Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
721	7.4	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける初期化されていない変数の使用に関する脆弱性	CWE-457 初期化されていない変数の使用	CVE-2026-10973	2026-06-8 12:38	2026-06-4	Show	GitHub Exploit DB Packet Storm

722	9.6	緊急 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-10974	2026-06-8 12:38	2026-06-4	Show	GitHub Exploit DB Packet Storm

723	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-10975	2026-06-8 12:38	2026-06-4	Show	GitHub Exploit DB Packet Storm

724	7.4	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける初期化されていない変数の使用に関する脆弱性	CWE-457 初期化されていない変数の使用	CVE-2026-10976	2026-06-8 12:38	2026-06-4	Show	GitHub Exploit DB Packet Storm

725	6.5	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける初期化されていない変数の使用に関する脆弱性	CWE-457 初期化されていない変数の使用	CVE-2026-10977	2026-06-8 12:38	2026-06-4	Show	GitHub Exploit DB Packet Storm

726	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-10978	2026-06-8 12:38	2026-06-4	Show	GitHub Exploit DB Packet Storm

727	6.5	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2026-10979	2026-06-8 12:38	2026-06-4	Show	GitHub Exploit DB Packet Storm

728	6.5	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-10980	2026-06-8 12:38	2026-06-4	Show	GitHub Exploit DB Packet Storm

729	6.5	警告 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-10981	2026-06-8 12:38	2026-06-4	Show	GitHub Exploit DB Packet Storm

730	8.8	重要 Network	Google	Google Chrome	GoogleのGoogle Chromeにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2026-10982	2026-06-8 12:38	2026-06-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
319471	-		-	-	A race condition in UEFI firmware for some Intel(R) processors may allow a privileged user to potentially enable escalation of privilege via local access.	CWE-362 Race Condition	CVE-2023-41833	2024-09-17 02:15	2024-09-17	Show	GitHub Exploit DB Packet Storm

319472	-		-	-	Out-of-bounds read in UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable denial of service via local access.	CWE-125 Out-of-bounds Read	CVE-2023-25546	2024-09-17 02:15	2024-09-17	Show	GitHub Exploit DB Packet Storm

319473	-		-	-	NULL pointer dereference in the UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.	CWE-395 Use of NullPointerException Catch to Detect NULL Pointer Dereference	CVE-2023-23904	2024-09-17 02:15	2024-09-17	Show	GitHub Exploit DB Packet Storm

319474	-		-	-	Out-of-bounds write in UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.	CWE-787 Out-of-bounds Write	CVE-2023-22351	2024-09-17 02:15	2024-09-17	Show	GitHub Exploit DB Packet Storm

319475	9.8	CRITICAL Network	ibm	sterling_connect_direct_web_services	IBM Sterling Connect:Direct Web Services 6.0, 6.1, 6.2, and 6.3 uses default credentials for potentially critical functionality.	CWE-1392 Use of Default Credentials	CVE-2024-39747	2024-09-17 02:13	2024-08-31	Show	GitHub Exploit DB Packet Storm

319476	7.5	HIGH Network	skyport	skyportd	Skyport Daemon (skyportd) is the daemon for the Skyport Panel. By making thousands of folders & files (easy due to skyport's lack of rate limiting on createFolder. createFile), skyportd in a lot of c…	CWE-400 Uncontrolled Resource Consumption	CVE-2024-42481	2024-09-17 02:10	2024-08-13	Show	GitHub Exploit DB Packet Storm

319477	7.8	HIGH Local	ultimaker	ultimaker_cura	UltiMaker Cura slicer versions 5.7.0-beta.1 through 5.7.2 are vulnerable to code injection via the 3MF format reader (/plugins/ThreeMFReader.py). The vulnerability arises from improper handling of th…	CWE-94 Code Injection	CVE-2024-8374	2024-09-17 01:44	2024-09-3	Show	GitHub Exploit DB Packet Storm

319478	6.4	MEDIUM Network	halo	halo	Halo is an open source website building tool. A security vulnerability has been identified in versions prior to 2.19.0 of the Halo project. This vulnerability allows an attacker to execute malicious …	CWE-79 Cross-site Scripting	CVE-2024-43793	2024-09-17 01:28	2024-09-12	Show	GitHub Exploit DB Packet Storm

319479	6.1	MEDIUM Network	halo	halo	Halo is an open source website building tool. A security vulnerability has been identified in versions prior to 2.17.0 of the Halo project. This vulnerability allows an attacker to execute malicious …	CWE-79 Cross-site Scripting	CVE-2024-43792	2024-09-17 01:26	2024-09-3	Show	GitHub Exploit DB Packet Storm

319480	8.2	HIGH Network	sap	bex_web_java_runtime_export_web_service	BEx Web Java Runtime Export Web Service does not sufficiently validate an XML document accepted from an untrusted source. An attacker can retrieve information from the SAP ADS system and exhaust the …	CWE-91 Blind XPath Injection	CVE-2024-42374	2024-09-17 01:25	2024-08-13	Show	GitHub Exploit DB Packet Storm