Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4391 6.8 警告
Adjacent 		VMware Spring Boot VMwareのSpring Bootにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2026-40970 2026-05-18 12:15 2026-04-27 Show GitHub Exploit DB Packet Storm
4392 9.1 緊急
Network 		VMware Spring Boot VMwareのSpring Bootにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2026-40971 2026-05-18 12:15 2026-04-27 Show GitHub Exploit DB Packet Storm
4393 9.8 緊急
Network 		VMware Spring Boot VMwareのSpring Bootにおける証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2026-40974 2026-05-18 12:15 2026-04-28 Show GitHub Exploit DB Packet Storm
4394 7.2 重要
Network 		SonicWALL SMA7200 ファームウェア
SMA7210 ファームウェア
SMA8200v
SMA6200 ファームウェア
SMA6210 ファームウェア 		SonicWALLのSMA6200 ファームウェア等の複数製品におけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-4112 2026-05-18 12:15 2026-04-9 Show GitHub Exploit DB Packet Storm
4395 7.2 重要
Network 		SonicWALL SMA7200 ファームウェア
SMA7210 ファームウェア
SMA8200v
SMA6200 ファームウェア
SMA6210 ファームウェア 		SonicWALLのSMA6200 ファームウェア等の複数製品におけるリクエストに対するレスポンス内容の違いに起因する情報漏えいに関する脆弱性 CWE-204
リクエストに対するレスポンス内容の違いに起因する情報漏えい 		CVE-2026-4113 2026-05-18 12:15 2026-04-9 Show GitHub Exploit DB Packet Storm
4396 6.6 警告
Network 		SonicWALL SMA7200 ファームウェア
SMA7210 ファームウェア
SMA8200v
SMA6200 ファームウェア
SMA6210 ファームウェア 		SonicWALLのSMA6200 ファームウェア等の複数製品におけるUnicode エンコーディングの処理に関する脆弱性 CWE-176
Unicode エンコーディングの不適切な処理 		CVE-2026-4114 2026-05-18 12:15 2026-04-9 Show GitHub Exploit DB Packet Storm
4397 7.2 重要
Network 		SonicWALL SMA7200 ファームウェア
SMA7210 ファームウェア
SMA8200v
SMA6200 ファームウェア
SMA6210 ファームウェア 		SonicWALLのSMA6200 ファームウェア等の複数製品におけるUnicode エンコーディングの処理に関する脆弱性 CWE-176
Unicode エンコーディングの不適切な処理 		CVE-2026-4116 2026-05-18 12:15 2026-04-9 Show GitHub Exploit DB Packet Storm
4398 10 緊急
Network 		Minetest Minetest Minetestにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-41196 2026-05-18 12:15 2026-04-23 Show GitHub Exploit DB Packet Storm
4399 7.5 重要
Network 		Apache Software Foundation Apache Tomcat Apache Software FoundationのApache Tomcatにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-41284 2026-05-18 12:15 2026-05-12 Show GitHub Exploit DB Packet Storm
4400 6.5 警告
Network 		liquidjs liquidjs liquidjsにおける再帰制御に関する脆弱性 CWE-674
不適切な再帰制御 		CVE-2026-41311 2026-05-18 12:15 2026-05-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
306871 - google chrome Skia, as used in Google Chrome before 18.0.1025.142, allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors. CWE-190
 Integer Overflow or Wraparound 		CVE-2011-3065 2024-11-21 10:29 2012-03-31 Show GitHub Exploit DB Packet Storm
306872 - google
apple 		chrome
itunes
safari
iphone_os 		Use-after-free vulnerability in Google Chrome before 18.0.1025.142 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to SVG clipping. CWE-416
 Use After Free 		CVE-2011-3064 2024-11-21 10:29 2012-03-31 Show GitHub Exploit DB Packet Storm
306873 - google chrome Google Chrome before 18.0.1025.142 does not properly validate the renderer's navigation requests, which has unspecified impact and remote attack vectors. CWE-20
 Improper Input Validation  		CVE-2011-3063 2024-11-21 10:29 2012-03-31 Show GitHub Exploit DB Packet Storm
306874 - google
mozilla 		chrome
thunderbird
thunderbird_esr
firefox
seamonkey 		Off-by-one error in the OpenType Sanitizer in Google Chrome before 18.0.1025.142 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted OpenType … CWE-682
 Incorrect Calculation 		CVE-2011-3062 2024-11-21 10:29 2012-03-31 Show GitHub Exploit DB Packet Storm
306875 - google chrome Google Chrome before 18.0.1025.142 does not properly check X.509 certificates before use of a SPDY proxy, which might allow man-in-the-middle attackers to spoof servers or obtain sensitive informatio… CWE-295
Improper Certificate Validation  		CVE-2011-3061 2024-11-21 10:29 2012-03-31 Show GitHub Exploit DB Packet Storm
306876 - google
apple 		chrome
itunes
safari
iphone_os 		Google Chrome before 18.0.1025.142 does not properly handle text fragments, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors. CWE-125
Out-of-bounds Read 		CVE-2011-3060 2024-11-21 10:29 2012-03-31 Show GitHub Exploit DB Packet Storm
306877 - google
apple 		chrome
itunes
safari
iphone_os 		Google Chrome before 18.0.1025.142 does not properly handle SVG text elements, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors. CWE-125
Out-of-bounds Read 		CVE-2011-3059 2024-11-21 10:29 2012-03-31 Show GitHub Exploit DB Packet Storm
306878 - google
apple 		chrome
mac_os_x
iphone_os 		Google Chrome before 18.0.1025.142 does not properly handle the EUC-JP encoding system, which might allow remote attackers to conduct cross-site scripting (XSS) attacks via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2011-3058 2024-11-21 10:29 2012-03-31 Show GitHub Exploit DB Packet Storm
306879 - google
opensuse 		chrome
opensuse 		Google Chrome before 17.0.963.83 does not properly restrict the extension web request API, which allows remote attackers to cause a denial of service (disrupted system requests) via a crafted extensi… NVD-CWE-Other
CVE-2011-3049 2024-11-21 10:29 2012-03-23 Show GitHub Exploit DB Packet Storm
306880 - google chrome Google V8, as used in Google Chrome before 17.0.963.83, allows remote attackers to cause a denial of service via vectors that trigger an invalid read operation. CWE-125
Out-of-bounds Read 		CVE-2011-3057 2024-11-21 10:29 2012-03-23 Show GitHub Exploit DB Packet Storm