Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3001	4.7	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおける複数の脆弱性	CWE-367 CWE-59	CVE-2026-35359	2026-04-27 11:17	2026-04-22	Show	GitHub Exploit DB Packet Storm

3002	6.3	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-35360	2026-04-27 11:17	2026-04-22	Show	GitHub Exploit DB Packet Storm

3003	5.6	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2026-35363	2026-04-27 11:17	2026-04-22	Show	GitHub Exploit DB Packet Storm

3004	6.3	警告 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2026-35364	2026-04-27 11:17	2026-04-22	Show	GitHub Exploit DB Packet Storm

3005	3.3	低 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおける重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性	CWE-732 重要なリソースに対する不適切なパーミッションの割り当て	CVE-2026-35367	2026-04-27 11:17	2026-04-22	Show	GitHub Exploit DB Packet Storm

3006	7.8	重要 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおける信頼できない検索パスに関する脆弱性	CWE-426 信頼性のない検索パス	CVE-2026-35368	2026-04-27 11:17	2026-04-22	Show	GitHub Exploit DB Packet Storm

3007	3.3	低 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-35377	2026-04-27 11:17	2026-04-22	Show	GitHub Exploit DB Packet Storm

3008	3.3	低 Local	Uutils	uutils coreutils	Uutilsのuutils coreutilsにおける指定された機能の不適切な提供に関する脆弱性	CWE-684 指定された機能の不適切な提供	CVE-2026-35381	2026-04-27 11:17	2026-04-22	Show	GitHub Exploit DB Packet Storm

3009	5.4	警告 Network	Papra	Papra	Papraにおける複数の脆弱性	CWE-79 CWE-80	CVE-2026-35460	2026-04-27 11:17	2026-04-7	Show	GitHub Exploit DB Packet Storm

3010	4.3	警告 Network	Papra	Papra	Papraにおけるサーバサイドのリクエストフォージェリの脆弱性	CWE-918 サーバサイドリクエストフォージェリ	CVE-2026-35461	2026-04-27 11:17	2026-04-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
401	3.1	LOW Network	-	-	Insufficient validation of untrusted input in Skia in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory write… New	CWE-20 Improper Input Validation	CVE-2026-8579	2026-05-16 00:16	2026-05-15	Show	GitHub Exploit DB Packet Storm

402	3.1	LOW Network	-	-	Out of bounds read in GPU in Google Chrome on Linux prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chro… New	CWE-125 Out-of-bounds Read	CVE-2026-8578	2026-05-16 00:16	2026-05-15	Show	GitHub Exploit DB Packet Storm

403	4.3	MEDIUM Network	-	-	Inappropriate implementation in CORS in Google Chrome on Linux and ChromeOS prior to 148.0.7778.168 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security sev… New	CWE-942 Permissive Cross-domain Policy with Untrusted Domains	CVE-2026-8576	2026-05-16 00:16	2026-05-15	Show	GitHub Exploit DB Packet Storm

404	3.1	LOW Network	-	-	Insufficient policy enforcement in Network in Google Chrome on Android prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a craft… New	CWE-693 Protection Mechanism Failure	CVE-2026-8572	2026-05-16 00:16	2026-05-15	Show	GitHub Exploit DB Packet Storm

405	3.1	LOW Network	-	-	Insufficient policy enforcement in AI in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to bypass Site Isolation via a crafted HTML page. (Ch… New	CWE-693 Protection Mechanism Failure	CVE-2026-8568	2026-05-16 00:16	2026-05-15	Show	GitHub Exploit DB Packet Storm

406	4.3	MEDIUM Network	-	-	Side-channel information leakage in Navigation in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Mediu… New	CWE-1300 Improper Protection of Physical Side Channels	CVE-2026-8562	2026-05-16 00:16	2026-05-15	Show	GitHub Exploit DB Packet Storm

407	3.1	LOW Network	-	-	Inappropriate implementation in ANGLE in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HT… New	CWE-119 CWE-284 Incorrect Access of Indexable Resource ('Range Error') Improper Access Control	CVE-2026-8556	2026-05-16 00:16	2026-05-15	Show	GitHub Exploit DB Packet Storm

408	3.1	LOW Network	-	-	Type Confusion in ANGLE in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory write via a crafted H… New	CWE-843 Type Confusion	CVE-2026-8554	2026-05-16 00:16	2026-05-15	Show	GitHub Exploit DB Packet Storm

409	3.1	LOW Network	-	-	Object corruption in Compositing in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromi… New	CWE-119 CWE-284 Incorrect Access of Indexable Resource ('Range Error') Improper Access Control	CVE-2026-8545	2026-05-16 00:16	2026-05-15	Show	GitHub Exploit DB Packet Storm

410	4.3	MEDIUM Network	-	-	Insufficient policy enforcement in ViewTransitions in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: H… New	CWE-942 Permissive Cross-domain Policy with Untrusted Domains	CVE-2026-8537	2026-05-16 00:16	2026-05-15	Show	GitHub Exploit DB Packet Storm