Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228621 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモード ドライバーの win32k.sys におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-3173 2013-07-24 14:59 2013-07-9 Show GitHub Exploit DB Packet Storm
228622 9.3 危険 マイクロソフト - Microsoft Internet Explorer 7 から 10 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-3115 2013-07-24 14:58 2013-07-9 Show GitHub Exploit DB Packet Storm
228623 9.3 危険 マイクロソフト - Microsoft Internet Explorer 9 および 10 における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-3143 2013-07-24 14:57 2013-07-9 Show GitHub Exploit DB Packet Storm
228624 9.3 危険 マイクロソフト - Microsoft Internet Explorer 8 から 10 における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-3144 2013-07-24 14:56 2013-07-9 Show GitHub Exploit DB Packet Storm
228625 4.3 警告 シスコシステムズ - Cisco Unified Operations Manager の管理 Web インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3440 2013-07-24 14:55 2013-07-23 Show GitHub Exploit DB Packet Storm
228626 9.3 危険 マイクロソフト - Microsoft Internet Explorer 9 における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-3145 2013-07-24 14:55 2013-07-9 Show GitHub Exploit DB Packet Storm
228627 4.3 警告 シスコシステムズ - Cisco Unified Operations Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3439 2013-07-24 14:55 2013-07-22 Show GitHub Exploit DB Packet Storm
228628 6.5 警告 シスコシステムズ - Cisco Unified Operations Manager の管理アプリケーションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3437 2013-07-24 14:54 2013-07-19 Show GitHub Exploit DB Packet Storm
228629 9.3 危険 マイクロソフト - Microsoft Internet Explorer 10 における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-3146 2013-07-24 14:54 2013-07-9 Show GitHub Exploit DB Packet Storm
228630 9.3 危険 マイクロソフト - Microsoft Internet Explorer 6 から 9 における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-3147 2013-07-24 14:53 2013-07-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
4231 8.8 HIGH
Network 		google chrome Use after free in Actor in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) CWE-416
 Use After Free 		CVE-2026-10954 2026-06-10 03:49 2026-06-5 Show GitHub Exploit DB Packet Storm
4232 8.8 HIGH
Network 		google chrome Use after free in MimeHandlerView in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Hi… CWE-416
 Use After Free 		CVE-2026-10956 2026-06-10 03:48 2026-06-5 Show GitHub Exploit DB Packet Storm
4233 6.3 MEDIUM
Network 		google chrome Inappropriate implementation in Media Session in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security severity: Medi… CWE-346
 Origin Validation Error 		CVE-2026-11181 2026-06-10 03:47 2026-06-5 Show GitHub Exploit DB Packet Storm
4234 8.8 HIGH
Network 		google chrome Insufficient policy enforcement in Compositing in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox vi… CWE-20
 Improper Input Validation  		CVE-2026-11235 2026-06-10 03:44 2026-06-5 Show GitHub Exploit DB Packet Storm
4235 8.3 HIGH
Network 		google chrome Insufficient policy enforcement in Web Bluetooth in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via… CWE-602
 Client-Side Enforcement of Server-Side Security 		CVE-2026-11236 2026-06-10 03:42 2026-06-5 Show GitHub Exploit DB Packet Storm
4236 8.3 HIGH
Network 		google chrome Insufficient validation of untrusted input in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTM… CWE-20
 Improper Input Validation  		CVE-2026-11237 2026-06-10 03:41 2026-06-5 Show GitHub Exploit DB Packet Storm
4237 6.5 MEDIUM
Network 		google chrome Uninitialized Use in ANGLE in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low) CWE-457
 Use of Uninitialized Variable 		CVE-2026-11268 2026-06-10 03:38 2026-06-5 Show GitHub Exploit DB Packet Storm
4238 8.8 HIGH
Network 		google chrome Insufficient validation of untrusted input in Reading List in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform p… CWE-20
 Improper Input Validation  		CVE-2026-11272 2026-06-10 03:34 2026-06-5 Show GitHub Exploit DB Packet Storm
4239 4.3 MEDIUM
Network 		google chrome Inappropriate implementation in DOM Distiller in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. (Chromium security se… CWE-284
Improper Access Control 		CVE-2026-11274 2026-06-10 03:32 2026-06-5 Show GitHub Exploit DB Packet Storm
4240 9.3 CRITICAL
Network 		checkpoint gaia_os
gaia_embedded 		A logic flow weakness in Remote Access and Mobile Access certificate validation in deprecated IKEv1 key exchange allows an unauthenticated remote attacker to bypass user authentication and establish … CWE-287
Improper Authentication 		CVE-2026-50751 2026-06-10 03:30 2026-06-8 Show GitHub Exploit DB Packet Storm