Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
4641	7.8	重要 Local	Foxit	pdf editor pdf reader	Foxitのpdf editor等の複数製品における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-3779	2026-04-30 11:02	2026-04-1	Show	GitHub Exploit DB Packet Storm

4642	7.8	重要 Local	Foxit	pdf editor pdf reader	Foxitのpdf editor等の複数製品における信頼できない検索パスに関する脆弱性	CWE-426 信頼性のない検索パス	CVE-2026-3780	2026-04-30 11:02	2026-04-1	Show	GitHub Exploit DB Packet Storm

4643	8.2	重要 Network	Apache Software Foundation	Apache Camel	Apache Software FoundationのApache Camelにおける代替パスまたはチャネルを使用した認証回避に関する脆弱性	CWE-288 代替パスまたはチャネルを使用した認証回避	CVE-2026-40022	2026-04-30 11:02	2026-04-27	Show	GitHub Exploit DB Packet Storm

4644	7.8	重要 Local	Apache Software Foundation	Apache Camel	Apache Software FoundationのApache Camelにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-40048	2026-04-30 11:02	2026-04-27	Show	GitHub Exploit DB Packet Storm

4645	5.9	警告 Network	opentelemetry	opentelemetry	opentelemetryにおける過剰なサイズ値のメモリ割り当てに関する脆弱性	CWE-789 過剰なサイズ値のメモリ割り当て	CVE-2026-40182	2026-04-30 11:02	2026-04-23	Show	GitHub Exploit DB Packet Storm

4646	9.9	緊急 Network	Apache Software Foundation	Apache Camel	Apache Software FoundationのApache Camelにおける大文字と小文字の区別の不適切な処理に関する脆弱性	CWE-178 大文字と小文字の区別の不適切な処理	CVE-2026-40453	2026-04-30 11:02	2026-04-27	Show	GitHub Exploit DB Packet Storm

4647	8.8	重要 Network	Apache Software Foundation	Apache Camel	Apache Software FoundationのApache Camelにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-40473	2026-04-30 11:02	2026-04-27	Show	GitHub Exploit DB Packet Storm

4648	8.8	重要 Network	Apache Software Foundation	Apache Camel	Apache Software FoundationのApache Camelにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-40858	2026-04-30 11:02	2026-04-27	Show	GitHub Exploit DB Packet Storm

4649	9.8	緊急 Network	Apache Software Foundation	Apache Camel	Apache Software FoundationのApache Camelにおける信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2026-40860	2026-04-30 11:02	2026-04-27	Show	GitHub Exploit DB Packet Storm

4650	7.7	重要 Network	argoproj	Argo Workflows	Argo Project AuthorsのArgo Workflowsにおける配列インデックスの検証に関する脆弱性	CWE-129 配列インデックスの不適切な検証	CVE-2026-40886	2026-04-30 11:02	2026-04-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
31	6.5	MEDIUM Network	google	chrome	Heap buffer overflow in Skia in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium secur… New	CWE-122 Heap-based Buffer Overflow	CVE-2026-10993	2026-06-7 02:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

32	6.5	MEDIUM Network	google	chrome	Insufficient data validation in Animation in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (C… New	NVD-CWE-noinfo CWE-20 Improper Input Validation	CVE-2026-10992	2026-06-7 02:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

33	8.3	HIGH Network	google	chrome	Use after free in Glic in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chr… New	CWE-416 Use After Free	CVE-2026-10990	2026-06-7 02:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

34	4.3	MEDIUM Network	-	-	A vulnerability was detected in Mage AI up to 0.9.79. This impacts the function useMutation of the file mage_ai/frontend/components/Sessions/SignForm/index.tsx of the component Sign-in Flow. Performi… New	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2026-11436	2026-06-7 01:16	2026-06-7	Show	GitHub Exploit DB Packet Storm

35	7.3	HIGH Network	-	-	A security vulnerability has been detected in Jinher OA 1.0. This affects an unknown function of the file nextselectplan.aspx. Such manipulation of the argument httpOID leads to sql injection. The at… New	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-11435	2026-06-7 01:16	2026-06-7	Show	GitHub Exploit DB Packet Storm

36	2.4	LOW Network	-	-	A weakness has been identified in FluentCMS 0.0.5. The impacted element is an unknown function of the file /admin/blocks of the component Blocks Plugin. This manipulation causes cross site scripting.… New	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2026-11434	2026-06-7 00:16	2026-06-7	Show	GitHub Exploit DB Packet Storm

37	8.8	HIGH Network	-	-	A security vulnerability has been detected in JingDong JD Cloud Box AX6600 4.5.3.r4546. The impacted element is the function set_macfilter of the file /sbin/jdcweb_rpc. The manipulation leads to stac… New	CWE-119 CWE-121 Incorrect Access of Indexable Resource ('Range Error') Stack-based Buffer Overflow	CVE-2026-11413	2026-06-6 23:16	2026-06-6	Show	GitHub Exploit DB Packet Storm

38	8.8	HIGH Network	-	-	Integer overflow in V8 in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium) New	CWE-472 External Control of Assumed-Immutable Web Parameter	CVE-2026-11211	2026-06-6 22:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

39	5.9	MEDIUM Network	google	chrome	Inappropriate implementation in WebRTC in Google Chrome prior to 149.0.7827.53 allowed an attacker in a privileged network position to leak cross-origin data via malicious network traffic. (Chromium … New	CWE-20 Improper Input Validation	CVE-2026-11199	2026-06-6 22:16	2026-06-5	Show	GitHub Exploit DB Packet Storm

40	7.8	HIGH Local	-	-	Inappropriate implementation in Installer in Google Chrome on Windows prior to 149.0.7827.53 allowed a local attacker to perform OS-level privilege escalation via a malicious file. (Chromium security… New	CWE-269 Improper Privilege Management	CVE-2026-11103	2026-06-6 22:16	2026-06-5	Show	GitHub Exploit DB Packet Storm