CVEリスト - 高リスク・悪用確認済み脆弱性

NVD や CVE、ほか複数の脅威フィードを束ね、RCE など高リスクな事象を深く追える一覧です。CVSS と EPSS を組み合わせ、Exploit 参照や PoC の有無から悪用しやすさを追跡します。ベンダー修正や緩和策の文脈とあわせて優先度を決め、対応サイクルを短く保ちつつ重要資産を守る支援をします。

Assigner(CNA/発行元):[email protected] この条件を外す

CVSS スコア
表示中 161180 / 13348
CVE 説明 CVSS 最大値 EPSS(%) 公開 更新
CVE-2026-45484 Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to elevate privileges over a network. 8.8 1.98% 2026-06-09 2026-06-17
CVE-2026-45483 Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office Project Server allows an authorized attacker to perform spoofing over a network. 4.6 0.51% 2026-06-09 2026-06-17
CVE-2026-45482 Improper limitation of a pathname to a restricted directory ('path traversal') in GitHub Copilot and Visual Studio Code allows an unauthorized attacker to bypass a security feature locally. 8.4 0.34% 2026-06-09 2026-07-08
CVE-2026-45481 Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network. 7.3 0.69% 2026-06-09 2026-06-17
CVE-2026-45479 Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network. 4.6 0.51% 2026-06-09 2026-06-17
CVE-2026-45476 Use after free in Linux MANA Driver allows an authorized attacker to elevate privileges locally. 8.2 0.28% 2026-06-09 2026-06-23
CVE-2026-45475 Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally. 7.8 0.46% 2026-06-09 2026-06-19
CVE-2026-45474 Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. 8.4 0.36% 2026-06-09 2026-07-08
CVE-2026-45472 Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. 8.4 0.29% 2026-06-09 2026-07-08
CVE-2026-45471 Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally. 7.8 0.46% 2026-06-09 2026-06-19
CVE-2026-45469 Integer underflow (wrap or wraparound) in Microsoft Office Excel allows an unauthorized attacker to execute code locally. 7.8 0.37% 2026-06-09 2026-06-19
CVE-2026-45468 Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network. 4.6 0.51% 2026-06-09 2026-06-17
CVE-2026-45467 Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network. 4.6 0.51% 2026-06-09 2026-06-17
CVE-2026-45466 Heap-based buffer overflow in Microsoft Office Word allows an unauthorized attacker to disclose information locally. 3.3 0.37% 2026-06-09 2026-06-19
CVE-2026-45465 Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network. 5.4 0.51% 2026-06-09 2026-07-08
CVE-2026-45464 Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network. 5.4 0.51% 2026-06-09 2026-07-08
CVE-2026-45463 Integer underflow (wrap or wraparound) in Microsoft Office allows an unauthorized attacker to execute code locally. 8.4 0.29% 2026-06-09 2026-07-08
CVE-2026-45462 Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network. 4.6 0.51% 2026-06-09 2026-06-17
CVE-2026-45461 Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. 8.4 0.36% 2026-06-09 2026-07-08
CVE-2026-45460 Buffer over-read in Microsoft Office allows an unauthorized attacker to disclose information locally. 4.7 0.36% 2026-06-09 2026-07-08
cvelogic Threat Intelligence