Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
3631	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2026-31762	2026-05-11 11:11	2026-05-1	Show	GitHub Exploit DB Packet Storm

3632	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-31763	2026-05-11 11:11	2026-05-1	Show	GitHub Exploit DB Packet Storm

3633	7.8	重要 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける配列インデックスの検証に関する脆弱性	CWE-129 配列インデックスの不適切な検証	CVE-2026-31764	2026-05-11 11:11	2026-05-1	Show	GitHub Exploit DB Packet Storm

3634	6.1	警告 Network	マイクロソフト	Azure Machine Learning	Azure Machine Learning Notebook Spoofing Vulnerability	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-32207	2026-05-11 11:11	2026-05-7	Show	GitHub Exploit DB Packet Storm

3635	3.3	低 Local		-	デルのemc powerscale onefs　における不十分なロギングに関する脆弱性	CWE-778 不十分なロギング	CVE-2026-32803	2026-05-11 11:11	2026-05-8	Show	GitHub Exploit DB Packet Storm

3636	7.5	重要 Network	coredns.io	CoreDNS	The CoreDNS AuthorsのCoreDNSにおける制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2026-32934	2026-05-11 11:11	2026-05-5	Show	GitHub Exploit DB Packet Storm

3637	7.5	重要 Network	coredns.io	CoreDNS	The CoreDNS AuthorsのCoreDNSにおけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2026-32936	2026-05-11 11:11	2026-05-5	Show	GitHub Exploit DB Packet Storm

3638	9.9	緊急 Network	マイクロソフト	Azure Managed Instance for Apache Cassandra	Azure Managed Instance for Apache Cassandra Remote Code Execution Vulnerability	CWE-284 不適切なアクセス制御	CVE-2026-33109	2026-05-11 11:11	2026-05-7	Show	GitHub Exploit DB Packet Storm

3639	7.5	重要 Network	coredns.io	CoreDNS	The CoreDNS AuthorsのCoreDNSにおける認証アルゴリズムの不適切な実装に関する脆弱性	CWE-303 認証アルゴリズム上の問題	CVE-2026-33190	2026-05-11 11:11	2026-05-5	Show	GitHub Exploit DB Packet Storm

3640	8.8	重要 Network	FIT2CLOUD	SQLBot	FIT2CLOUDのSQLBotにおけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2026-33324	2026-05-11 11:11	2026-05-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
771	-		-	-	Svelte is a performance oriented web framework. From version 5.51.5 to before version 5.55.7, an internal regex in the Svelte runtime can take exponential time to test in <svelte:element this={tag}><… New	CWE-1333 Inefficient Regular Expression Complexity	CVE-2026-42567	2026-06-10 02:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

772	7.0	HIGH Local	-	-	Heap-based buffer overflow in Microsoft Windows DNS allows an authorized attacker to elevate privileges locally. New	CWE-122 Heap-based Buffer Overflow	CVE-2026-41108	2026-06-10 02:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

773	8.4	HIGH Network	-	-	Improper neutralization of input during web page generation ('cross-site scripting') in Azure Stack Edge allows an authorized attacker to perform spoofing over a network. New	CWE-79 Cross-site Scripting	CVE-2026-41098	2026-06-10 02:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

774	7.8	HIGH Local	-	-	Improper access control in Microsoft Kinect allows an authorized attacker to elevate privileges locally. New	CWE-284 Improper Access Control	CVE-2026-41092	2026-06-10 02:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

775	7.8	HIGH Local	-	-	Windows Universal Disk Format File System Driver (UDFS) Elevation of Privilege Vulnerability New	CWE-197 Numeric Truncation Error	CVE-2026-40409	2026-06-10 02:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

776	7.8	HIGH Local	-	-	Windows Universal Disk Format File System Driver (UDFS) Elevation of Privilege Vulnerability New	CWE-122 CWE-197 Heap-based Buffer Overflow Numeric Truncation Error	CVE-2026-40404	2026-06-10 02:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

777	7.5	HIGH Network	-	-	Improper input validation in Visual Studio Code allows an unauthorized attacker to elevate privileges over a network. New	CWE-20 Improper Input Validation	CVE-2026-40376	2026-06-10 02:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

778	8.8	HIGH Network	-	-	Improper handling of insufficient permissions or privileges in Microsoft Dynamics 365 (on-premises) allows an authorized attacker to elevate privileges over a network. New	CWE-280 Improper Handling of Insufficient Permissions or Privileges	CVE-2026-40371	2026-06-10 02:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

779	-		-	-	Unauthenticated users on the local network can cause the router to become unavailable by sending specially crafted requests. New	CWE-787 Out-of-bounds Write	CVE-2026-3088	2026-06-10 02:17	2026-06-10	Show	GitHub Exploit DB Packet Storm

780	5.4	MEDIUM Network	-	-	Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this issue by manipulating the D… New	CWE-79 Cross-site Scripting	CVE-2026-34692	2026-06-10 02:17	2026-06-10	Show	GitHub Exploit DB Packet Storm