Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4781 6.5 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける代替パスまたはチャネルを使用した認証回避に関する脆弱性 CWE-288
代替パスまたはチャネルを使用した認証回避 		CVE-2026-4524 2026-05-18 11:24 2026-05-14 Show GitHub Exploit DB Packet Storm
4782 6.5 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2026-4527 2026-05-18 11:24 2026-05-14 Show GitHub Exploit DB Packet Storm
4783 4.3 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-6063 2026-05-18 11:24 2026-05-14 Show GitHub Exploit DB Packet Storm
4784 5.4 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-6073 2026-05-18 11:24 2026-05-14 Show GitHub Exploit DB Packet Storm
4785 5.4 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2026-6335 2026-05-18 11:24 2026-05-14 Show GitHub Exploit DB Packet Storm
4786 4.3 警告
Network 		GitLab.org GitLab GitLab.orgのGitLabにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2026-6883 2026-05-18 11:24 2026-05-14 Show GitHub Exploit DB Packet Storm
4787 9.8 緊急
Network 		libexpat project libexpat libexpat projectのlibexpatにおけるエントロピー不足に関する脆弱性 CWE-331
エントロピー不足 		CVE-2026-7210 2026-05-18 11:24 2026-05-11 Show GitHub Exploit DB Packet Storm
4788 8.8 重要
Adjacent 		ZyXEL WRE6505 ファームウェア ZyXELのWRE6505 ファームウェアにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-7256 2026-05-18 11:24 2026-05-12 Show GitHub Exploit DB Packet Storm
4789 4.4 警告
Local 		ZyXEL WRE6505 ファームウェア ZyXELのWRE6505 ファームウェアにおける重要な情報のセキュアでない格納に関する脆弱性 CWE-922
重要な情報のセキュアでない格納 		CVE-2026-7257 2026-05-18 11:24 2026-05-12 Show GitHub Exploit DB Packet Storm
4790 7.5 重要
Network 		ZyXEL NWA1100-N ファームウェア ZyXELのNWA1100-N ファームウェアにおける古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2026-7287 2026-05-18 11:24 2026-05-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 25, 2026, 4:04 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2131 7.5 HIGH
Network 		google chrome Out of bounds read and write in Media in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via… CWE-125
CWE-787
Out-of-bounds Read
 Out-of-bounds Write 		CVE-2026-11690 2026-06-9 23:53 2026-06-9 Show GitHub Exploit DB Packet Storm
2132 8.8 HIGH
Network 		google chrome Use after free in WebCodecs in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) CWE-416
 Use After Free 		CVE-2026-11683 2026-06-9 23:53 2026-06-9 Show GitHub Exploit DB Packet Storm
2133 8.8 HIGH
Network 		google chrome Use after free in Media in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: … CWE-416
 Use After Free 		CVE-2026-11680 2026-06-9 23:53 2026-06-9 Show GitHub Exploit DB Packet Storm
2134 8.3 HIGH
Network 		google chrome Use after free in Codecs in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted H… CWE-416
 Use After Free 		CVE-2026-11679 2026-06-9 23:53 2026-06-9 Show GitHub Exploit DB Packet Storm
2135 5.3 MEDIUM
Network 		google chrome Integer overflow in libyuv in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory … CWE-472
 External Control of Assumed-Immutable Web Parameter 		CVE-2026-11678 2026-06-9 23:52 2026-06-9 Show GitHub Exploit DB Packet Storm
2136 8.3 HIGH
Network 		google chrome Race in Network in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker who had compromised the network process to potentially perform a sandbox escape via a crafted HTML page. (Chr… CWE-362
Race Condition 		CVE-2026-11677 2026-06-9 23:52 2026-06-9 Show GitHub Exploit DB Packet Storm
2137 3.1 LOW
Network 		google chrome Out of bounds read in Skia in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium sec… CWE-20
 Improper Input Validation  		CVE-2026-11675 2026-06-9 23:52 2026-06-9 Show GitHub Exploit DB Packet Storm
2138 8.8 HIGH
Network 		google chrome Use after free in Ozone in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical) CWE-416
 Use After Free 		CVE-2026-11629 2026-06-9 23:52 2026-06-9 Show GitHub Exploit DB Packet Storm
2139 7.5 HIGH
Network 		google chrome Use after free in ServiceWorker in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to execute arbitrary code inside a sandbox via a crafted HT… CWE-416
 Use After Free 		CVE-2026-11694 2026-06-9 23:52 2026-06-9 Show GitHub Exploit DB Packet Storm
2140 8.8 HIGH
Network 		google chrome Inappropriate implementation in SVG in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity:… CWE-94
Code Injection 		CVE-2026-11688 2026-06-9 23:52 2026-06-9 Show GitHub Exploit DB Packet Storm