Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 23, 2026, 10:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3301	8.8	重要 Local	FreeBSD	FreeBSD	FreeBSDにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-121 スタックオーバーフロー	CVE-2026-39461	2026-05-25 10:22	2026-05-21	Show	GitHub Exploit DB Packet Storm

3302	6.5	警告 Network	plane	plane	planeにおけるデータクエリロジックの特殊要素の不適切な中立化に関する脆弱性	CWE-943 データクエリロジックの特殊要素の不適切な中立化	CVE-2026-40102	2026-05-25 10:22	2026-05-20	Show	GitHub Exploit DB Packet Storm

3303	7.5	重要 Network	マイクロソフト	Microsoft Entra ID	Microsoft Entra ID のスプーフィングの脆弱性	CWE-200 情報漏えい	CVE-2026-40379	2026-05-25 10:22	2026-05-12	Show	GitHub Exploit DB Packet Storm

3304	4.3	警告 Network	Mattermost, Inc.	Mattermost Server	Mattermost, Inc.のMattermost Serverにおける不正な認証に関する脆弱性	CWE-863 不正な認証	CVE-2026-4055	2026-05-25 10:22	2026-05-21	Show	GitHub Exploit DB Packet Storm

3305	7.8	重要 Local	Samba Project	rsync	Samba Projectのrsyncにおけるレングスパラメーターの不整合による処理に関する脆弱性	CWE-130 レングスパラメーターの不整合による不適切な処理	CVE-2026-41035	2026-05-25 10:22	2026-04-16	Show	GitHub Exploit DB Packet Storm

3306	9.8	緊急 Network	NASA	F Prime	NASAのF Primeにおける複数の脆弱性	CWE-190 CWE-787	CVE-2026-41144	2026-05-25 10:22	2026-04-22	Show	GitHub Exploit DB Packet Storm

3307	7.8	重要 Local	DevSpace	DevSpace	DevSpaceにおける複数の脆弱性	CWE-200 CWE-306	CVE-2026-42283	2026-05-25 10:22	2026-05-14	Show	GitHub Exploit DB Packet Storm

3308	10	緊急 Network	マイクロソフト The Foreman	Azure Resource Manager Azure Local	Azure Local 向けディスコネクテッドオペレーションサービスの特権昇格の脆弱性	CWE-287 CWE-noinfo	CVE-2026-42822	2026-05-25 10:22	2026-05-18	Show	GitHub Exploit DB Packet Storm

3309	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不完全なクリーンアップに関する脆弱性	CWE-459 不完全なクリーンアップ	CVE-2026-43395	2026-05-25 10:22	2026-05-8	Show	GitHub Exploit DB Packet Storm

3310	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-43396	2026-05-25 10:22	2026-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311551	-		netartmedia	car_portal	Multiple cross-site scripting (XSS) vulnerabilities in NetArt Media Car Portal 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) car_id parameter to index.php …	CWE-79 Cross-site Scripting	CVE-2010-3418	2024-11-21 10:18	2010-09-17	Show	GitHub Exploit DB Packet Storm

311552	-		google	chrome	Google Chrome before 6.0.472.59 does not prompt the user before granting access to the extension history, which allows attackers to obtain potentially sensitive information via unspecified vectors.	CWE-200 Information Exposure	CVE-2010-3417	2024-11-21 10:18	2010-09-17	Show	GitHub Exploit DB Packet Storm

311553	9.8	CRITICAL Network	google	chrome	Google Chrome before 6.0.472.59 on Linux does not properly implement the Khmer locale, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified othe…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-3416	2024-11-21 10:18	2010-09-17	Show	GitHub Exploit DB Packet Storm

311554	-		google	chrome	Google Chrome before 6.0.472.59 does not properly implement Geolocation, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via u…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-3415	2024-11-21 10:18	2010-09-17	Show	GitHub Exploit DB Packet Storm

311555	-		google	chrome	Google Chrome before 6.0.472.59 on Mac OS X does not properly implement file dialogs, which allows attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-3414	2024-11-21 10:18	2010-09-17	Show	GitHub Exploit DB Packet Storm

311556	-		google	chrome	Unspecified vulnerability in the pop-up blocking functionality in Google Chrome before 6.0.472.59 allows remote attackers to cause a denial of service (application crash) via unknown vectors.	NVD-CWE-noinfo	CVE-2010-3413	2024-11-21 10:18	2010-09-17	Show	GitHub Exploit DB Packet Storm

311557	-		google	chrome	Race condition in the console implementation in Google Chrome before 6.0.472.59 has unspecified impact and attack vectors.	CWE-362 Race Condition	CVE-2010-3412	2024-11-21 10:18	2010-09-17	Show	GitHub Exploit DB Packet Storm

311558	-		google	chrome	Google Chrome before 6.0.472.59 on Linux does not properly handle cursors, which might allow attackers to cause a denial of service (assertion failure) via unspecified vectors.	CWE-617 Reachable Assertion	CVE-2010-3411	2024-11-21 10:18	2010-09-17	Show	GitHub Exploit DB Packet Storm

311559	-		ibm	lotus_domino	Stack-based buffer overflow in the MailCheck821Address function in nnotes.dll in the nrouter.exe service in the server in IBM Lotus Domino 8.0.x before 8.0.2 FP5 and 8.5.x before 8.5.1 FP2 allows rem…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-3407	2024-11-21 10:18	2010-09-17	Show	GitHub Exploit DB Packet Storm

311560	-		ibm	aix	Unspecified vulnerability in sa_snap in the bos.esagent fileset in IBM AIX 5.3 allows local users to leverage system group membership and delete files via unknown vectors.	NVD-CWE-noinfo	CVE-2010-3406	2024-11-21 10:18	2010-09-17	Show	GitHub Exploit DB Packet Storm