Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 21, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
6211 9.1 緊急
Network 		The Kyverno Authors Kyverno The Kyverno AuthorsのKyvernoにおける複数の脆弱性 CWE-200
CWE-918
CVE-2026-41323 2026-04-30 12:26 2026-04-24 Show GitHub Exploit DB Packet Storm
6212 7.5 重要
Network 		Patrick Juchli (patrickjuchli) Basic FTP Patrick Juchli (patrickjuchli)のBasic FTPにおける複数の脆弱性 CWE-400
CWE-770
CVE-2026-41324 2026-04-30 12:26 2026-04-24 Show GitHub Exploit DB Packet Storm
6213 8.8 重要
Network 		getkirby kirby getkirbyのkirbyにおける不正な認証に関する脆弱性 CWE-863
不正な認証 		CVE-2026-41325 2026-04-30 12:26 2026-04-24 Show GitHub Exploit DB Packet Storm
6214 9.9 緊急
Network 		OpenClaw OpenClaw OpenClawにおける特権 API の不適切な使用に関する脆弱性 CWE-648
特権 API の不適切な使用 		CVE-2026-41329 2026-04-30 12:26 2026-04-21 Show GitHub Exploit DB Packet Storm
6215 4.4 警告
Local 		OpenClaw OpenClaw OpenClawにおける変数の安全ではないデフォルト値への初期化に関する脆弱性 CWE-453
変数の安全ではないデフォルト値への初期化 		CVE-2026-41330 2026-04-30 12:26 2026-04-21 Show GitHub Exploit DB Packet Storm
6216 9.8 緊急
Network 		socialengine socialengine socialengineにおけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2026-41460 2026-04-30 12:26 2026-04-23 Show GitHub Exploit DB Packet Storm
6217 8.5 重要
Network 		socialengine socialengine socialengineにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-41461 2026-04-30 12:26 2026-04-23 Show GitHub Exploit DB Packet Storm
6218 7.7 重要
Network 		The Kyverno Authors Kyverno The Kyverno AuthorsのKyvernoにおける到達可能なアサーションに関する脆弱性 CWE-617
到達可能なアサーション 		CVE-2026-41485 2026-04-30 12:25 2026-04-24 Show GitHub Exploit DB Packet Storm
6219 4 警告
Local 		The GnuPG Project Libgcrypt The GnuPG ProjectのLibgcryptにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-41990 2026-04-30 12:25 2026-04-23 Show GitHub Exploit DB Packet Storm
6220 7.4 重要
Network 		axios project axios axios projectのaxiosにおけるオブジェクトプロトタイプ属性の不適切に制御された変更に関する脆弱性 CWE-1321
オブジェクトプロトタイプ属性の不適切に制御された変更 (プロトタイプの汚染) 		CVE-2026-42033 2026-04-30 12:25 2026-04-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
991 8.8 HIGH
Network 		siemens sinec_ins A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 6). The application does not properly sanitize user input in the /api/sftp/uploadFiles endpoint, allowing the injectio… CWE-78
OS Command  		CVE-2026-46746 2026-06-13 03:08 2026-06-9 Show GitHub Exploit DB Packet Storm
992 6.5 MEDIUM
Network 		devolutions devolutions_server Improper neutralization of special elements in the built-in PAM provider password rotation templates in Devolutions Server allows an authenticated user with write access to a vault to execute arbitra… CWE-78
OS Command  		CVE-2026-10544 2026-06-13 03:07 2026-06-9 Show GitHub Exploit DB Packet Storm
993 8.3 HIGH
Network 		google chrome Use after free in GPU in Google Chrome on Mac prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML pag… CWE-416
 Use After Free 		CVE-2026-12023 2026-06-13 03:06 2026-06-12 Show GitHub Exploit DB Packet Storm
994 5.3 MEDIUM
Network 		google chrome Insufficient validation of untrusted input in Network in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a craft… CWE-20
 Improper Input Validation  		CVE-2026-12025 2026-06-13 03:06 2026-06-12 Show GitHub Exploit DB Packet Storm
995 8.3 HIGH
Network 		google chrome Use after free in GPU in Google Chrome on Android prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML… CWE-416
 Use After Free 		CVE-2026-12028 2026-06-13 03:06 2026-06-12 Show GitHub Exploit DB Packet Storm
996 8.3 HIGH
Network 		google chrome Use after free in Video in Google Chrome on Windows prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HT… CWE-416
 Use After Free 		CVE-2026-12029 2026-06-13 03:05 2026-06-12 Show GitHub Exploit DB Packet Storm
997 8.3 HIGH
Network 		google chrome Out of bounds write in GPU in Google Chrome on Android prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted… CWE-122
Heap-based Buffer Overflow 		CVE-2026-12030 2026-06-13 03:05 2026-06-12 Show GitHub Exploit DB Packet Storm
998 8.3 HIGH
Network 		google chrome Inappropriate implementation in Views in Google Chrome on Windows prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape vi… CWE-693
 Protection Mechanism Failure 		CVE-2026-12031 2026-06-13 03:05 2026-06-12 Show GitHub Exploit DB Packet Storm
999 3.1 LOW
Network 		google chrome Inappropriate implementation in Passwords in Google Chrome on Android prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted… CWE-346
 Origin Validation Error 		CVE-2026-12032 2026-06-13 03:05 2026-06-12 Show GitHub Exploit DB Packet Storm
1000 5.3 MEDIUM
Network 		google chrome Out of bounds read in VideoCapture in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the GPU process to obtain potentially sensitive information from process memo… CWE-125
Out-of-bounds Read 		CVE-2026-12033 2026-06-13 03:04 2026-06-12 Show GitHub Exploit DB Packet Storm