Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4491 7.8 重要
Local 		マイクロソフト Azure Monitor Agent Azure Monitor エージェントの特権昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2026-32168 2026-05-8 12:23 2026-04-14 Show GitHub Exploit DB Packet Storm
4492 7.8 重要
Local 		マイクロソフト Azure Monitor Agent Azure Monitor エージェントの特権昇格の脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-32192 2026-05-8 12:23 2026-04-14 Show GitHub Exploit DB Packet Storm
4493 5.9 警告
Network 		マイクロソフト Microsoft .NET Framework .NET Framework のサービス拒否の脆弱性 CWE-362
競合状態 		CVE-2026-32226 2026-05-8 12:23 2026-04-14 Show GitHub Exploit DB Packet Storm
4494 8.8 重要
Network 		Kubernetes ingress-nginx Kubernetesのingress-nginxにおける入力確認に関する脆弱性 CWE-20
CWE-noinfo
CVE-2026-3288 2026-05-8 12:23 2026-03-9 Show GitHub Exploit DB Packet Storm
4495 7.5 重要
Network 		マイクロソフト Microsoft .NET Framework
.NET 		.NET、.NET Framework、Visual Studio のサービス拒否の脆弱性 CWE-20
CWE-400
CWE-835
CVE-2026-33116 2026-05-8 12:23 2026-04-14 Show GitHub Exploit DB Packet Storm
4496 8.8 重要
Network 		マイクロソフト SQL Server 2016
SQL Server 2017
SQL Server 2022
SQL Server 2019
SQL Server 2025 		Microsoft SQL Server のリモート コードが実行される脆弱性 CWE-822
信頼性のないポインタデリファレンス 		CVE-2026-33120 2026-05-8 12:23 2026-04-14 Show GitHub Exploit DB Packet Storm
4497 5.9 警告
Network 		Apache Software Foundation Apache Log4j Apache Software FoundationのApache Log4jにおける複数の脆弱性 CWE-295
CWE-297
CVE-2026-34477 2026-05-8 12:23 2026-04-10 Show GitHub Exploit DB Packet Storm
4498 7.5 重要
Network 		Apache Software Foundation Apache Log4j Apache Software FoundationのApache Log4jにおけるエンコードおよびエスケープに関する脆弱性 CWE-116
不適切なエンコード、または出力のエスケープ 		CVE-2026-34479 2026-05-8 12:23 2026-04-10 Show GitHub Exploit DB Packet Storm
4499 7.4 重要
Network 		GNU Project
レッドハット		 Red Hat Hardened Images
Red Hat Enterprise Linux
Red Hat OpenShift Container Platform
GnuTLS 		GNU Project等の複数ベンダの製品における大文字と小文字の区別の不適切な処理に関する脆弱性 CWE-178
大文字と小文字の区別の不適切な処理 		CVE-2026-3833 2026-05-8 12:23 2026-04-30 Show GitHub Exploit DB Packet Storm
4500 9.1 緊急
Network 		Apache Software Foundation Apache Wicket Apache Software FoundationのApache Wicketにおけるセッションの固定化の脆弱性 CWE-384
CWE-384
CVE-2026-40010 2026-05-8 12:23 2026-05-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
591 8.8 HIGH
Network 		google chrome Use after free in Ozone in Google Chrome on Linux prior to 149.0.7827.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) New CWE-416
 Use After Free 		CVE-2026-11681 2026-06-11 00:32 2026-06-9 Show GitHub Exploit DB Packet Storm
592 7.8 HIGH
Local 		microsoft windows_10_1607
windows_10_1809
windows_10_21h2
windows_10_22h2
windows_11_23h2
windows_11_24h2
windows_11_25h2
windows_11_26h1
windows_server_2012
windows_server_2016
w… 		Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code locally. New CWE-122
Heap-based Buffer Overflow 		CVE-2026-48574 2026-06-11 00:32 2026-06-10 Show GitHub Exploit DB Packet Storm
593 8.3 HIGH
Network 		google chrome Inappropriate implementation in Views in Google Chrome on Linux prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via … New CWE-20
NVD-CWE-noinfo
 Improper Input Validation  		CVE-2026-11682 2026-06-11 00:27 2026-06-9 Show GitHub Exploit DB Packet Storm
594 7.8 HIGH
Local 		- - During an internal security assessment, a potential vulnerability was discovered in Lenovo Accessories and Display Manager for Enterprise for Windows that could allow a local authenticated user to ex… New CWE-306
Missing Authentication for Critical Function 		CVE-2026-9045 2026-06-11 00:16 2026-06-11 Show GitHub Exploit DB Packet Storm
595 7.8 HIGH
Local 		- - A potential uncontrolled search path vulnerability was reported in the LanSchool Classic client application that could allow a local authenticated user to execute arbitrary code with elevated privile… New CWE-427
 Uncontrolled Search Path Element 		CVE-2026-8637 2026-06-11 00:16 2026-06-11 Show GitHub Exploit DB Packet Storm
596 - - - A missing authentication check on the Aix‑DB "/llm/process_llm_out" endpoint allows unauthenticated clients to execute arbitrary "SELECT" SQL queries and retrieve database data, as the endpoint lacks… New CWE-306
Missing Authentication for Critical Function 		CVE-2026-8335 2026-06-11 00:16 2026-06-11 Show GitHub Exploit DB Packet Storm
597 4.3 MEDIUM
Network 		- - A vulnerability was identified in the Lenovo Android Application, distributed exclusively on tablets in the Chinese market, that could allow a website visited by the built-in browser to overwrite sys… New CWE-749
 Exposed Dangerous Method or Function 		CVE-2026-7516 2026-06-11 00:16 2026-06-11 Show GitHub Exploit DB Packet Storm
598 7.0 HIGH
Local 		- - A potential authentication bypass was reported in Lenovo Smart Connect for Windows that could allow a local authenticated user to execute arbitrary code with elevated privileges. New CWE-290
 Authentication Bypass by Spoofing 		CVE-2026-6090 2026-06-11 00:16 2026-06-11 Show GitHub Exploit DB Packet Storm
599 7.1 HIGH
Network 		- - libnfs through 6.0.2 before 55c18ea does not validate a string size, leading to an integer overflow during a connection to a crafted NFS server. This occurs in libnfs_zdr_string in lib/libnfs-zdr.c. New CWE-1284
 Improper Validation of Specified Quantity in Input 		CVE-2026-53689 2026-06-11 00:16 2026-06-11 Show GitHub Exploit DB Packet Storm
600 9.6 CRITICAL
Adjacent 		- - A flaw was found in assisted-migration-agent. An unauthenticated attacker, located on the same local area network (LAN), can exploit a path traversal vulnerability. By crafting a specially designed g… New CWE-59
Link Following 		CVE-2026-53476 2026-06-11 00:16 2026-06-11 Show GitHub Exploit DB Packet Storm