Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3851	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-23308	2026-06-3 15:37	2026-03-25	Show	GitHub Exploit DB Packet Storm

3852	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2026-23309	2026-06-3 15:37	2026-03-25	Show	GitHub Exploit DB Packet Storm

3853	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-23310	2026-06-3 15:37	2026-03-25	Show	GitHub Exploit DB Packet Storm

3854	6.5	警告 Network	マイクロソフト	Microsoft SharePoint Server	Microsoft SharePoint Server のなりすましの脆弱性	CWE-20 CWE-noinfo	CVE-2026-32201	2026-06-3 15:37	2026-04-14	Show	GitHub Exploit DB Packet Storm

3855	6.5	警告 Network	Grafana Labs	Grafana	Grafana LabsのGrafanaにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-33378	2026-06-3 15:37	2026-05-13	Show	GitHub Exploit DB Packet Storm

3856	9.8	緊急 Network	Joomla!	Joomla!	Joomla!におけるアクセス制御に関する脆弱性	CWE-284 CWE-noinfo	CVE-2026-35223	2026-06-3 15:37	2026-05-26	Show	GitHub Exploit DB Packet Storm

3857	8.3	重要 Network	マイクロソフト	Windows Admin Center	Windows Admin Center の特権の昇格の脆弱性	CWE-862 認証の欠如	CVE-2026-35438	2026-06-3 15:37	2026-05-12	Show	GitHub Exploit DB Packet Storm

3858	9.1	緊急 Network	The Go Project	crypto	The Go Projectのcryptoにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-39832	2026-06-3 15:36	2026-05-22	Show	GitHub Exploit DB Packet Storm

3859	9.1	緊急 Network	The Go Project	crypto	The Go Projectのcryptoにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-39833	2026-06-3 15:36	2026-05-22	Show	GitHub Exploit DB Packet Storm

3860	9.1	緊急 Network	The Go Project	crypto	The Go Projectのcryptoにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2026-39834	2026-06-3 15:36	2026-05-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
4251	8.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/xe/pf: Fix sysfs initialization In case of devm_add_action_or_reset() failure the provided cleanup action will be run immedia…	CWE-416 Use After Free	CVE-2026-46264	2026-06-10 02:26	2026-06-4	Show	GitHub Exploit DB Packet Storm

4252	8.1	HIGH Network	google	chrome	Inappropriate implementation in Plugins in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. (…	CWE-346 Origin Validation Error	CVE-2026-11693	2026-06-10 02:26	2026-06-9	Show	GitHub Exploit DB Packet Storm

4253	5.4	MEDIUM Network	google	chrome	Inappropriate implementation in Guest View in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)	CWE-20 NVD-CWE-noinfo Improper Input Validation	CVE-2026-11701	2026-06-10 02:24	2026-06-9	Show	GitHub Exploit DB Packet Storm

4254	7.5	HIGH Network	perl	dbi	DBI versions before 1.648 for Perl saved errors in a limited-sized buffer. Error messages that were returned when RaiseError, PrintError or HandleError were set were written to a 200-byte buffer wit…	CWE-787 Out-of-bounds Write	CVE-2026-9698	2026-06-10 02:20	2026-06-9	Show	GitHub Exploit DB Packet Storm

4255	9.8	CRITICAL Network	-	-	YesWiki is a wiki system written in PHP. Prior to version 4.6.6, an unsafe execution vulnerability exists in the Bazar form field calculator (CalcField.php) of YesWiki. The application attempts to sa…	CWE-94 CWE-1333 Code Injection Inefficient Regular Expression Complexity	CVE-2026-52778	2026-06-10 02:17	2026-06-9	Show	GitHub Exploit DB Packet Storm

4256	6.5	MEDIUM Network	-	-	Exposure of sensitive information to an unauthorized actor in Windows NTLM allows an unauthorized attacker to perform spoofing over a network.	CWE-200 Information Exposure	CVE-2026-50508	2026-06-10 02:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

4257	8.8	HIGH Network	-	-	Hermes WebUI before version 0.51.311 contains a remote code execution vulnerability that allows authenticated attackers to execute arbitrary commands by placing malicious executable Git configuration…	CWE-78 OS Command	CVE-2026-49959	2026-06-10 02:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

4258	5.0	MEDIUM Local	-	-	Hermes WebUI before version 0.51.303 contains a time-of-check time-of-use (TOCTOU) race condition vulnerability in the git_discard function within api/workspace_git.py that allows attackers to delete…	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2026-49958	2026-06-10 02:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

4259	5.3	MEDIUM Network	-	-	Hermes WebUI before version 0.51.270 contains a resource exhaustion vulnerability that allows unauthenticated remote attackers to degrade service availability by repeatedly calling the passkey option…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2026-49955	2026-06-10 02:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

4260	9.8	CRITICAL Network	-	-	External control of file name or path in Azure Stack Edge allows an unauthorized attacker to execute code over a network.	CWE-73 External Control of File Name or Path	CVE-2026-47643	2026-06-10 02:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed