Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
6631 7.5 重要
Network 		PostgreSQL.org PostgreSQL JDBC ドライバ PostgreSQL.orgのPostgreSQL JDBC ドライバにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性 CWE-770
制限またはスロットリング無しのリソースの割り当て 		CVE-2026-42198 2026-05-7 12:04 2026-04-29 Show GitHub Exploit DB Packet Storm
6632 8.1 重要
Network 		FreeBSD FreeBSD FreeBSDにおける引用構文の無害化に関する脆弱性 CWE-149
引用構文の不適切な無害化 		CVE-2026-42511 2026-05-7 12:04 2026-04-30 Show GitHub Exploit DB Packet Storm
6633 8.1 重要
Network 		FreeBSD FreeBSD FreeBSDにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-42512 2026-05-7 12:04 2026-04-30 Show GitHub Exploit DB Packet Storm
6634 9.8 緊急
Network 		Apache Software Foundation MINA Apache Software FoundationのMINAにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-42778 2026-05-7 12:04 2026-05-1 Show GitHub Exploit DB Packet Storm
6635 9.8 緊急
Network 		Apache Software Foundation MINA Apache Software FoundationのMINAにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-42779 2026-05-7 12:04 2026-05-1 Show GitHub Exploit DB Packet Storm
6636 7.5 重要
Network 		レッドハット
GNOME Project		 gdk-pixbuf
Red Hat Enterprise Linux Server TUS
Red Hat Enterprise Linux Server AUS
Red Hat Enterprise Linux 		GNOME Project等の複数ベンダの製品におけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-5201 2026-05-7 12:04 2026-03-31 Show GitHub Exploit DB Packet Storm
6637 5.5 警告
Local 		Wireshark Wireshark Wiresharkにおける再帰制御に関する脆弱性 CWE-674
不適切な再帰制御 		CVE-2026-5299 2026-05-7 12:04 2026-04-30 Show GitHub Exploit DB Packet Storm
6638 8.4 重要
Local 		FreeBSD FreeBSD FreeBSDにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-5398 2026-05-7 12:04 2026-04-22 Show GitHub Exploit DB Packet Storm
6639 5.5 警告
Local 		Wireshark Wireshark Wiresharkにおける再帰制御に関する脆弱性 CWE-674
不適切な再帰制御 		CVE-2026-5401 2026-05-7 12:03 2026-04-30 Show GitHub Exploit DB Packet Storm
6640 8.8 重要
Network 		Wireshark Wireshark Wiresharkにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-5402 2026-05-7 12:03 2026-04-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1211 8.6 HIGH
Local 		- - Warp is an agentic development environment. From 0.2025.10.08.08.12.stable_00 until 0.2026.05.06.15.42.stable_01, Warp contains a command execution permission-check bypass in the default unsandboxed … CWE-180
CWE-693
 Incorrect Behavior Order: Validate Before Canonicalize
 Protection Mechanism Failure 		CVE-2026-48721 2026-06-26 03:16 2026-06-25 Show GitHub Exploit DB Packet Storm
1212 - - - Mastodon is a free, open-source social network server based on ActivityPub. Prior to 4.5.10, 4.4.17, and 4.3.23, the list of disallowed IP address ranges was lacking an IP address range that can be u… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-46348 2026-06-26 03:16 2026-06-25 Show GitHub Exploit DB Packet Storm
1213 - - - Gogs is an open source self-hosted Git service. Prior to 0.14.3, when ENABLE_REVERSE_PROXY_AUTHENTICATION is enabled, Gogs accepts the configured authentication header (default: X-WEBAUTH-USER) direc… CWE-290
 Authentication Bypass by Spoofing 		CVE-2026-25119 2026-06-26 03:16 2026-06-25 Show GitHub Exploit DB Packet Storm
1214 7.5 HIGH
Network 		- - An issue in the t_set_push component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements. CWE-89
SQL Injection 		CVE-2025-61027 2026-06-26 03:16 2026-06-24 Show GitHub Exploit DB Packet Storm
1215 7.5 HIGH
Network 		google chrome Use after free in Web Authentication in Google Chrome prior to 149.0.7827.197 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a cr… CWE-416
 Use After Free 		CVE-2026-13029 2026-06-26 03:12 2026-06-25 Show GitHub Exploit DB Packet Storm
1216 5.3 MEDIUM
Network 		google chrome Uninitialized Use in GPU in Google Chrome on Android prior to 149.0.7827.197 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromi… CWE-457
 Use of Uninitialized Variable 		CVE-2026-13030 2026-06-26 03:12 2026-06-25 Show GitHub Exploit DB Packet Storm
1217 8.8 HIGH
Network 		google chrome Use after free in Blink in Google Chrome prior to 149.0.7827.197 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) CWE-416
 Use After Free 		CVE-2026-13031 2026-06-26 03:12 2026-06-25 Show GitHub Exploit DB Packet Storm
1218 9.6 CRITICAL
Network 		google chrome Use after free in WebGL in Google Chrome on Android prior to 149.0.7827.197 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Cri… CWE-416
 Use After Free 		CVE-2026-13032 2026-06-26 03:12 2026-06-25 Show GitHub Exploit DB Packet Storm
1219 8.8 HIGH
Network 		google chrome Out of bounds read and write in Blink>InterestGroups in Google Chrome prior to 149.0.7827.197 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity:… CWE-125
CWE-787
Out-of-bounds Read
 Out-of-bounds Write 		CVE-2026-13033 2026-06-26 03:11 2026-06-25 Show GitHub Exploit DB Packet Storm
1220 5.4 MEDIUM
Network 		- - Gogs is an open source self-hosted Git service. Prior to 0.14.3, an open redirect vulnerability exists in Gogs where attacker-controlled redirect_to parameters can bypass validation, allowing redirec… CWE-601
Open Redirect 		CVE-2026-52802 2026-06-26 02:16 2026-06-25 Show GitHub Exploit DB Packet Storm