Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 28, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
4871 7.8 重要
Local 		マイクロソフト Kiota マイクロソフトのKiotaにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-41134 2026-05-18 12:05 2026-04-22 Show GitHub Exploit DB Packet Storm
4872 8.2 重要
Network 		Kata Containers Confidential Containers
Kata Containers 		Kata ContainersのConfidential Containers等の複数製品におけるUNIX Symbolic Link のフォローに関する脆弱性 CWE-61
UNIX Symbolic Link のフォロー 		CVE-2026-41326 2026-05-18 12:05 2026-04-24 Show GitHub Exploit DB Packet Storm
4873 8.4 重要
Local 		opentelemetry OpenTelemetry eBPF Instrumentation opentelemetryのOpenTelemetry eBPF Instrumentationにおける複数の脆弱性 CWE-22
CWE-59
CVE-2026-41433 2026-05-18 12:05 2026-04-24 Show GitHub Exploit DB Packet Storm
4874 5.3 警告
Network 		RedwoodSDK RedwoodSDK RedwoodjsのRedwoodSDKにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2026-42190 2026-05-18 12:05 2026-05-8 Show GitHub Exploit DB Packet Storm
4875 7.2 重要
Network 		FileMaker, Inc Claris FileMaker Cloud Claris International Inc. (旧 FileMaker, Inc)のClaris FileMaker Cloudにおけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2026-43680 2026-05-18 12:05 2026-05-12 Show GitHub Exploit DB Packet Storm
4876 7.2 重要
Network 		FileMaker, Inc Claris FileMaker Cloud Claris International Inc. (旧 FileMaker, Inc)のClaris FileMaker CloudにおけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2026-43685 2026-05-18 12:05 2026-05-12 Show GitHub Exploit DB Packet Storm
4877 6.5 警告
Network 		Shellhub Shellhub Shellhubにおけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2026-44426 2026-05-18 12:05 2026-05-13 Show GitHub Exploit DB Packet Storm
4878 9.8 緊急
Network 		Yarbo Lawn Mower Pro Firmware
Lawn Mower Firmware 		YarboのLawn Mower Firmware等の複数製品における非公開の機能に関する脆弱性 CWE-912
CWE-noinfo
CVE-2026-7413 2026-05-18 12:05 2026-05-7 Show GitHub Exploit DB Packet Storm
4879 9.8 緊急
Network 		Yarbo Lawn Mower Pro Firmware
Lawn Mower Firmware 		YarboのLawn Mower Firmware等の複数製品におけるハードコードされた認証情報の使用に関する脆弱性 CWE-798
ハードコードされた認証情報の使用 		CVE-2026-7414 2026-05-18 12:05 2026-05-7 Show GitHub Exploit DB Packet Storm
4880 9.8 緊急
Network 		Yarbo Lawn Mower Pro Firmware
Lawn Mower Firmware 		YarboのLawn Mower Firmware等の複数製品における重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2026-7415 2026-05-18 12:05 2026-05-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2121 7.3 HIGH
Network 		- - Memory safety bugs present in Firefox 151 and Thunderbird 151. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited t… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2026-12326 2026-06-17 02:16 2026-06-16 Show GitHub Exploit DB Packet Storm
2122 6.5 MEDIUM
Network 		- - Denial-of-service in the Graphics: ImageLib component. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Firefox ESR 115.37, Thunderbird 152, and Thunderbird 140.12. CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-12325 2026-06-17 02:16 2026-06-16 Show GitHub Exploit DB Packet Storm
2123 7.3 HIGH
Network 		- - Incorrect boundary conditions in the Graphics: CanvasWebGL component. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Thunderbird 152, and Thunderbird 140.12. CWE-703
 Improper Check or Handling of Exceptional Conditions 		CVE-2026-12324 2026-06-17 02:16 2026-06-16 Show GitHub Exploit DB Packet Storm
2124 5.4 MEDIUM
Network 		- - Spoofing issue in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 152 and Thunderbird 152. CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2026-12323 2026-06-17 02:16 2026-06-16 Show GitHub Exploit DB Packet Storm
2125 5.4 MEDIUM
Network 		- - Clickjacking issue in the Widget: Gtk component. This vulnerability was fixed in Firefox 152 and Thunderbird 152. CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2026-12322 2026-06-17 02:16 2026-06-16 Show GitHub Exploit DB Packet Storm
2126 5.4 MEDIUM
Network 		- - JIT miscompilation in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 152 and Thunderbird 152. CWE-670
 Always-Incorrect Control Flow Implementation 		CVE-2026-12321 2026-06-17 02:16 2026-06-16 Show GitHub Exploit DB Packet Storm
2127 4.3 MEDIUM
Network 		- - Information disclosure in the Password Manager component. This vulnerability was fixed in Firefox 152 and Thunderbird 152. CWE-200
Information Exposure 		CVE-2026-12320 2026-06-17 02:16 2026-06-16 Show GitHub Exploit DB Packet Storm
2128 6.5 MEDIUM
Network 		- - Denial-of-service in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 152 and Thunderbird 152. CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-12319 2026-06-17 02:16 2026-06-16 Show GitHub Exploit DB Packet Storm
2129 - - - Incorrect boundary conditions in the Libraries component in NSS. This vulnerability was fixed in Firefox 152 and Thunderbird 152. - CVE-2026-12318 2026-06-17 02:16 2026-06-16 Show GitHub Exploit DB Packet Storm
2130 - - - Memory safety bug fixed in Thunderbird 152. This vulnerability was fixed in Firefox 152 and Thunderbird 152. - CVE-2026-12317 2026-06-17 02:16 2026-06-16 Show GitHub Exploit DB Packet Storm