Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
2801 9.8 緊急
Network 		LMSYS Org SGLang LMSYS OrgのSGLangにおける信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-7304 2026-05-21 10:50 2026-05-18 Show GitHub Exploit DB Packet Storm
2802 5.5 警告
Local 		Open Source Geospatial Foundation GDAL Open Source Geospatial FoundationのGDALにおける複数の脆弱性 CWE-119
CWE-122
CWE-125
CVE-2026-8212 2026-05-21 10:49 2026-05-9 Show GitHub Exploit DB Packet Storm
2803 5.5 警告
Local 		Open Source Geospatial Foundation GDAL Open Source Geospatial FoundationのGDALにおける複数の脆弱性 CWE-119
CWE-122
CWE-125
CVE-2026-8213 2026-05-21 10:49 2026-05-9 Show GitHub Exploit DB Packet Storm
2804 7.5 重要
Network 		Google Google Chrome GoogleのGoogle Chromeにおける不変と仮定される Web パラメータの外部制御に関する脆弱性 CWE-472
不変と仮定される Web パラメータの外部制御 		CVE-2026-8510 2026-05-21 10:49 2026-05-14 Show GitHub Exploit DB Packet Storm
2805 8.3 重要
Network 		Google Google Chrome GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-8513 2026-05-21 10:49 2026-05-14 Show GitHub Exploit DB Packet Storm
2806 8.8 重要
Network 		Google Google Chrome GoogleのGoogle Chromeにおけるライフタイムを通してのリソース制御に関する脆弱性 CWE-664
ライフタイムを通してのリソースの不適切な制御 		CVE-2026-8517 2026-05-21 10:49 2026-05-14 Show GitHub Exploit DB Packet Storm
2807 8.8 重要
Network 		Google Google Chrome GoogleのGoogle Chromeにおける不変と仮定される Web パラメータの外部制御に関する脆弱性 CWE-472
不変と仮定される Web パラメータの外部制御 		CVE-2026-8519 2026-05-21 10:49 2026-05-14 Show GitHub Exploit DB Packet Storm
2808 8.8 重要
Network 		Google Google Chrome GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-8522 2026-05-21 10:49 2026-05-14 Show GitHub Exploit DB Packet Storm
2809 8.3 重要
Network 		Google Google Chrome GoogleのGoogle Chromeにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-122
ヒープオーバーフロー 		CVE-2026-8525 2026-05-21 10:49 2026-05-14 Show GitHub Exploit DB Packet Storm
2810 8.3 重要
Network 		Google Google Chrome GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-8530 2026-05-21 10:49 2026-05-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
319171 7.5 HIGH
Network 		envoyproxy envoy Envoy is a cloud-native high-performance edge/middle/service proxy. Jwt filter will lead to an Envoy crash when clear route cache with remote JWKs. In the following case: 1. remote JWKs are used, whi… CWE-476
 NULL Pointer Dereference 		CVE-2024-45809 2024-09-25 05:12 2024-09-20 Show GitHub Exploit DB Packet Storm
319172 7.5 HIGH
Network 		envoyproxy envoy Envoy is a cloud-native high-performance edge/middle/service proxy. Envoy will crash when the http async client is handling `sendLocalReply` under some circumstance, e.g., websocket upgrade, and requ… NVD-CWE-noinfo
CVE-2024-45810 2024-09-25 04:48 2024-09-20 Show GitHub Exploit DB Packet Storm
319173 4.8 MEDIUM
Network 		mage-people bus_ticket_booking_with_seat_reservation Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in MagePeople Team Bus Ticket Booking with Seat Reservation allows Stored XSS.This issue affe… CWE-79
Cross-site Scripting 		CVE-2024-43985 2024-09-25 04:33 2024-09-18 Show GitHub Exploit DB Packet Storm
319174 6.1 MEDIUM
Network 		couchbase couchbase_server Couchbase Server 7.6.x before 7.6.2, 7.2.x before 7.2.6, and all earlier versions allows HTTP Host header injection. CWE-74
Injection 		CVE-2024-25673 2024-09-25 04:08 2024-09-20 Show GitHub Exploit DB Packet Storm
319175 5.5 MEDIUM
Local 		apple macos
ipados
iphone_os
visionos
tvos
watchos 		A logic error was addressed with improved error handling. This issue is fixed in macOS Ventura 13.7, iOS 17.7 and iPadOS 17.7, visionOS 2, watchOS 11, macOS Sequoia 15, iOS 18 and iPadOS 18, macOS So… NVD-CWE-noinfo
CVE-2024-44183 2024-09-25 04:04 2024-09-17 Show GitHub Exploit DB Packet Storm
319176 2.4 LOW
Physics 		apple iphone_os
ipados 		The issue was addressed with improved checks. This issue is fixed in iOS 18 and iPadOS 18. An attacker with physical access may be able to access contacts from the lock screen. NVD-CWE-noinfo
CVE-2024-44180 2024-09-25 04:04 2024-09-17 Show GitHub Exploit DB Packet Storm
319177 5.5 MEDIUM
Local 		apple macos
ipados
iphone_os 		A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Ventura 13.7, iOS 17.7 and iPadOS 17.7, iOS 18 and iPadOS 18, macOS Sonoma 14.7, macOS Sequoia 15. An app … NVD-CWE-noinfo
CVE-2024-44184 2024-09-25 04:03 2024-09-17 Show GitHub Exploit DB Packet Storm
319178 6.5 MEDIUM
Network 		apple macos
safari 		The issue was addressed with improved UI. This issue is fixed in Safari 18, macOS Sequoia 15. Visiting a malicious website may lead to address bar spoofing. NVD-CWE-noinfo
CVE-2024-40866 2024-09-25 04:02 2024-09-17 Show GitHub Exploit DB Packet Storm
319179 5.5 MEDIUM
Local 		apple macos
iphone_os
ipados 		This issue was addressed with improved validation of symlinks. This issue is fixed in iOS 18 and iPadOS 18, macOS Sequoia 15. An app may be able to access sensitive user data. CWE-59
Link Following 		CVE-2024-44131 2024-09-25 04:01 2024-09-17 Show GitHub Exploit DB Packet Storm
319180 4.4 MEDIUM
Local 		apple macos This issue was addressed with improved data protection. This issue is fixed in macOS Sequoia 15. An app with root privileges may be able to access private information. NVD-CWE-noinfo
CVE-2024-44130 2024-09-25 03:49 2024-09-17 Show GitHub Exploit DB Packet Storm