Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3361	5.4	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-6073	2026-05-18 11:24	2026-05-14	Show	GitHub Exploit DB Packet Storm

3362	5.4	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-6335	2026-05-18 11:24	2026-05-14	Show	GitHub Exploit DB Packet Storm

3363	4.3	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-6883	2026-05-18 11:24	2026-05-14	Show	GitHub Exploit DB Packet Storm

3364	9.8	緊急 Network	libexpat project	libexpat	libexpat projectのlibexpatにおけるエントロピー不足に関する脆弱性	CWE-331 エントロピー不足	CVE-2026-7210	2026-05-18 11:24	2026-05-11	Show	GitHub Exploit DB Packet Storm

3365	8.8	重要 Adjacent	ZyXEL	WRE6505 ファームウェア	ZyXELのWRE6505 ファームウェアにおけるOS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2026-7256	2026-05-18 11:24	2026-05-12	Show	GitHub Exploit DB Packet Storm

3366	4.4	警告 Local	ZyXEL	WRE6505 ファームウェア	ZyXELのWRE6505 ファームウェアにおける重要な情報のセキュアでない格納に関する脆弱性	CWE-922 重要な情報のセキュアでない格納	CVE-2026-7257	2026-05-18 11:24	2026-05-12	Show	GitHub Exploit DB Packet Storm

3367	7.5	重要 Network	ZyXEL	NWA1100-N ファームウェア	ZyXELのNWA1100-N ファームウェアにおける古典的バッファオーバーフローの脆弱性	CWE-120 古典的バッファオーバーフロー	CVE-2026-7287	2026-05-18 11:24	2026-05-12	Show	GitHub Exploit DB Packet Storm

3368	5.4	警告 Network	GitLab.org	GitLab	GitLab.orgのGitLabにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-7377	2026-05-18 11:24	2026-05-14	Show	GitHub Exploit DB Packet Storm

3369	9.8	緊急 Network	OpenClaw	OpenClaw	OpenClawにおける認証に関する脆弱性	CWE-287 不適切な認証	CVE-2026-8305	2026-05-18 11:23	2026-05-11	Show	GitHub Exploit DB Packet Storm

3370	9.8	緊急 Network	Mozilla Foundation	Mozilla Firefox	Mozilla FoundationのMozilla Firefoxにおける保護メカニズムの不具合に関する脆弱性	CWE-693 保護メカニズムの不具合	CVE-2026-8401	2026-05-18 11:23	2026-05-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2351	4.7	MEDIUM Network	-	-	Use after free in Network in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory vi…	CWE-416 Use After Free	CVE-2026-11249	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

2352	-		-	-	In Arista’s EOS when in 802.1X mode, multi-auth unauthenticated hosts might be allowed access to a switch port if there exists an EAPOL capable device in the fallback VLAN.	CWE-1287 Improper Validation of Specified Type of Input	CVE-2024-6858	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

2353	5.9	MEDIUM Network	-	-	On affected platforms running Arista EOS with 802.1x authentication configured on the access/trunk ports, and routing enabled on the access VLAN of the ports, a malicious supplicant may be able to by…	CWE-287 Improper Authentication	CVE-2023-5502	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

2354	9.6	CRITICAL Network	-	-	Affected platforms running Arista EOS with OpenConfig configured, a gNMI Set request can be run when it should have been rejected. This can result in unexpected configuration being applied to the swi…	CWE-306 Missing Authentication for Critical Function	CVE-2024-27890	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

2355	5.3	MEDIUM Network	-	-	On affected platforms running Arista EOS with MACsec and egress ACLs configured on the same interfaces, the ACL policies may not be enforced for packets egressing on those ports. This can cause outgo…	CWE-284 Improper Access Control	CVE-2024-27891	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

2356	9.6	CRITICAL Network	-	-	Affected platforms running Arista EOS with OpenConfig configured, a gNMI Set request can be run when it should have been rejected. This can result in unexpected configuration being applied to the swi…	CWE-306 Missing Authentication for Critical Function	CVE-2024-27892	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

2357	7.5	HIGH Network	-	-	On affected platforms running Arista EOS with IPsec configured, a specially crafted packet can cause the dataplane to stop processing all IPsec traffic. The control plane may detect this condition, a…	CWE-1286 Improper Validation of Syntactic Correctness of Input	CVE-2025-8873	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

2358	8.1	HIGH Network	-	-	Use after free in Chromoting in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via malicious network traffic. (Chromium security severity: Critical)	CWE-416 Use After Free	CVE-2026-10887	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

2359	8.8	HIGH Adjacent	-	-	Use after free in Cast Streaming in Google Chrome prior to 149.0.7827.53 allowed an attacker on the local network segment to execute arbitrary code via malicious network traffic. (Chromium security s…	CWE-416 Use After Free	CVE-2026-10888	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm

2360	8.3	HIGH Network	-	-	Out of bounds read in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.…	CWE-125 Out-of-bounds Read	CVE-2026-10889	2026-06-6 00:02	2026-06-5	Show	GitHub Exploit DB Packet Storm