Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4071	6.7	警告 Local	デル	insightiq	デルのinsightiqにおける不要な特権による実行に関する脆弱性	CWE-250 不要な特権による実行	CVE-2026-40638	2026-05-14 10:19	2026-05-12	Show	GitHub Exploit DB Packet Storm

4072	7.5	重要 Network	VMware	Spring Cloud Config	VMwareのSpring Cloud Configにおけるユーザ制御の鍵による認証回避に関する脆弱性	CWE-639 ユーザ制御の鍵による認証回避	CVE-2026-40981	2026-05-14 10:19	2026-05-7	Show	GitHub Exploit DB Packet Storm

4073	9.1	緊急 Network	VMware	Spring Cloud Config	VMwareのSpring Cloud Configにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-40982	2026-05-14 10:19	2026-05-7	Show	GitHub Exploit DB Packet Storm

4074	8.1	重要 Network	VMware	Spring Cloud Config	VMwareのSpring Cloud ConfigにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-41002	2026-05-14 10:19	2026-05-7	Show	GitHub Exploit DB Packet Storm

4075	4.4	警告 Local	VMware	Spring Cloud Config	VMwareのSpring Cloud Configにおけるログファイルからの情報漏えいに関する脆弱性	CWE-532 ログファイルからの情報漏えい	CVE-2026-41004	2026-05-14 10:19	2026-05-7	Show	GitHub Exploit DB Packet Storm

4076	5.3	警告 Network	Sync-in	Sync-in Server	Sync-inのSync-in Serverにおけるタイミングの違いに起因する情報漏えいに関する脆弱性	CWE-208 タイミングの違いに起因する情報漏えい	CVE-2026-41161	2026-05-14 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

4077	5.3	警告 Network	angular	angular	angularにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-41423	2026-05-14 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

4078	8.1	重要 Network	Linux Foundation	dapr	Linux Foundationのdaprにおける複数の脆弱性	CWE-22 CWE-284 CWE-noinfo	CVE-2026-41491	2026-05-14 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

4079	7.5	重要 Network	Loren Segal	YARD	Loren SegalのYARDにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-41493	2026-05-14 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

4080	3.3	低 Network	Kimai project	kimai	Kimai projectのKimaiにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-41498	2026-05-14 10:19	2026-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
3061	8.8	HIGH Network	-	-	Use after free in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical)	CWE-416 Use After Free	CVE-2026-10896	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

3062	8.3	HIGH Network	-	-	Stack buffer overflow in GPU in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page…	CWE-121 Stack-based Buffer Overflow	CVE-2026-10898	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

3063	7.5	HIGH Network	-	-	Use after free in Ozone in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a …	CWE-416 Use After Free	CVE-2026-10899	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

3064	7.5	HIGH Network	-	-	Use after free in Passwords in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via …	CWE-416 Use After Free	CVE-2026-10900	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

3065	7.5	HIGH Network	-	-	Use after free in Passwords in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTM…	CWE-416 Use After Free	CVE-2026-10901	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

3066	8.8	HIGH Network	-	-	Use after free in Ozone in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical)	CWE-416 Use After Free	CVE-2026-10902	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

3067	8.8	HIGH Network	-	-	Use after free in WebRTC in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)	CWE-416 Use After Free	CVE-2026-10903	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

3068	8.3	HIGH Network	-	-	Use after free in Network in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (…	CWE-416 Use After Free	CVE-2026-10905	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

3069	7.5	HIGH Network	-	-	Use after free in WebAuthentication in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via…	CWE-416 Use After Free	CVE-2026-10906	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

3070	8.8	HIGH Network	-	-	Out of bounds write in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	CWE-787 Out-of-bounds Write	CVE-2026-10907	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm