Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
133031 6.5 警告
Network 		シスコシステムズ Cisco Data Center Network Manager Cisco Data Center Network Manager における証明書検証に関する脆弱性 CWE-295
不正な証明書検証 		CVE-2021-1277 2021-10-5 17:43 2021-01-20 Show GitHub Exploit DB Packet Storm
133032 5.5 警告
Local 		シスコシステムズ Cisco Data Center Network Manager Cisco Data Center Network Manager における過剰なサイズ値のメモリ割り当てに関する脆弱性 CWE-789
過剰なサイズ値のメモリ割り当て 		CVE-2021-1283 2021-10-5 17:22 2021-01-20 Show GitHub Exploit DB Packet Storm
133033 4.8 警告
Network 		bdtask Multi-Store Inventory Management System BDTASK Multi-Store Inventory Management System におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2020-36012 2021-10-5 17:22 2020-12-21 Show GitHub Exploit DB Packet Storm
133034 9.8 緊急
Network 		Spotweb project Spotweb Spotweb における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2021-3286 2021-10-5 17:22 2021-01-22 Show GitHub Exploit DB Packet Storm
133035 9.8 緊急
Network 		async-git async-git Node.js 用の async-git パッケージにおける OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2021-3190 2021-10-5 17:22 2021-01-21 Show GitHub Exploit DB Packet Storm
133036 7.5 重要
Network 		Debian
OpenLDAP Foundation
アップル		 Debian GNU/Linux
Apple Mac OS X
OpenLDAP
macOS Big Sur 		OpenLDAP における整数アンダーフローの脆弱性 CWE-191
整数アンダーフロー 		CVE-2020-36228 2021-10-5 17:22 2020-12-16 Show GitHub Exploit DB Packet Storm
133037 7.5 重要
Network 		Debian
OpenLDAP Foundation
アップル		 Debian GNU/Linux
Apple Mac OS X
OpenLDAP
macOS Big Sur 		OpenLDAP における無限ループに関する脆弱性 CWE-835
無限ループ 		CVE-2020-36227 2021-10-5 17:22 2020-12-20 Show GitHub Exploit DB Packet Storm
133038 7.5 重要
Network 		Debian
OpenLDAP Foundation
アップル		 Debian GNU/Linux
Apple Mac OS X
OpenLDAP
macOS Big Sur 		OpenLDAP における脆弱性 CWE-noinfo
情報不足 		CVE-2020-36226 2021-10-5 17:22 2020-12-1 Show GitHub Exploit DB Packet Storm
133039 7.8 重要
Local 		FastStone Soft FastStone Image Viewer FastStone Image Viewer における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2020-35845 2021-10-5 17:22 2020-12-30 Show GitHub Exploit DB Packet Storm
133040 7.8 重要
Local 		FastStone Soft FastStone Image Viewer FastStone Image Viewer における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2020-35844 2021-10-5 17:21 2020-12-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
341 8.8 HIGH
Network 		- - Insufficient validation of untrusted input in Media in Google Chrome on Windows prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sand… New CWE-20
 Improper Input Validation  		CVE-2026-11041 2026-06-6 03:16 2026-06-5 Show GitHub Exploit DB Packet Storm
342 6.5 MEDIUM
Network 		- - Out of bounds read in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High) New CWE-125
Out-of-bounds Read 		CVE-2026-10985 2026-06-6 03:16 2026-06-5 Show GitHub Exploit DB Packet Storm
343 5.4 MEDIUM
Network 		- - Inappropriate implementation in Accessibility in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity:… New CWE-451
 User Interface (UI) Misrepresentation of Critical Information 		CVE-2026-10984 2026-06-6 03:16 2026-06-5 Show GitHub Exploit DB Packet Storm
344 9.6 CRITICAL
Network 		- - Insufficient validation of untrusted input in Dawn in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium securit… New CWE-20
 Improper Input Validation  		CVE-2026-10983 2026-06-6 03:16 2026-06-5 Show GitHub Exploit DB Packet Storm
345 9.8 CRITICAL
Network 		- - NetMan 204 fails to enforce authentication on its administrative pages and command endpoints. A remote, unauthenticated attacker can directly request administrative pages (such as administration.html… New CWE-306
Missing Authentication for Critical Function 		CVE-2025-71318 2026-06-6 03:16 2026-06-6 Show GitHub Exploit DB Packet Storm
346 9.8 CRITICAL
Network 		- - NetMan 204 contains a hard-coded backdoor account with the username and password 'eurek' that grants administrative access. A remote, unauthenticated attacker can authenticate through the cgi-bin/log… New CWE-798
 Use of Hard-coded Credentials 		CVE-2025-71317 2026-06-6 03:16 2026-06-6 Show GitHub Exploit DB Packet Storm
347 8.8 HIGH
Network 		amazon kiro_ide Insufficient access control restrictions in the file write tool in Amazon Kiro IDE before version 0.11 might allow remote unauthenticated actors to execute arbitrary commands via crafted instructions… Update CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2026-10591 2026-06-6 02:45 2026-06-3 Show GitHub Exploit DB Packet Storm
348 9.6 CRITICAL
Network 		google chrome Use after free in FileSystem in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical) New CWE-416
 Use After Free 		CVE-2026-10886 2026-06-6 02:42 2026-06-5 Show GitHub Exploit DB Packet Storm
349 8.8 HIGH
Network 		google chrome Use after free in Chrome for iOS in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical) New CWE-416
 Use After Free 		CVE-2026-10885 2026-06-6 02:42 2026-06-5 Show GitHub Exploit DB Packet Storm
350 8.3 HIGH
Network 		google chrome Use after free in Chromecast in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page… New CWE-416
 Use After Free 		CVE-2026-10884 2026-06-6 02:41 2026-06-5 Show GitHub Exploit DB Packet Storm