Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 22, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4541 7.5 重要
Network 		The Go Project Go The Go ProjectのGoにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2026-39836 2026-05-15 11:01 2026-05-7 Show GitHub Exploit DB Packet Storm
4542 4.3 警告
Network 		アップル tvOS
iOS
watchOS
visionos
iPadOS 		アップルのiPadOS等の複数製品における古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2026-39869 2026-05-15 11:01 2026-05-11 Show GitHub Exploit DB Packet Storm
4543 7.5 重要
Network 		- アップルのmacOSにおけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2026-39870 2026-05-15 11:01 2026-05-11 Show GitHub Exploit DB Packet Storm
4544 6.8 警告
Physics 		ZTE ZX297520V3 ファームウェア ZTEのZX297520V3 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2026-40003 2026-05-15 11:01 2026-05-7 Show GitHub Exploit DB Packet Storm
4545 7.8 重要
Local 		ZTE ZXCLOUD iRAI ZTEのZXCLOUD iRAIにおける制御されていない検索パスの要素に関する脆弱性 CWE-427
制御されていない検索パスの要素 		CVE-2026-40004 2026-05-15 11:01 2026-05-7 Show GitHub Exploit DB Packet Storm
4546 6.5 警告
Network 		Zulip Zulip Server ZulipのZulip Serverにおけるアクセス制御に関する脆弱性 CWE-284
CWE-noinfo
CVE-2026-40300 2026-05-15 11:01 2026-05-12 Show GitHub Exploit DB Packet Storm
4547 6.5 警告
Network 		NocoBase NocoBase NocoBaseにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2026-40346 2026-05-15 11:01 2026-04-18 Show GitHub Exploit DB Packet Storm
4548 8.8 重要
Network 		マイクロソフト Microsoft SharePoint Server Microsoft SharePoint Server のリモートでコードが実行される脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-40357 2026-05-15 11:01 2026-05-12 Show GitHub Exploit DB Packet Storm
4549 8.8 重要
Network 		マイクロソフト Microsoft SharePoint Server Microsoft SharePoint Server のリモートでコードが実行される脆弱性 CWE-1220
アクセス制御の不十分な粒度 		CVE-2026-40365 2026-05-15 11:01 2026-05-12 Show GitHub Exploit DB Packet Storm
4550 8 重要
Network 		マイクロソフト Microsoft SharePoint Server Microsoft SharePoint Server のリモートでコードが実行される脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2026-40368 2026-05-15 11:01 2026-05-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2131 7.5 HIGH
Network 		google chrome Out of bounds read and write in Media in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via… CWE-125
CWE-787
Out-of-bounds Read
 Out-of-bounds Write 		CVE-2026-11690 2026-06-9 23:53 2026-06-9 Show GitHub Exploit DB Packet Storm
2132 8.8 HIGH
Network 		google chrome Use after free in WebCodecs in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) CWE-416
 Use After Free 		CVE-2026-11683 2026-06-9 23:53 2026-06-9 Show GitHub Exploit DB Packet Storm
2133 8.8 HIGH
Network 		google chrome Use after free in Media in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: … CWE-416
 Use After Free 		CVE-2026-11680 2026-06-9 23:53 2026-06-9 Show GitHub Exploit DB Packet Storm
2134 8.3 HIGH
Network 		google chrome Use after free in Codecs in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted H… CWE-416
 Use After Free 		CVE-2026-11679 2026-06-9 23:53 2026-06-9 Show GitHub Exploit DB Packet Storm
2135 5.3 MEDIUM
Network 		google chrome Integer overflow in libyuv in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory … CWE-472
 External Control of Assumed-Immutable Web Parameter 		CVE-2026-11678 2026-06-9 23:52 2026-06-9 Show GitHub Exploit DB Packet Storm
2136 8.3 HIGH
Network 		google chrome Race in Network in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker who had compromised the network process to potentially perform a sandbox escape via a crafted HTML page. (Chr… CWE-362
Race Condition 		CVE-2026-11677 2026-06-9 23:52 2026-06-9 Show GitHub Exploit DB Packet Storm
2137 3.1 LOW
Network 		google chrome Out of bounds read in Skia in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium sec… CWE-20
 Improper Input Validation  		CVE-2026-11675 2026-06-9 23:52 2026-06-9 Show GitHub Exploit DB Packet Storm
2138 8.8 HIGH
Network 		google chrome Use after free in Ozone in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical) CWE-416
 Use After Free 		CVE-2026-11629 2026-06-9 23:52 2026-06-9 Show GitHub Exploit DB Packet Storm
2139 7.5 HIGH
Network 		google chrome Use after free in ServiceWorker in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HT… CWE-416
 Use After Free 		CVE-2026-11694 2026-06-9 23:52 2026-06-9 Show GitHub Exploit DB Packet Storm
2140 8.8 HIGH
Network 		google chrome Inappropriate implementation in SVG in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity:… CWE-94
Code Injection 		CVE-2026-11688 2026-06-9 23:52 2026-06-9 Show GitHub Exploit DB Packet Storm