Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1081	8.3	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおけるサーバ側のセキュリティのクライアント側での実施に関する脆弱性	CWE-602 サーバ側のセキュリティのクライアント側での実施	CVE-2026-11236	2026-06-10 14:32	2026-06-4	Show	GitHub Exploit DB Packet Storm

1082	8.3	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-11237	2026-06-10 14:32	2026-06-4	Show	GitHub Exploit DB Packet Storm

1083	6.5	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける初期化されていない変数の使用に関する脆弱性	CWE-457 初期化されていない変数の使用	CVE-2026-11268	2026-06-10 14:32	2026-06-5	Show	GitHub Exploit DB Packet Storm

1084	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-11272	2026-06-10 14:32	2026-06-5	Show	GitHub Exploit DB Packet Storm

1085	4.3	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-11274	2026-06-10 14:32	2026-06-5	Show	GitHub Exploit DB Packet Storm

1086	4.3	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2026-11277	2026-06-10 14:32	2026-06-5	Show	GitHub Exploit DB Packet Storm

1087	9.6	緊急 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける保護メカニズムの不具合に関する脆弱性	CWE-693 保護メカニズムの不具合	CVE-2026-11282	2026-06-10 14:32	2026-06-5	Show	GitHub Exploit DB Packet Storm

1088	6.5	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける複数の脆弱性	CWE-1300 CWE-203	CVE-2026-11284	2026-06-10 14:32	2026-06-5	Show	GitHub Exploit DB Packet Storm

1089	4.3	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおけるユーザインターフェースにおける重要情報の誤った表示に関する脆弱性	CWE-451 ユーザインターフェースにおける重要情報の誤った表示	CVE-2026-11285	2026-06-10 14:32	2026-06-5	Show	GitHub Exploit DB Packet Storm

1090	4.3	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける複数の脆弱性	CWE-20 CWE-451	CVE-2026-11286	2026-06-10 14:32	2026-06-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
255141	7.5	HIGH Network	mozilla	firefox	A use-after-free vulnerability can occur when the layer manager is freed too early when rendering specific SVG content, resulting in a potentially exploitable crash. This vulnerability affects Firefo…	CWE-416 Use After Free	CVE-2017-7806	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm

255142	9.8	CRITICAL Network	debian redhat canonical mozilla	debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus ubuntu_linux firefox firefox…	Memory safety bugs were reported in Firefox 55 and Firefox ESR 52.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploit…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-7810	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm

255143	9.8	CRITICAL Network	debian redhat mozilla	debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox fir…	A use-after-free vulnerability can occur when an editor DOM node is deleted prematurely during tree traversal while still bound to the document. This results in a potentially exploitable crash. This …	CWE-416 Use After Free	CVE-2017-7809	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm

255144	8.1	HIGH Network	debian redhat mozilla	debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus firefox fir…	A mechanism that uses AppCache to hijack a URL in a domain using fallback by serving the files from a sub-path on the domain. This has been addressed by requiring fallback files be inside the manifes…	CWE-20 Improper Input Validation	CVE-2017-7807	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm

255145	7.5	HIGH Network	mozilla debian	firefox thunderbird debian_linux	During TLS 1.2 exchanges, handshake hashes are generated which point to a message buffer. This saved data is used for later messages but in some cases, the handshake transcript can exceed the space a…	CWE-416 Use After Free	CVE-2017-7805	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm

255146	7.5	HIGH Network	mozilla	firefox firefox_esr thunderbird	The destructor function for the "WindowsDllDetourPatcher" class can be re-purposed by malicious code in concert with another vulnerability to write arbitrary data to an attacker controlled location i…	CWE-20 Improper Input Validation	CVE-2017-7804	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm

255147	7.5	HIGH Network	redhat debian mozilla	enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus debian_linux thunderbird firefox firefox_…	When a page's content security policy (CSP) header contains a "sandbox" directive, other directives are ignored. This results in the incorrect enforcement of CSP. This vulnerability affects Thunderbi…	CWE-269 Improper Privilege Management	CVE-2017-7803	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm

255148	6.1	MEDIUM Network	mozilla	firefox	JavaScript in the "about:webrtc" page is not sanitized properly being assigned to "innerHTML". Data on this page is supplied by WebRTC usage and is not under third-party control, making this difficul…	CWE-79 Cross-site Scripting	CVE-2017-7799	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm

255149	7.5	HIGH Network	mozilla	firefox	Response header name interning does not have same-origin protections and these headers are stored in a global registry. This allows stored header names to be available cross-origin. This vulnerabilit…	CWE-346 Origin Validation Error	CVE-2017-7797	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm

255150	4.7	MEDIUM Local	mozilla	firefox	On Windows systems, the logger run by the Windows updater deletes the file "update.log" before it runs in order to write a new log of that name. The path to this file is supplied at the command line …	CWE-20 Improper Input Validation	CVE-2017-7796	2024-11-21 12:32	2018-06-12	Show	GitHub Exploit DB Packet Storm