Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
3481 6.1 警告
Network 		The Go Project Go The Go ProjectのGoにおけるエンコードおよびエスケープに関する脆弱性 CWE-116
不適切なエンコード、または出力のエスケープ 		CVE-2026-39826 2026-05-15 11:01 2026-05-7 Show GitHub Exploit DB Packet Storm
3482 7.5 重要
Network 		The Go Project Go The Go ProjectのGoにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-39836 2026-05-15 11:01 2026-05-7 Show GitHub Exploit DB Packet Storm
3483 4.3 警告
Network 		アップル tvOS
iOS
watchOS
visionos
iPadOS 		アップルのiPadOS等の複数製品における古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2026-39869 2026-05-15 11:01 2026-05-11 Show GitHub Exploit DB Packet Storm
3484 7.5 重要
Network 		- アップルのmacOSにおけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2026-39870 2026-05-15 11:01 2026-05-11 Show GitHub Exploit DB Packet Storm
3485 6.8 警告
Physics 		ZTE ZX297520V3 ファームウェア ZTEのZX297520V3 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-40003 2026-05-15 11:01 2026-05-7 Show GitHub Exploit DB Packet Storm
3486 7.8 重要
Local 		ZTE ZXCLOUD iRAI ZTEのZXCLOUD iRAIにおける制御されていない検索パスの要素に関する脆弱性 CWE-427
制御されていない検索パスの要素 		CVE-2026-40004 2026-05-15 11:01 2026-05-7 Show GitHub Exploit DB Packet Storm
3487 6.5 警告
Network 		Zulip Zulip Server ZulipのZulip Serverにおけるアクセス制御に関する脆弱性 CWE-284
CWE-noinfo
CVE-2026-40300 2026-05-15 11:01 2026-05-12 Show GitHub Exploit DB Packet Storm
3488 6.5 警告
Network 		NocoBase NocoBase NocoBaseにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-40346 2026-05-15 11:01 2026-04-18 Show GitHub Exploit DB Packet Storm
3489 8.8 重要
Network 		マイクロソフト Microsoft SharePoint Server Microsoft SharePoint Server のリモートでコードが実行される脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-40357 2026-05-15 11:01 2026-05-12 Show GitHub Exploit DB Packet Storm
3490 8.8 重要
Network 		マイクロソフト Microsoft SharePoint Server Microsoft SharePoint Server のリモートでコードが実行される脆弱性 CWE-1220
アクセス制御の不十分な粒度 		CVE-2026-40365 2026-05-15 11:01 2026-05-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
306991 - mozilla thunderbird
firefox 		Unspecified vulnerability in the browser engine in Mozilla Firefox 3.6.x before 3.6.18 and Thunderbird before 3.1.11 allows remote attackers to cause a denial of service (memory corruption and applic… NVD-CWE-noinfo
CVE-2011-2364 2024-11-21 10:28 2011-07-1 Show GitHub Exploit DB Packet Storm
306992 - mozilla seamonkey
firefox
thunderbird 		Use-after-free vulnerability in the nsSVGPointList::AppendElement function in the implementation of SVG element lists in Mozilla Firefox before 3.6.18, Thunderbird before 3.1.11, and SeaMonkey throug… CWE-399
 Resource Management Errors 		CVE-2011-2363 2024-11-21 10:28 2011-07-1 Show GitHub Exploit DB Packet Storm
306993 - mozilla seamonkey
firefox
thunderbird 		Mozilla Firefox before 3.6.18, Thunderbird before 3.1.11, and SeaMonkey through 2.0.14 do not distinguish between cookies for two domain names that differ only in a trailing dot, which allows remote … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-2362 2024-11-21 10:28 2011-07-1 Show GitHub Exploit DB Packet Storm
306994 - intel g41_driver The Intel G41 driver 6.14.10.5355 on Windows XP SP3 allows remote attackers to cause a denial of service (system crash) via a crafted web page that is visited with Google Chrome or Mozilla Firefox, a… CWE-399
 Resource Management Errors 		CVE-2011-2604 2024-11-21 10:28 2011-07-1 Show GitHub Exploit DB Packet Storm
306995 - nvidia 9400m_driver The NVIDIA 9400M driver 6.2.6 on Mac OS X 10.6.7 allows remote attackers to cause a denial of service (desktop hang) via a crafted web page that is visited with Google Chrome or Mozilla Firefox, as d… CWE-399
 Resource Management Errors 		CVE-2011-2603 2024-11-21 10:28 2011-07-1 Show GitHub Exploit DB Packet Storm
306996 - nvidia geforce_310_driver The NVIDIA Geforce 310 driver 6.14.12.7061 on Windows XP SP3 allows remote attackers to cause a denial of service (system crash) via a crafted web page that is visited with Google Chrome or Mozilla F… CWE-399
 Resource Management Errors 		CVE-2011-2602 2024-11-21 10:28 2011-07-1 Show GitHub Exploit DB Packet Storm
306997 - apple mac_os_x The GPU support functionality in Mac OS X does not properly restrict rendering time, which allows remote attackers to cause a denial of service (desktop hang) via vectors involving WebGL and (1) shad… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-2601 2024-11-21 10:28 2011-07-1 Show GitHub Exploit DB Packet Storm
306998 - microsoft windows_xp The GPU support functionality in Windows XP does not properly restrict rendering time, which allows remote attackers to cause a denial of service (system crash) via vectors involving WebGL and (1) sh… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-2600 2024-11-21 10:28 2011-07-1 Show GitHub Exploit DB Packet Storm
306999 - google chrome Google Chrome 11 does not block use of a cross-domain image as a WebGL texture, which allows remote attackers to obtain approximate copies of arbitrary images via a timing attack involving a crafted … CWE-200
Information Exposure 		CVE-2011-2599 2024-11-21 10:28 2011-07-1 Show GitHub Exploit DB Packet Storm
307000 - mozilla firefox The WebGL implementation in Mozilla Firefox 4.x allows remote attackers to obtain screenshots of the windows of arbitrary desktop applications via vectors involving an SVG filter, an IFRAME element, … CWE-200
Information Exposure 		CVE-2011-2598 2024-11-21 10:28 2011-07-1 Show GitHub Exploit DB Packet Storm