Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 7, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3851	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-31458	2026-05-7 10:52	2026-04-22	Show	GitHub Exploit DB Packet Storm

3852	7.5	重要 Network	マイクロソフト	Microsoft Dynamics 365	Microsoft Dynamics 365 (online) Spoofing Vulnerability	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-32210	2026-05-7 10:52	2026-04-23	Show	GitHub Exploit DB Packet Storm

3853	9.8	緊急 Network	GNU Project	inetutils	GNU Projectのinetutilsにおける古典的バッファオーバーフローの脆弱性	CWE-120 古典的バッファオーバーフロー	CVE-2026-32746	2026-05-7 10:52	2026-03-13	Show	GitHub Exploit DB Packet Storm

3854	4.7	警告 Network	GNU Project	inetutils	GNU Projectのinetutilsにおける領域間での誤ったリソース移動に関する脆弱性	CWE-669 領域間での誤ったリソース移動	CVE-2026-32772	2026-05-7 10:52	2026-03-16	Show	GitHub Exploit DB Packet Storm

3855	9.8	緊急 Network	マイクロソフト	Bing	Microsoft Bing のリモートでコードが実行される脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-33819	2026-05-7 10:52	2026-04-23	Show	GitHub Exploit DB Packet Storm

3856	5	警告 Local	オラクル	MySQL	オラクルのMySQLにおけるリソースの不適切なシャットダウンおよびリリースに関する脆弱性	CWE-404 リソースの不適切なシャットダウンおよびリリース	CVE-2026-34317	2026-05-7 10:51	2026-04-21	Show	GitHub Exploit DB Packet Storm

3857	5.8	警告 Network	オラクル	MySQL	オラクルのMySQLにおける情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2026-34318	2026-05-7 10:51	2026-04-21	Show	GitHub Exploit DB Packet Storm

3858	5	警告 Local	オラクル	MySQL	オラクルのMySQLにおけるリクエストに対するレスポンス内容の違いに起因する情報漏えいに関する脆弱性	CWE-204 リクエストに対するレスポンス内容の違いに起因する情報漏えい	CVE-2026-34319	2026-05-7 10:51	2026-04-21	Show	GitHub Exploit DB Packet Storm

3859	7.5	重要 Network	オラクル	Java VM	オラクルのJava VMにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-35229	2026-05-7 10:51	2026-04-21	Show	GitHub Exploit DB Packet Storm

3860	4.4	警告 Local	オラクル	Oracle Linux	オラクルのOracle Linuxにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-35233	2026-05-7 10:51	2026-05-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2441	8.8	HIGH Network	google	chrome	Inappropriate implementation in USB in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)	CWE-94 Code Injection	CVE-2026-9976	2026-05-30 01:43	2026-05-29	Show	GitHub Exploit DB Packet Storm

2442	8.8	HIGH Network	google	chrome	Use after free in Glic in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)	CWE-416 Use After Free	CVE-2026-9978	2026-05-30 01:43	2026-05-29	Show	GitHub Exploit DB Packet Storm

2443	8.8	HIGH Network	google	chrome	Type Confusion in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)	CWE-843 Type Confusion	CVE-2026-9983	2026-05-30 01:42	2026-05-29	Show	GitHub Exploit DB Packet Storm

2444	8.8	HIGH Network	google	chrome	Use after free in UI in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)	CWE-416 Use After Free	CVE-2026-9984	2026-05-30 01:42	2026-05-29	Show	GitHub Exploit DB Packet Storm

2445	7.8	HIGH Local	google	chrome	Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 148.0.7778.216 allowed a local attacker to execute arbitrary code via a malicious file. (Chromium sec…	CWE-20 Improper Input Validation	CVE-2026-9987	2026-05-30 01:41	2026-05-29	Show	GitHub Exploit DB Packet Storm

2446	8.8	HIGH Network	google	chrome	Use after free in Network in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)	CWE-416 Use After Free	CVE-2026-9992	2026-05-30 01:41	2026-05-29	Show	GitHub Exploit DB Packet Storm

2447	8.8	HIGH Network	google	chrome	Use after free in WebXR in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)	CWE-416 Use After Free	CVE-2026-9995	2026-05-30 01:40	2026-05-29	Show	GitHub Exploit DB Packet Storm

2448	4.3	MEDIUM Network	gitlab	gitlab	GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.9 before 18.10.7, 18.11 before 18.11.4, and 19.0 before 19.0.1 that under certain conditions could have allowed a blocked…	CWE-863 Incorrect Authorization	CVE-2026-9807	2026-05-30 01:40	2026-05-28	Show	GitHub Exploit DB Packet Storm

2449	9.9	CRITICAL Network	-	-	Plesk contains an XPath injection vulnerability in the APS Application Catalog search functionality, where user-supplied input is interpolated into XPath queries without proper sanitization. This all…	CWE-643 XPath Injection	CVE-2026-44962	2026-05-30 01:33	2026-05-30	Show	GitHub Exploit DB Packet Storm

2450	9.3	CRITICAL Network	-	-	Sherlock hunts down social media accounts by username across social networks. Prior to 0.16.1, the GitHub Actions workflow validate_modified_targets.yml is vulnerable to command injection via the pul…	CWE-78 OS Command	CVE-2026-44590	2026-05-30 01:32	2026-05-28	Show	GitHub Exploit DB Packet Storm