Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5091	7.5	重要 Network	BMC Software	Control-M Managed File Transfer	BMC SoftwareのControl-M Managed File Transferにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-23782	2026-04-30 12:14	2026-04-10	Show	GitHub Exploit DB Packet Storm

5092	9.9	緊急 Network	Doorman	Doorman	Doormanにおける権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2026-30269	2026-04-30 12:14	2026-04-20	Show	GitHub Exploit DB Packet Storm

5093	7.5	重要 Network	PowerDNS	PowerDNS Recursor dnsdist PowerDNS Authoritative Server	PowerDNSのPowerDNS Authoritative Server等の複数製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-33257	2026-04-30 12:14	2026-04-22	Show	GitHub Exploit DB Packet Storm

5094	7.5	重要 Network	PowerDNS	PowerDNS Recursor dnsdist PowerDNS Authoritative Server	PowerDNSのPowerDNS Authoritative Server等の複数製品における制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-33260	2026-04-30 12:14	2026-04-22	Show	GitHub Exploit DB Packet Storm

5095	8.8	重要 Network	litellm	litellm	LiteLLMにおける保護されていない代替チャネルに関する脆弱性	CWE-420 保護されていない代替チャネル	CVE-2026-40217	2026-04-30 12:14	2026-04-10	Show	GitHub Exploit DB Packet Storm

5096	7.8	重要 Local	radare	radare2	radareのradare2におけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-40517	2026-04-30 12:14	2026-04-22	Show	GitHub Exploit DB Packet Storm

5097	6.7	警告 Local	The GnuPG Project	Libgcrypt	The GnuPG ProjectのLibgcryptにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2026-41989	2026-04-30 12:14	2026-04-23	Show	GitHub Exploit DB Packet Storm

5098	9.8	緊急 Network	OFFIS	DCMTK	OFFISのDCMTKにおける複数の脆弱性	CWE-77 CWE-78	CVE-2026-5663	2026-04-30 12:14	2026-04-6	Show	GitHub Exploit DB Packet Storm

5099	5.5	警告 Local	Angry IP Scanner	Angry IP Scanner	Angry IP Scannerにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2018-25262	2026-04-30 12:14	2026-04-22	Show	GitHub Exploit DB Packet Storm

5100	7.8	重要 Local	LizardSystems	LanSpy	LizardSystemsのLanSpyにおける境界外書き込みに関する脆弱性	CWE-787 境界外書き込み	CVE-2018-25265	2026-04-30 12:14	2026-04-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1251	6.5	MEDIUM Network	-	-	A missing upper-bound check in the udpif_set_threads() function of Open vSwitch v3.6.90 allows an attacker with OVSDB write access to request an excessive number of handler or revalidation threads. T…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2026-36499	2026-06-7 05:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

1252	8.3	HIGH Network	google	chrome	Use after free in Autofill in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. …	CWE-416 Use After Free	CVE-2026-11002	2026-06-7 03:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

1253	4.2	MEDIUM Network	google	chrome	Inappropriate implementation in Payments in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted …	CWE-290 CWE-451 Authentication Bypass by Spoofing User Interface (UI) Misrepresentation of Critical Information	CVE-2026-11001	2026-06-7 02:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

1254	6.5	MEDIUM Network	google	chrome	Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium securit…	CWE-457 Use of Uninitialized Variable	CVE-2026-10994	2026-06-7 02:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

1255	6.5	MEDIUM Network	google	chrome	Heap buffer overflow in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium secur…	CWE-122 Heap-based Buffer Overflow	CVE-2026-10993	2026-06-7 02:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

1256	6.5	MEDIUM Network	google	chrome	Insufficient data validation in Animation in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (C…	NVD-CWE-noinfo CWE-20 Improper Input Validation	CVE-2026-10992	2026-06-7 02:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

1257	8.3	HIGH Network	google	chrome	Use after free in Glic in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chr…	CWE-416 Use After Free	CVE-2026-10990	2026-06-7 02:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

1258	5.9	MEDIUM Network	google	chrome	Inappropriate implementation in WebRTC in Google Chrome prior to 149.0.7827.53 allowed an attacker in a privileged network position to leak cross-origin data via malicious network traffic. (Chromium …	CWE-20 Improper Input Validation	CVE-2026-11199	2026-06-6 22:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

1259	8.3	HIGH Network	google	chrome	Insufficient validation of untrusted input in Printing in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a s…	CWE-20 Improper Input Validation	CVE-2026-10971	2026-06-6 22:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

1260	6.1	MEDIUM Physics	-	-	Inappropriate implementation in Enterprise in Google Chrome prior to 149.0.7827.53 allowed a local attacker to perform privilege escalation via physical access to the device. (Chromium security sever…	CWE-269 Improper Privilege Management	CVE-2026-11229	2026-06-6 21:16	2026-06-5	Show	GitHub Exploit DB Packet Storm