative number to specify the size of the data block that follows, which causes Tea…	NVD-CWE-Other	CVE-2004-0321	2017-07-11 10:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

347139	-	confirm	confirm	Confirm 0.62 and earlier could allow remote attackers to execute arbitrary code via an e-mail header that contains shell metacharacters such as ", `, \|, ;, or $.	NVD-CWE-Other	CVE-2004-0324	2017-07-11 10:30	2004-02-23	Show	GitHub Exploit DB Packet Storm

347140	-	typsoft	typsoft_ftp_server	TYPSoft FTP Server 1.10 allows remote authenticated users to cause a denial of service (CPU consumption) via "//../" arguments to (1) mkd, (2) xmkd, (3) dele, (4) size, (5) retr, (6) stor, (7) appe, …	NVD-CWE-Other	CVE-2004-0325	2017-07-11 10:30	2004-12-31	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed