Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
5181	5.3	警告 Network	axios project	axios	axios projectのaxiosにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-42034	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

5182	7.4	重要 Network	axios project	axios	axios projectのaxiosにおける複数の脆弱性	CWE-113 CWE-1321	CVE-2026-42035	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

5183	5.3	警告 Network	axios project	axios	axios projectのaxiosにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-42036	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

5184	5.3	警告 Network	axios project	axios	axios projectのaxiosにおけるCRLF インジェクションの脆弱性	CWE-93 CRLF インジェクション	CVE-2026-42037	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

5185	7.5	重要 Network	axios project	axios	axios projectのaxiosにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-42038	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

5186	7.5	重要 Network	axios project	axios	axios projectのaxiosにおける再帰制御に関する脆弱性	CWE-674 不適切な再帰制御	CVE-2026-42039	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

5187	3.7	低 Network	axios project	axios	axios projectのaxiosにおける複数の脆弱性	CWE-116 CWE-626	CVE-2026-42040	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

5188	6.5	警告 Network	axios project	axios	axios projectのaxiosにおける複数の脆弱性	CWE-1321 CWE-287	CVE-2026-42041	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

5189	5.4	警告 Network	axios project	axios	axios projectのaxiosにおける複数の脆弱性	CWE-183 CWE-201	CVE-2026-42042	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

5190	10	緊急 Network	axios project	axios	axios projectのaxiosにおける複数の脆弱性	CWE-183 CWE-441 CWE-918	CVE-2026-42043	2026-04-30 12:25	2026-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1251	6.5	MEDIUM Network	-	-	A missing upper-bound check in the udpif_set_threads() function of Open vSwitch v3.6.90 allows an attacker with OVSDB write access to request an excessive number of handler or revalidation threads. T…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2026-36499	2026-06-7 05:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

1252	8.3	HIGH Network	google	chrome	Use after free in Autofill in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. …	CWE-416 Use After Free	CVE-2026-11002	2026-06-7 03:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

1253	4.2	MEDIUM Network	google	chrome	Inappropriate implementation in Payments in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted …	CWE-290 CWE-451 Authentication Bypass by Spoofing User Interface (UI) Misrepresentation of Critical Information	CVE-2026-11001	2026-06-7 02:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

1254	6.5	MEDIUM Network	google	chrome	Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium securit…	CWE-457 Use of Uninitialized Variable	CVE-2026-10994	2026-06-7 02:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

1255	6.5	MEDIUM Network	google	chrome	Heap buffer overflow in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium secur…	CWE-122 Heap-based Buffer Overflow	CVE-2026-10993	2026-06-7 02:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

1256	6.5	MEDIUM Network	google	chrome	Insufficient data validation in Animation in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (C…	NVD-CWE-noinfo CWE-20 Improper Input Validation	CVE-2026-10992	2026-06-7 02:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

1257	8.3	HIGH Network	google	chrome	Use after free in Glic in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chr…	CWE-416 Use After Free	CVE-2026-10990	2026-06-7 02:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

1258	5.9	MEDIUM Network	google	chrome	Inappropriate implementation in WebRTC in Google Chrome prior to 149.0.7827.53 allowed an attacker in a privileged network position to leak cross-origin data via malicious network traffic. (Chromium …	CWE-20 Improper Input Validation	CVE-2026-11199	2026-06-6 22:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

1259	8.3	HIGH Network	google	chrome	Insufficient validation of untrusted input in Printing in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a s…	CWE-20 Improper Input Validation	CVE-2026-10971	2026-06-6 22:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

1260	6.1	MEDIUM Physics	-	-	Inappropriate implementation in Enterprise in Google Chrome prior to 149.0.7827.53 allowed a local attacker to perform privilege escalation via physical access to the device. (Chromium security sever…	CWE-269 Improper Privilege Management	CVE-2026-11229	2026-06-6 21:16	2026-06-5	Show	GitHub Exploit DB Packet Storm