Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250851 10 危険 Google - Google Chrome におけるサンドボックス保護メカニズムを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-1846 2012-03-27 14:21 2012-03-22 Show GitHub Exploit DB Packet Storm
250852 10 危険 Google - Google Chrome における DEP および ASLR 保護メカニズムを回避される脆弱性 CWE-399
リソース管理の問題 		CVE-2012-1845 2012-03-27 14:19 2012-03-22 Show GitHub Exploit DB Packet Storm
250853 5 警告 Google - Google Chrome で使用される Google V8 におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2011-3057 2012-03-27 14:08 2012-03-22 Show GitHub Exploit DB Packet Storm
250854 6.8 警告 Google - Google Chrome の browser native UI における詳細不明な脆弱性 CWE-Other
その他 		CVE-2011-3055 2012-03-27 14:05 2012-03-21 Show GitHub Exploit DB Packet Storm
250855 5 警告 Google - Google Chrome の WebUI 権限の実装におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-3054 2012-03-27 14:04 2012-03-21 Show GitHub Exploit DB Packet Storm
250856 7.5 危険 Google - Google Chrome の WebGL 実装におけるサービス運用妨害 (メモリ破損) の脆弱性 CWE-119
バッファエラー 		CVE-2011-3052 2012-03-27 13:58 2012-03-21 Show GitHub Exploit DB Packet Storm
250857 7.5 危険 Google - Google Chrome の Cascading Style Sheets 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-3051 2012-03-27 13:57 2012-03-21 Show GitHub Exploit DB Packet Storm
250858 6.8 警告 Google - Google Chrome で使用される libpng の pngrutil.c における整数符号エラーの脆弱性 CWE-189
数値処理の問題 		CVE-2011-3045 2012-03-27 13:53 2012-03-21 Show GitHub Exploit DB Packet Storm
250859 6.4 警告 日本電気
IBM
富士通
サイバートラスト株式会社
NTP Project
サン・マイクロシステムズ
ヒューレット・パッカード
インターネットイニシアティブ
オラクル
レッドハット		 - NTP におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2009-3563 2012-03-27 11:37 2009-12-9 Show GitHub Exploit DB Packet Storm
250860 6.8 警告 アップル
サイバートラスト株式会社
NTP Project
ヒューレット・パッカード
ターボリナックス
オラクル
VMware
レッドハット		 - NTP の ntpq における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-0159 2012-03-27 11:35 2009-04-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2921 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/vc4: Fix memory leak of BO array in hang state The hang state's BO array is allocated separately with kzalloc() in vc4_save_h… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2026-43105 2026-05-12 02:32 2026-05-6 Show GitHub Exploit DB Packet Storm
2922 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix incorrect dentry refcount in cachefiles_cull() The patch mentioned below changed cachefiles_bury_object() to expe… NVD-CWE-Other
CVE-2026-43106 2026-05-12 02:31 2026-05-6 Show GitHub Exploit DB Packet Storm
2923 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: xfrm: account XFRMA_IF_ID in aevent size calculation xfrm_get_ae() allocates the reply skb with xfrm_aevent_msgsize(), then build… CWE-131
Incorrect Calculation of Buffer Size 		CVE-2026-43107 2026-05-12 02:30 2026-05-6 Show GitHub Exploit DB Packet Storm
2924 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: soc: qcom: pd-mapper: Fix element length in servreg_loc_pfr_req_ei It looks element length declared in servreg_loc_pfr_req_ei for… NVD-CWE-noinfo
CVE-2026-43108 2026-05-12 02:27 2026-05-6 Show GitHub Exploit DB Packet Storm
2925 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: x86: shadow stacks: proper error handling for mmap lock 김영민 reports that shstk_pop_sigframe() doesn't check for errors from mmap_… NVD-CWE-noinfo
CVE-2026-43109 2026-05-12 02:25 2026-05-6 Show GitHub Exploit DB Packet Storm
2926 4.3 MEDIUM
Network 		weblate weblate Weblate is a web based localization tool. Prior to version 5.17.1, the screenshots, tasks, and component link API allowed for the enumeration of translations in a project inaccessible to the user. Th… CWE-203
 Information Exposure Through Discrepancy 		CVE-2026-44263 2026-05-12 02:24 2026-05-8 Show GitHub Exploit DB Packet Storm
2927 7.5 HIGH
Network 		prometheus prometheus Prometheus is an open-source monitoring system and time series database. Prior to versions 3.5.3 and 3.11.3, the remote read endpoint (/api/v1/read) does not validate the declared decoded length in a… CWE-400
CWE-789
 Uncontrolled Resource Consumption
 Memory Allocation with Excessive Size Value 		CVE-2026-42154 2026-05-12 02:22 2026-05-5 Show GitHub Exploit DB Packet Storm
2928 7.5 HIGH
Network 		prometheus prometheus Prometheus is an open-source monitoring system and time series database. Prior to versions 3.5.3 and 3.11.3, the client_secret field in the Azure AD remote write OAuth configuration (storage/remote/a… CWE-200
CWE-312
Information Exposure
 Cleartext Storage of Sensitive Information 		CVE-2026-42151 2026-05-12 02:22 2026-05-5 Show GitHub Exploit DB Packet Storm
2929 6.5 MEDIUM
Network 		github enterprise_server An authentication bypass vulnerability was identified in GitHub Enterprise Server that allowed an unauthenticated attacker to create a local user account, bypassing the configured external identity p… CWE-306
Missing Authentication for Critical Function 		CVE-2026-6736 2026-05-12 02:20 2026-05-8 Show GitHub Exploit DB Packet Storm
2930 9.9 CRITICAL
Network 		mozilla 0din_scanner ai-scanner is an AI model safety scanner built on NVIDIA garak. From version 1.0.0 to before version 1.4.1, there is a remote code execution vulnerability via JavaScript injection in `BrowserAutomati… CWE-94
Code Injection 		CVE-2026-41512 2026-05-12 02:20 2026-05-8 Show GitHub Exploit DB Packet Storm