Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
214221	3.5	注意	OpenStack	-	OpenStack Orchestration API におけるプロバイダテンプレートの URL を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-3801	2014-11-20 17:45	2014-05-23	Show	GitHub Exploit DB Packet Storm

214222	1.9	注意	Xen プロジェクト	-	Xen の arch/x86/x86_emulate/x86_emulate.c における権限を取得される脆弱性	CWE-Other その他	CVE-2014-8595	2014-11-20 17:27	2014-11-18	Show	GitHub Exploit DB Packet Storm

214223	5.4	警告	Xen プロジェクト	-	Xen におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-8594	2014-11-20 17:27	2014-11-18	Show	GitHub Exploit DB Packet Storm

214224	3.5	注意	レッドハット	-	FreeIPA における二要素認証のパスワード要求を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-7828	2014-11-20 17:27	2014-11-5	Show	GitHub Exploit DB Packet Storm

214225	9	危険	アルバネットワークス株式会社	-	Aruba Networks ClearPass における任意のコマンドを実行される脆弱性	CWE-Other その他	CVE-2014-6627	2014-11-20 16:52	2014-10-28	Show	GitHub Exploit DB Packet Storm

214226	10	危険	アルバネットワークス株式会社	-	Aruba Networks ClearPass における認証を回避される脆弱性	CWE-Other その他	CVE-2014-6626	2014-11-20 16:52	2014-10-28	Show	GitHub Exploit DB Packet Storm

214227	9	危険	アルバネットワークス株式会社	-	Aruba Networks ClearPass の Policy Manager における権限を取得される脆弱性	CWE-Other その他	CVE-2014-6625	2014-11-20 16:51	2014-10-28	Show	GitHub Exploit DB Packet Storm

214228	6.8	警告	アルバネットワークス株式会社	-	Aruba Networks ClearPass の Insight モジュールにおける任意のファイルを読まれる脆弱性	CWE-200 情報漏えい	CVE-2014-6624	2014-11-20 16:51	2014-10-28	Show	GitHub Exploit DB Packet Storm

214229	5	警告	アルバネットワークス株式会社	-	Aruba Networks ClearPass におけるファイル名の妥当性を決定される脆弱性	CWE-200 情報漏えい	CVE-2014-6622	2014-11-20 16:51	2014-10-28	Show	GitHub Exploit DB Packet Storm

214230	5	警告	アルバネットワークス株式会社	-	Aruba Networks ClearPass における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-6621	2014-11-20 16:50	2014-10-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1571	3.1	LOW Network	google	chrome	Insufficient policy enforcement in DevTools in Google Chrome prior to 148.0.7778.96 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a c…	CWE-693 Protection Mechanism Failure	CVE-2026-7937	2026-05-7 08:34	2026-05-7	Show	GitHub Exploit DB Packet Storm

1572	8.8	HIGH Network	google	chrome	Use after free in CSS in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium)	CWE-416 Use After Free	CVE-2026-7938	2026-05-7 08:34	2026-05-7	Show	GitHub Exploit DB Packet Storm

1573	5.4	MEDIUM Network	google	chrome	Inappropriate implementation in SanitizerAPI in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. (Chromium security s…	CWE-79 Cross-site Scripting	CVE-2026-7939	2026-05-7 08:33	2026-05-7	Show	GitHub Exploit DB Packet Storm

1574	8.8	HIGH Network	google	chrome	Use after free in V8 in Google Chrome prior to 148.0.7778.96 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code inside a sandbox via a crafted Chrome …	CWE-416 Use After Free	CVE-2026-7940	2026-05-7 08:33	2026-05-7	Show	GitHub Exploit DB Packet Storm

1575	4.4	MEDIUM Local	google	chrome	Insufficient validation of untrusted input in Mobile in Google Chrome on Android prior to 148.0.7778.96 allowed a local attacker to inject arbitrary scripts or HTML (UXSS) via a crafted Chrome Extens…	CWE-20 Improper Input Validation	CVE-2026-7941	2026-05-7 08:33	2026-05-7	Show	GitHub Exploit DB Packet Storm

1576	4.3	MEDIUM Network	google	chrome	Integer overflow in ANGLE in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)	CWE-472 External Control of Assumed-Immutable Web Parameter	CVE-2026-7942	2026-05-7 08:33	2026-05-7	Show	GitHub Exploit DB Packet Storm

1577	4.2	MEDIUM Network	google	chrome	Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to perform arbitrary read/write via a cr…	CWE-20 Improper Input Validation	CVE-2026-7943	2026-05-7 08:32	2026-05-7	Show	GitHub Exploit DB Packet Storm

1578	3.1	LOW Network	google	chrome	Insufficient validation of untrusted input in Persistent Cache in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to bypass site isolation via …	CWE-20 Improper Input Validation	CVE-2026-7944	2026-05-7 08:32	2026-05-7	Show	GitHub Exploit DB Packet Storm

1579	3.1	LOW Network	google	chrome	Insufficient validation of untrusted input in COOP in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HT…	CWE-20 Improper Input Validation	CVE-2026-7945	2026-05-7 08:32	2026-05-7	Show	GitHub Exploit DB Packet Storm

1580	4.2	MEDIUM Network	google	chrome	Insufficient validation of untrusted input in Network in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted H…	CWE-20 Improper Input Validation	CVE-2026-7947	2026-05-7 08:32	2026-05-7	Show	GitHub Exploit DB Packet Storm