Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1421	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における配列インデックスの検証に関する脆弱性	CWE-129 配列インデックスの不適切な検証	CVE-2024-56596	2025-01-17 21:32	2024-10-29	Show	GitHub Exploit DB Packet Storm

1422	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における配列インデックスの検証に関する脆弱性	CWE-129 配列インデックスの不適切な検証	CVE-2024-53203	2025-01-17 21:30	2024-11-12	Show	GitHub Exploit DB Packet Storm

1423	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2024-53187	2025-01-17 21:28	2024-11-26	Show	GitHub Exploit DB Packet Storm

1424	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における無限ループに関する脆弱性	CWE-835 無限ループ	CVE-2024-35981	2025-01-17 21:26	2024-04-7	Show	GitHub Exploit DB Packet Storm

1425	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における脆弱性	CWE-noinfo 情報不足	CVE-2023-52532	2025-01-17 21:25	2023-10-5	Show	GitHub Exploit DB Packet Storm

1426	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における脆弱性	CWE-noinfo 情報不足	CVE-2021-47086	2025-01-17 21:23	2021-12-20	Show	GitHub Exploit DB Packet Storm

1427	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2023-52789	2025-01-17 21:19	2023-09-18	Show	GitHub Exploit DB Packet Storm

1428	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2024-56640	2025-01-17 21:03	2024-12-3	Show	GitHub Exploit DB Packet Storm

1429	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2024-53179	2025-01-17 21:02	2024-11-17	Show	GitHub Exploit DB Packet Storm

1430	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel におけるリソースのロックに関する脆弱性	CWE-667 不適切なロック	CVE-2024-35968	2025-01-17 21:00	2024-04-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 7, 2025, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
276081	-	ezra_barnett_gildesgame	smartqueue_og	The Smartqueue_og module 5.x before 5.x-1.3 and 6.x before 6.x-1.0-rc3, a module for Drupal, does not verify group-node privileges in certain circumstances involving subqueue creation, which allows r…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2009-3921	2009-11-10 14:00	2009-11-10	Show	GitHub Exploit DB Packet Storm

276082	-	tftgallery	tftgallery	Directory traversal vulnerability in index.php in TFTgallery 0.13 allows remote attackers to read arbitrary files via a ..%2F (encoded dot dot slash) in the album parameter.	CWE-22 Path Traversal	CVE-2009-3912	2009-11-10 02:30	2009-11-10	Show	GitHub Exploit DB Packet Storm

276083	-	arubanetworks	arubaos aruba_mobility_controller	ArubaOS 3.3.1.x, 3.3.2.x, RN 3.1.x, 3.4.x, and 3.3.2.x-FIPS on the Aruba Mobility Controller allows remote attackers to cause a denial of service (Access Point crash) via a malformed 802.11 Associati…	NVD-CWE-noinfo	CVE-2009-3836	2009-11-9 14:00	2009-11-3	Show	GitHub Exploit DB Packet Storm

276084	-	ecouriersoftware	e-courirer_cms	Multiple cross-site scripting (XSS) vulnerabilities in e-Courier CMS allow remote attackers to inject arbitrary web script or HTML via the UserGUID parameter to home/index.asp and other unspecified v…	CWE-79 Cross-site Scripting	CVE-2009-3901	2009-11-7 00:30	2009-11-7	Show	GitHub Exploit DB Packet Storm

276085	-	novell	edirectory	The NDSD process in Novell eDirectory 8.7.3 before 8.7.3.10 ftf2 and eDirectory 8.8 before 8.8.5 ftf1 does not properly handle certain LDAP search requests, which allows remote attackers to cause a d…	CWE-287 Improper Authentication	CVE-2009-3862	2009-11-5 14:00	2009-11-5	Show	GitHub Exploit DB Packet Storm

276086	-	novell	edirectory	Per: http://www.novell.com/support/viewContent.do?externalId=7004721 "Resolution This vulnerability is resolved in eDirectory 8.8.5 ftf1 and eDirectory 8.7.3.10 ftf2. To resolve this problem…	CWE-287 Improper Authentication	CVE-2009-3862	2009-11-5 14:00	2009-11-5	Show	GitHub Exploit DB Packet Storm

276087	-	mahara	mahara	Mahara before 1.0.13, and 1.1.x before 1.1.7, allows remote authenticated institution administrators to reset a site administrator password via unspecified vectors.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2009-3298	2009-11-4 14:00	2009-11-4	Show	GitHub Exploit DB Packet Storm

276088	-	tftgallery	tftgallery	Cross-site scripting (XSS) vulnerability in index.php in TFTgallery 0.13 allows remote attackers to inject arbitrary web script or HTML via the album parameter.	CWE-79 Cross-site Scripting	CVE-2009-3833	2009-11-3 00:30	2009-11-3	Show	GitHub Exploit DB Packet Storm

276089	-	systemtap	systemtap	SystemTap 1.0, when the --unprivileged option is used, does not properly restrict certain data sizes, which allows local users to (1) cause a denial of service or gain privileges via a print operatio…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2009-2911	2009-10-31 15:22	2009-10-23	Show	GitHub Exploit DB Packet Storm

276090	-	craig_barratt	backuppc	CgiUserConfigEdit in BackupPC 3.1.0, when SSH keys and Rsync are in use in a multi-user environment, does not restrict users from the ClientNameAlias function, which allows remote authenticated users…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2009-3369	2009-10-31 15:22	2009-09-25	Show	GitHub Exploit DB Packet Storm