Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 21, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
190351 9.8 緊急
Network 		Debian
openSUSE project
Canonical
thekelleys
レッドハット		 - dnsmasq におけるバッファエラーの脆弱性 CWE-119
CWE-122
CVE-2017-14491 2017-11-29 17:03 2017-09-26 Show GitHub Exploit DB Packet Storm
190352 7.5 重要
Network 		Debian
openSUSE project
Canonical
thekelleys
レッドハット		 - dnsmasq におけるリソース管理に関する脆弱性 CWE-399
CWE-400
CVE-2017-14495 2017-11-29 17:03 2017-09-26 Show GitHub Exploit DB Packet Storm
190353 7.5 重要
Network 		openSUSE project
Canonical
Debian
thekelleys
Google
レッドハット		 - dnsmasq における整数アンダーフローの脆弱性 CWE-191
整数アンダーフロー 		CVE-2017-14496 2017-11-29 17:03 2017-09-26 Show GitHub Exploit DB Packet Storm
190354 5.3 警告
Local 		マイクロソフト - Microsoft Office 数式エディタにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-121
スタックオーバーフロー 		CVE-2017-11882 2017-11-29 17:03 2017-11-15 Show GitHub Exploit DB Packet Storm
190355 8 重要
Adjacent 		Datto, Inc. - Datto Windows Agent におけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2017-16674 2017-11-29 16:57 2017-11-6 Show GitHub Exploit DB Packet Storm
190356 5.3 警告
Adjacent 		Datto, Inc. - Datto Backup Agent における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2017-16673 2017-11-29 16:57 2017-11-6 Show GitHub Exploit DB Packet Storm
190357 6.5 警告
Network 		Matroska.org - mkclean における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2017-12803 2017-11-29 16:57 2017-08-22 Show GitHub Exploit DB Packet Storm
190358 6.5 警告
Network 		Matroska.org - mkvalidator における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2017-12779 2017-11-29 16:57 2017-08-22 Show GitHub Exploit DB Packet Storm
190359 8.8 重要
Network 		アバイア - Avaya IP Office Contact Center におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2017-12969 2017-11-29 16:50 2017-11-3 Show GitHub Exploit DB Packet Storm
190360 8.8 重要
Network 		GraphicsMagick - GraphicsMagick におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2017-16669 2017-11-29 16:44 2017-11-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2811 8.3 HIGH
Network 		google chrome Use after free in Autofill in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. … CWE-416
 Use After Free 		CVE-2026-11002 2026-06-7 03:16 2026-06-5 Show GitHub Exploit DB Packet Storm
2812 4.2 MEDIUM
Network 		google chrome Inappropriate implementation in Payments in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted … CWE-290
CWE-451
 Authentication Bypass by Spoofing
 User Interface (UI) Misrepresentation of Critical Information 		CVE-2026-11001 2026-06-7 02:16 2026-06-5 Show GitHub Exploit DB Packet Storm
2813 6.5 MEDIUM
Network 		google chrome Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium securit… CWE-457
 Use of Uninitialized Variable 		CVE-2026-10994 2026-06-7 02:16 2026-06-5 Show GitHub Exploit DB Packet Storm
2814 6.5 MEDIUM
Network 		google chrome Heap buffer overflow in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium secur… CWE-122
Heap-based Buffer Overflow 		CVE-2026-10993 2026-06-7 02:16 2026-06-5 Show GitHub Exploit DB Packet Storm
2815 6.5 MEDIUM
Network 		google chrome Insufficient data validation in Animation in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (C… NVD-CWE-noinfo
CWE-20
 Improper Input Validation  		CVE-2026-10992 2026-06-7 02:16 2026-06-5 Show GitHub Exploit DB Packet Storm
2816 8.3 HIGH
Network 		google chrome Use after free in Glic in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chr… CWE-416
 Use After Free 		CVE-2026-10990 2026-06-7 02:16 2026-06-5 Show GitHub Exploit DB Packet Storm
2817 5.9 MEDIUM
Network 		google chrome Inappropriate implementation in WebRTC in Google Chrome prior to 149.0.7827.53 allowed an attacker in a privileged network position to leak cross-origin data via malicious network traffic. (Chromium … CWE-20
 Improper Input Validation  		CVE-2026-11199 2026-06-6 22:16 2026-06-5 Show GitHub Exploit DB Packet Storm
2818 8.3 HIGH
Network 		google chrome Insufficient validation of untrusted input in Printing in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a s… CWE-20
 Improper Input Validation  		CVE-2026-10971 2026-06-6 22:16 2026-06-5 Show GitHub Exploit DB Packet Storm
2819 8.8 HIGH
Network 		google chrome Inappropriate implementation in Isolated Web Apps in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a malicious file. (Chromium security… NVD-CWE-noinfo
CWE-474
 Use of Function with Inconsistent Implementations 		CVE-2026-11102 2026-06-6 13:17 2026-06-5 Show GitHub Exploit DB Packet Storm
2820 5.5 MEDIUM
Local 		samsung android Improper handling of insufficient privileges in SecTelephonyProvider prior to SMR Jun-2026 Release 1 allows local attackers to access privileged files. NVD-CWE-Other
CVE-2026-21017 2026-06-6 11:01 2026-06-5 Show GitHub Exploit DB Packet Storm