Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
133011	5.5	警告 Local	xcb project	xcb	Rust 用 xcb crate における二重解放に関する脆弱性	CWE-415 CWE-416	CVE-2020-36205	2021-10-12 14:57	2020-12-10	Show	GitHub Exploit DB Packet Storm

133012	7.2	重要 Network	Moodle	Moodle	Moodle におけるコードインジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2021-20187	2021-10-12 14:55	2021-01-25	Show	GitHub Exploit DB Packet Storm

133013	8.8	重要 Network	Apache Software Foundation	Apache Druid	Apache Druid における重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性	CWE-732 重要なリソースに対する不適切なパーミッションの割り当て	CVE-2021-25646	2021-10-12 14:46	2021-01-29	Show	GitHub Exploit DB Packet Storm

133014	6.5	警告 Network	CKEditor Team	CKEditor 5	CKEditor 5 におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2021-21254	2021-10-12 14:22	2021-01-27	Show	GitHub Exploit DB Packet Storm

133015	9.8	緊急 Network	Bitovi	Launchpad	launchpad におけるコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2021-23330	2021-10-12 14:08	2021-02-1	Show	GitHub Exploit DB Packet Storm

133016	7.3	重要 Network	Artur Kurowski	kill-process-on-port	kill-process-on-port における OS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2020-28426	2021-10-12 13:58	2020-12-11	Show	GitHub Exploit DB Packet Storm

133017	5.3	警告 Network	Pallets project Fedora Project	Jinja Fedora	jinja2 におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2020-28493	2021-10-12 13:51	2020-09-25	Show	GitHub Exploit DB Packet Storm

133018	7.5	重要 Network	MediaWiki	MediaWiki	MediaWiki における認証情報の不十分な保護に関する脆弱性	CWE-319 CWE-522	CVE-2020-29005	2021-10-11 18:12	2020-09-11	Show	GitHub Exploit DB Packet Storm

133019	8.8	重要 Network	MediaWiki	MediaWiki	MediaWiki におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2020-29004	2021-10-11 18:12	2020-09-11	Show	GitHub Exploit DB Packet Storm

133020	6.5	警告 Network	Istio レッドハット	Red Hat OpenShift Service Mesh Istio	Istio pilot における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2019-25014	2021-10-11 18:12	2019-11-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
431	7.8	HIGH Local	google	chrome	Inappropriate implementation in Installer in Google Chrome on Windows prior to 149.0.7827.53 allowed a local attacker to perform OS-level privilege escalation via a malicious file. (Chromium security… Update	CWE-269 Improper Privilege Management	CVE-2026-11103	2026-06-8 23:45	2026-06-5	Show	GitHub Exploit DB Packet Storm

432	6.5	MEDIUM Network	google	chrome	Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory v… Update	CWE-457 Use of Uninitialized Variable	CVE-2026-11104	2026-06-8 23:45	2026-06-5	Show	GitHub Exploit DB Packet Storm

433	8.6	HIGH Local	google	chrome	Insufficient validation of untrusted input in Downloads in Google Chrome on Mac prior to 149.0.7827.53 allowed a local attacker to potentially perform a sandbox escape via a crafted AppleScript comma… Update	CWE-20 Improper Input Validation	CVE-2026-11158	2026-06-8 23:45	2026-06-5	Show	GitHub Exploit DB Packet Storm

434	6.5	MEDIUM Network	google	chrome	Insufficient validation of untrusted input in WebUI in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted … Update	CWE-20 Improper Input Validation	CVE-2026-11105	2026-06-8 23:45	2026-06-5	Show	GitHub Exploit DB Packet Storm

435	6.5	MEDIUM Network	google	chrome	Inappropriate implementation in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium) Update	CWE-352 Origin Validation Error	CVE-2026-11106	2026-06-8 23:45	2026-06-5	Show	GitHub Exploit DB Packet Storm

436	4.3	MEDIUM Network	google	chrome	Inappropriate implementation in Downloads in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium) Update	CWE-451 User Interface (UI) Misrepresentation of Critical Information	CVE-2026-11107	2026-06-8 23:45	2026-06-5	Show	GitHub Exploit DB Packet Storm

437	8.8	HIGH Network	google	chrome	Inappropriate implementation in NFC in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform privilege escalation via a crafted HTML page. (Chromium security severity: … Update	CWE-269 Improper Privilege Management	CVE-2026-11108	2026-06-8 23:44	2026-06-5	Show	GitHub Exploit DB Packet Storm

438	6.5	MEDIUM Network	google	chrome	Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium) Update	CWE-457 Use of Uninitialized Variable	CVE-2026-11109	2026-06-8 23:44	2026-06-5	Show	GitHub Exploit DB Packet Storm

439	6.5	MEDIUM Network	google	chrome	Uninitialized Use in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium) Update	CWE-457 Use of Uninitialized Variable	CVE-2026-11110	2026-06-8 23:44	2026-06-5	Show	GitHub Exploit DB Packet Storm

440	8.1	HIGH Network	google	chrome	Out of bounds read in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Medium) Update	CWE-125 Out-of-bounds Read	CVE-2026-11111	2026-06-8 23:44	2026-06-5	Show	GitHub Exploit DB Packet Storm