Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
621	7.5	重要 Network	デル	Dell Unisphere for PowerMax Virtual Appliance	デルのDell Unisphere for PowerMax Virtual Applianceにおける認可に関する脆弱性	CWE-285 不適切な認可	CVE-2022-34363	2026-06-3 17:04	2026-05-22	Show	GitHub Exploit DB Packet Storm

622	7.8	重要 Local	Synology Inc.	BeeDrive	Synology Inc.のBeeDriveにおける制御されていない検索パスの要素に関する脆弱性	CWE-427 制御されていない検索パスの要素	CVE-2023-52945	2026-06-3 17:04	2026-05-27	Show	GitHub Exploit DB Packet Storm

623	6.5	警告 Network	Apache Software Foundation	Ignite	Apache Software FoundationのIgniteにおける相対パストラバーサルの脆弱性	CWE-23 相対的パストラバーサル	CVE-2025-48977	2026-06-3 17:04	2026-05-28	Show	GitHub Exploit DB Packet Storm

624	9.1	緊急 Network	Palo Alto Networks	PAN-OS Prisma Access	Palo Alto NetworksのPAN-OS等の複数製品における検証および完全性チェックを行っていない Cookie への依存に関する脆弱性	CWE-565 検証および完全性チェックを行っていない Cookie への依存	CVE-2026-0257	2026-06-3 17:04	2026-05-13	Show	GitHub Exploit DB Packet Storm

625	8.3	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-10001	2026-06-3 17:04	2026-05-28	Show	GitHub Exploit DB Packet Storm

626	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-10002	2026-06-3 17:04	2026-05-28	Show	GitHub Exploit DB Packet Storm

627	6.5	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける入力確認に関する脆弱性	CWE-20 CWE-noinfo	CVE-2026-10004	2026-06-3 17:04	2026-05-28	Show	GitHub Exploit DB Packet Storm

628	7.5	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける競合状態に関する脆弱性	CWE-362 競合状態	CVE-2026-10006	2026-06-3 17:03	2026-05-28	Show	GitHub Exploit DB Packet Storm

629	8.3	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-10012	2026-06-3 17:03	2026-05-28	Show	GitHub Exploit DB Packet Storm

630	6.5	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける不変と仮定される Web パラメータの外部制御に関する脆弱性	CWE-472 不変と仮定される Web パラメータの外部制御	CVE-2026-10018	2026-06-3 17:03	2026-05-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
151	7.8	HIGH Local	x.org redhat	x_server xwayland enterprise_linux	A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. A mismatch between the X server and the libXfont2 library's maximum font name length can cause a stack buffer overflow… Update	CWE-121 Stack-based Buffer Overflow	CVE-2026-50256	2026-06-9 01:45	2026-06-5	Show	GitHub Exploit DB Packet Storm

152	4.3	MEDIUM Network	google	chrome	Insufficient policy enforcement in History in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low) Update	CWE-346 Origin Validation Error	CVE-2026-11309	2026-06-9 01:40	2026-06-5	Show	GitHub Exploit DB Packet Storm

153	6.5	MEDIUM Network	team	net\	Net::Async::Statsd::Client versions through 0.005 for Perl allow metric injections. The metric names are not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inj… Update	CWE-93 CRLF Injection	CVE-2026-8722	2026-06-9 01:39	2026-06-4	Show	GitHub Exploit DB Packet Storm

154	7.7	HIGH Local	google	chrome	Insufficient validation of untrusted input in Reader Mode in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to bypass navigation restrictions via a malicious file. (Chromium… Update	CWE-20 Improper Input Validation	CVE-2026-11297	2026-06-9 01:37	2026-06-5	Show	GitHub Exploit DB Packet Storm

155	7.5	HIGH Network	rrwo	net\	Net::CIDR::Set versions through 0.20 for Perl did not validate IP addresses. The add method called the _encode method to parse addresses. If the addresses did not look like netmasks or network range… Update	CWE-674 CWE-1287 Uncontrolled Recursion Improper Validation of Specified Type of Input	CVE-2026-49941	2026-06-9 01:37	2026-06-5	Show	GitHub Exploit DB Packet Storm

156	8.8	HIGH Network	google	chrome	Inappropriate implementation in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to perform privilege escalation via a crafted HTML page. (Chromium security severi… Update	CWE-269 Improper Privilege Management	CVE-2026-11295	2026-06-9 01:37	2026-06-5	Show	GitHub Exploit DB Packet Storm

157	7.3	HIGH Network	rrwo	net\	Net::CIDR::Set versions through 0.20 for Perl did not validate network masks. The mask portion of a network mask could contain Unicode digits such as the Arabic-Indic One (U+0661), or non-digits, wh… Update	CWE-1289 Improper Validation of Unsafe Equivalence in Input	CVE-2026-49942	2026-06-9 01:37	2026-06-5	Show	GitHub Exploit DB Packet Storm

158	4.3	MEDIUM Network	google	chrome	Inappropriate implementation in Android Autofill in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. (Chromium security … Update	CWE-346 Origin Validation Error	CVE-2026-11291	2026-06-9 01:37	2026-06-5	Show	GitHub Exploit DB Packet Storm

159	6.5	MEDIUM Network	rrwo	net\	Net::CIDR::Set versions through 0.20 for Perl accept non-ASCII IP addresses and netmasks. Unicode digits such as the Arabic-Indic One (U+0661) were accepted but not properly parsed as numbers. This… Update	CWE-1289 Improper Validation of Unsafe Equivalence in Input	CVE-2026-49940	2026-06-9 01:35	2026-06-5	Show	GitHub Exploit DB Packet Storm

160	7.5	HIGH Network	sanbeg	etsy\	Etsy::StatsD versions through 1.002002 for Perl allow metric injections. The metric names and values are not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inj… Update	CWE-93 CRLF Injection	CVE-2026-46741	2026-06-9 01:33	2026-06-5	Show	GitHub Exploit DB Packet Storm