Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3031 9.9 緊急
Network 		マイクロソフト Azure Logic Apps Azure Logic Apps の特権昇格の脆弱性 CWE-284
不適切なアクセス制御 		CVE-2026-42823 2026-05-18 12:14 2026-05-12 Show GitHub Exploit DB Packet Storm
3032 7 重要
Local 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows Server 2016
Microsoft Windows 10 1809
Microsoft Windows 11 23h2
Microsoft Wind… 		Windows テレフォニー サービスの特権昇格の脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-42825 2026-05-18 12:14 2026-05-12 Show GitHub Exploit DB Packet Storm
3033 6.5 警告
Local 		マイクロソフト Azure Monitor Agent Azure Monitor エージェントの拡張機能の特権昇格の脆弱性 CWE-426
信頼性のない検索パス 		CVE-2026-42830 2026-05-18 12:14 2026-05-12 Show GitHub Exploit DB Packet Storm
3034 9.1 緊急
Network 		マイクロソフト Microsoft Dynamics 365 Microsoft Dynamics 365 オンプレミスのリモートでコードが実行される脆弱性 CWE-250
CWE-noinfo
CVE-2026-42833 2026-05-18 12:14 2026-05-12 Show GitHub Exploit DB Packet Storm
3035 5.4 警告
Network 		Outlook.com Microsoft Edge Chromium Microsoft Edge (Chromium ベース) の特権の昇格の脆弱性 CWE-74
インジェクション 		CVE-2026-42838 2026-05-18 12:14 2026-05-12 Show GitHub Exploit DB Packet Storm
3036 6.5 警告
Network 		Outlook.com Microsoft Edge Chromium Microsoft Edge (Chromium ベース) for Android のスプーフィングの脆弱性 CWE-451
ユーザインターフェースにおける重要情報の誤った表示 		CVE-2026-42891 2026-05-18 12:14 2026-05-12 Show GitHub Exploit DB Packet Storm
3037 7.8 重要
Local 		マイクロソフト Microsoft Windows 11 25h2
Microsoft Windows 11 24h2
Microsoft Windows 11 26h1
Microsoft Windows Server 2025 		Windows DWM Core ライブラリの特権の昇格の脆弱性 CWE-122
CWE-190
CVE-2026-42896 2026-05-18 12:13 2026-05-12 Show GitHub Exploit DB Packet Storm
3038 9.9 緊急
Network 		マイクロソフト Microsoft Dynamics 365 Microsoft Dynamics 365 オンプレミスのリモートでコードが実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2026-42898 2026-05-18 12:13 2026-05-12 Show GitHub Exploit DB Packet Storm
3039 7.8 重要
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける二重解放に関する脆弱性 CWE-415
二重解放 		CVE-2026-43097 2026-05-18 12:13 2026-05-6 Show GitHub Exploit DB Packet Storm
3040 5.5 警告
Local 		Linux Linux Kernel LinuxのLinux Kernelにおける不特定の脆弱性 CWE-Other
その他 		CVE-2026-43098 2026-05-18 12:13 2026-05-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
306851 - google chrome Google Chrome before 13.0.782.107 does not properly address re-entrancy issues associated with the GPU lock, which allows remote attackers to cause a denial of service (application crash) via unspeci… CWE-20
 Improper Input Validation  		CVE-2011-2787 2024-11-21 10:28 2011-08-3 Show GitHub Exploit DB Packet Storm
306852 - google chrome Google Chrome before 13.0.782.107 does not ensure that the speech-input bubble is shown on the product's screen, which might make it easier for remote attackers to make audio recordings via a crafted… CWE-20
 Improper Input Validation  		CVE-2011-2786 2024-11-21 10:28 2011-08-3 Show GitHub Exploit DB Packet Storm
306853 - google chrome The extensions implementation in Google Chrome before 13.0.782.107 does not properly validate the URL for the home page, which allows remote attackers to have an unspecified impact via a crafted exte… CWE-20
 Improper Input Validation  		CVE-2011-2785 2024-11-21 10:28 2011-08-3 Show GitHub Exploit DB Packet Storm
306854 - google chrome Google Chrome before 13.0.782.107 allows remote attackers to obtain sensitive information via a request for the GL program log, which reveals a local path in an unspecified log entry. CWE-200
Information Exposure 		CVE-2011-2784 2024-11-21 10:28 2011-08-3 Show GitHub Exploit DB Packet Storm
306855 - google chrome Google Chrome before 13.0.782.107 does not ensure that developer-mode NPAPI extension installations are confirmed by a browser dialog, which makes it easier for remote attackers to modify the product… CWE-20
 Improper Input Validation  		CVE-2011-2783 2024-11-21 10:28 2011-08-3 Show GitHub Exploit DB Packet Storm
306856 - google chrome The drag-and-drop implementation in Google Chrome before 13.0.782.107 on Linux does not properly enforce permissions for files, which allows user-assisted remote attackers to bypass intended access r… CWE-276
Incorrect Default Permissions  		CVE-2011-2782 2024-11-21 10:28 2011-08-3 Show GitHub Exploit DB Packet Storm
306857 - lars_hjemli cgit Cross-site scripting (XSS) vulnerability in the print_fileinfo function in ui-diff.c in cgit 0.9.0.2 and earlier allows remote authenticated users to inject arbitrary web script or HTML via the filen… CWE-79
Cross-site Scripting 		CVE-2011-2711 2024-11-21 10:28 2011-08-3 Show GitHub Exploit DB Packet Storm
306858 - google chrome The Basic Authentication dialog implementation in Google Chrome before 13.0.782.107 does not properly handle strings, which might make it easier for remote attackers to capture credentials via a craf… CWE-287
Improper Authentication 		CVE-2011-2361 2024-11-21 10:28 2011-08-3 Show GitHub Exploit DB Packet Storm
306859 - google chrome Google Chrome before 13.0.782.107 does not ensure that the user is prompted before download of a dangerous file, which makes it easier for remote attackers to bypass intended content restrictions via… NVD-CWE-noinfo
CVE-2011-2360 2024-11-21 10:28 2011-08-3 Show GitHub Exploit DB Packet Storm
306860 - google
apple
debian 		chrome
iphone_os
itunes
safari
debian_linux 		Google Chrome before 13.0.782.107 does not properly track line boxes during rendering, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown… CWE-20
 Improper Input Validation  		CVE-2011-2359 2024-11-21 10:28 2011-08-3 Show GitHub Exploit DB Packet Storm