Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2471	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおけるユーザインターフェースにおける重要情報の誤った表示に関する脆弱性	CWE-451 ユーザインターフェースにおける重要情報の誤った表示	CVE-2026-11172	2026-06-9 14:17	2026-06-4	Show	GitHub Exploit DB Packet Storm

2472	5.3	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける保護メカニズムの不具合に関する脆弱性	CWE-693 保護メカニズムの不具合	CVE-2026-11174	2026-06-9 14:17	2026-06-4	Show	GitHub Exploit DB Packet Storm

2473	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおけるユーザインターフェースにおける重要情報の誤った表示に関する脆弱性	CWE-451 ユーザインターフェースにおける重要情報の誤った表示	CVE-2026-11175	2026-06-9 14:17	2026-06-4	Show	GitHub Exploit DB Packet Storm

2474	6.5	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける同一生成元ポリシー違反に関する脆弱性	CWE-346 同一生成元ポリシー違反	CVE-2026-11176	2026-06-9 14:16	2026-06-4	Show	GitHub Exploit DB Packet Storm

2475	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-11177	2026-06-9 14:16	2026-06-4	Show	GitHub Exploit DB Packet Storm

2476	4.3	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける同一生成元ポリシー違反に関する脆弱性	CWE-346 同一生成元ポリシー違反	CVE-2026-11178	2026-06-9 14:16	2026-06-4	Show	GitHub Exploit DB Packet Storm

2477	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-11179	2026-06-9 14:16	2026-06-4	Show	GitHub Exploit DB Packet Storm

2478	6.5	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2026-11180	2026-06-9 14:16	2026-06-4	Show	GitHub Exploit DB Packet Storm

2479	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける不変と仮定される Web パラメータの外部制御に関する脆弱性	CWE-472 不変と仮定される Web パラメータの外部制御	CVE-2026-11211	2026-06-9 14:16	2026-06-4	Show	GitHub Exploit DB Packet Storm

2480	8.1	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2026-11231	2026-06-9 14:16	2026-06-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1011	4.2	MEDIUM Network	google	chrome	Insufficient validation of untrusted input in Navigation in Google Chrome prior to 149.0.7827.197 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a cra… New	CWE-20 Improper Input Validation	CVE-2026-13024	2026-06-26 11:12	2026-06-25	Show	GitHub Exploit DB Packet Storm

1012	8.3	HIGH Network	google	chrome	Race in DevTools in Google Chrome prior to 149.0.7827.197 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium… New	CWE-20 Improper Input Validation	CVE-2026-13025	2026-06-26 11:12	2026-06-25	Show	GitHub Exploit DB Packet Storm

1013	8.8	HIGH Network	google	chrome	Use after free in Digital Credentials in Google Chrome on Mac prior to 149.0.7827.197 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security seve… New	CWE-416 Use After Free	CVE-2026-13026	2026-06-26 11:12	2026-06-25	Show	GitHub Exploit DB Packet Storm

1014	8.8	HIGH Network	google	chrome	Use after free in FileSystem in Google Chrome prior to 149.0.7827.197 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) New	CWE-416 Use After Free	CVE-2026-13027	2026-06-26 11:11	2026-06-25	Show	GitHub Exploit DB Packet Storm

1015	9.6	CRITICAL Network	google	chrome	Use after free in WebGL in Google Chrome on Android prior to 149.0.7827.197 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Cri… New	CWE-416 Use After Free	CVE-2026-13028	2026-06-26 11:11	2026-06-25	Show	GitHub Exploit DB Packet Storm

1016	6.5	MEDIUM Network	openexr	openexr	OpenEXR is the reference implementation and specification for the EXR image format, widely used in the motion picture industry. In versions 3.4.0 through 3.4.11, the HTJ2K (High-Throughput JPEG 2000)… New	CWE-122 Heap-based Buffer Overflow	CVE-2026-45696	2026-06-26 11:08	2026-06-19	Show	GitHub Exploit DB Packet Storm

1017	7.5	HIGH Network	nlnetlabs	nsd	When a provide-xfr is given with a tls-auth-name, a secondary requesting a transfer should provide a client certificate with that name. However, no client certificate is needed when the request comes… New	CWE-284 CWE-306 Improper Access Control Missing Authentication for Critical Function	CVE-2026-12490	2026-06-26 11:08	2026-06-25	Show	GitHub Exploit DB Packet Storm

1018	8.1	HIGH Network	nlnetlabs	nsd	NSD version 4.14.0 introduced a bug where a specially crafted APL RR, with an adflength larger than permitted for the address family will overwrite the stack when the zone is written to disk, with a … New	CWE-20 CWE-120 Improper Input Validation Classic Buffer Overflow	CVE-2026-12246	2026-06-26 11:07	2026-06-25	Show	GitHub Exploit DB Packet Storm

1019	7.5	HIGH Network	nlnetlabs	nsd	NSD from version 4.13.0 has a heap use-after-free bug in logging errors on TLS connections, causing a crash of the server process, which can be triggered trivially by sending a DNS query over a DoT c… New	CWE-416 Use After Free	CVE-2026-12245	2026-06-26 11:07	2026-06-25	Show	GitHub Exploit DB Packet Storm

1020	8.8	HIGH Network	nlnetlabs	nsd	If NSD is configured as secondary for a zone, the primary of that zone can crash NSD with an AXFR containing a DNS message with a special crafted SVCB RR with an rdata size of 65512, that let's an (u… New	CWE-122 CWE-190 Heap-based Buffer Overflow Integer Overflow or Wraparound	CVE-2026-12244	2026-06-26 11:07	2026-06-25	Show	GitHub Exploit DB Packet Storm