Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
641	4.2	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける保護メカニズムの不具合に関する脆弱性 New	CWE-693 保護メカニズムの不具合	CVE-2026-12457	2026-06-22 11:42	2026-06-17	Show	GitHub Exploit DB Packet Storm

642	3.1	低 Network	Google	Google Chrome	GoogleのGoogle Chromeにおけるユーザインターフェースにおける重要情報の誤った表示に関する脆弱性 New	CWE-451 ユーザインターフェースにおける重要情報の誤った表示	CVE-2026-12458	2026-06-22 11:42	2026-06-17	Show	GitHub Exploit DB Packet Storm

643	6.1	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-12459	2026-06-22 11:42	2026-06-17	Show	GitHub Exploit DB Packet Storm

644	4.2	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおけるアクセス制御に関する脆弱性 New	CWE-284 不適切なアクセス制御	CVE-2026-12460	2026-06-22 11:42	2026-06-17	Show	GitHub Exploit DB Packet Storm

645	6.5	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける境界外読み取りに関する脆弱性 New	CWE-125 境界外読み取り	CVE-2026-12461	2026-06-22 11:42	2026-06-17	Show	GitHub Exploit DB Packet Storm

646	7.5	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2026-12462	2026-06-22 11:41	2026-06-17	Show	GitHub Exploit DB Packet Storm

647	4.7	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-12463	2026-06-22 11:41	2026-06-17	Show	GitHub Exploit DB Packet Storm

648	8.3	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2026-12464	2026-06-22 11:41	2026-06-17	Show	GitHub Exploit DB Packet Storm

649	8.3	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける入力確認に関する脆弱性 New	CWE-20 不適切な入力確認	CVE-2026-12465	2026-06-22 11:41	2026-06-17	Show	GitHub Exploit DB Packet Storm

650	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおけるヒープベースのバッファオーバーフローの脆弱性 New	CWE-122 ヒープオーバーフロー	CVE-2026-12466	2026-06-22 11:41	2026-06-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
309361	-	mozilla	firefox seamonkey thunderbird	Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5.x before 3.5.19, 3.6.x before 3.6.17, and 4.x before 4.0.1; Thunderbird before 3.1.10; and SeaMonkey before 2.0.14 allows remote…	NVD-CWE-noinfo	CVE-2011-0070	2024-11-21 10:23	2011-05-8	Show	GitHub Exploit DB Packet Storm

309362	-	mozilla	firefox seamonkey thunderbird	Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5.x before 3.5.19, 3.6.x before 3.6.17, and 4.x before 4.0.1; Thunderbird before 3.1.10; and SeaMonkey before 2.0.14 allows remote…	NVD-CWE-noinfo	CVE-2011-0069	2024-11-21 10:23	2011-05-8	Show	GitHub Exploit DB Packet Storm

309363	-	mozilla	firefox seamonkey	Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey before 2.0.14, does not properly implement autocompletion for forms, which allows remote attackers to read form history entries vi…	CWE-20 Improper Input Validation	CVE-2011-0067	2024-11-21 10:23	2011-05-8	Show	GitHub Exploit DB Packet Storm

309364	-	mozilla	firefox seamonkey	Use-after-free vulnerability in Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey before 2.0.14, allows remote attackers to execute arbitrary code via vectors related to OBJECT's m…	CWE-399 Resource Management Errors	CVE-2011-0066	2024-11-21 10:23	2011-05-8	Show	GitHub Exploit DB Packet Storm

309365	-	mozilla	firefox seamonkey	Use-after-free vulnerability in Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey before 2.0.14, allows remote attackers to execute arbitrary code via vectors related to OBJECT's m…	CWE-399 Resource Management Errors	CVE-2011-0065	2024-11-21 10:23	2011-05-8	Show	GitHub Exploit DB Packet Storm

309366	-	indusoft advantech	web_studio thin_client advantech_studio	Multiple buffer overflows in the ISSymbol ActiveX control in ISSymbol.ocx 61.6.0.0 and 301.1009.2904.0 in the ISSymbol virtual machine, as distributed in Advantech Studio 6.1 SP6 61.6.01.05, InduSoft…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2011-0340	2024-11-21 10:23	2011-05-5	Show	GitHub Exploit DB Packet Storm

309367	-	sun	sunos	Oracle Solaris 8, 9, and 10 stores back-out patch files (undo.Z) unencrypted with world-readable permissions under /var/sadm/pkg/, which allows local users to obtain password hashes and conduct brute…	CWE-255 Credentials Management	CVE-2011-0412	2024-11-21 10:23	2011-04-20	Show	GitHub Exploit DB Packet Storm

309368	-	rim	blackberry_enterprise_server blackberry_enterprise_server_express	Cross-site scripting (XSS) vulnerability in webdesktop/app in the BlackBerry Web Desktop Manager component in Research In Motion (RIM) BlackBerry Enterprise Server (BES) software before 5.0.2 MR5 and…	CWE-79 Cross-site Scripting	CVE-2011-0286	2024-11-21 10:23	2011-04-19	Show	GitHub Exploit DB Packet Storm

309369	-	redhat	spice-xpi	The SPICE Firefox plug-in (spice-xpi) 2.4, 2.3, 2.2, and possibly other versions allows local users to overwrite arbitrary files via a symlink attack on the usbrdrctl log file, which has a predictabl…	CWE-59 Link Following	CVE-2011-0012	2024-11-21 10:23	2011-04-19	Show	GitHub Exploit DB Packet Storm

309370	-	apple	iphone_os	The generate-id XPath function in libxslt in Apple iOS 4.3.x before 4.3.2 allows remote attackers to obtain potentially sensitive information about heap memory addresses via a crafted web site. NOTE…	CWE-200 Information Exposure	CVE-2011-0195	2024-11-21 10:23	2011-04-16	Show	GitHub Exploit DB Packet Storm