Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Oct. 6, 2024, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
141 7.5 重要
Network 		Rockwell Automation 5015-u8ihft ファームウェア Rockwell Automation の 5015-u8ihft ファームウェアにおける脆弱性 CWE-20
CWE-noinfo
CVE-2024-45825 2024-10-3 10:02 2024-09-12 Show GitHub Exploit DB Packet Storm
142 8.8 重要
Network 		ferrislucas promptr ferrislucas の promptr におけるコードインジェクションの脆弱性 CWE-94
CWE-94
CVE-2024-46489 2024-10-3 10:01 2024-09-25 Show GitHub Exploit DB Packet Storm
143 6.5 警告
Network 		シスコシステムズ Cisco IOS
Cisco IOS XE 		シスコシステムズの Cisco IOS XE および Cisco IOS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-285
CWE-352
CVE-2024-20414 2024-10-3 10:01 2024-09-25 Show GitHub Exploit DB Packet Storm
144 5.5 警告
Local 		OpenText identity manager azuread driver OpenText の identity manager azuread driver におけるログファイルからの情報漏えいに関する脆弱性 CWE-532
CWE-532
CVE-2021-22518 2024-10-3 09:58 2021-01-5 Show GitHub Exploit DB Packet Storm
145 5.3 警告
Adjacent 		Synology Inc. active backup for business agent Synology Inc. の active backup for business agent における重要なデータの暗号化の欠如に関する脆弱性 CWE-311
CWE-311
CVE-2023-52950 2024-10-3 09:58 2024-09-26 Show GitHub Exploit DB Packet Storm
146 5.4 警告
Network 		millbeck proroute h685t-w ファームウェア millbeckcommunications の proroute h685t-w ファームウェアにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-38380 2024-10-3 09:58 2024-09-17 Show GitHub Exploit DB Packet Storm
147 5.5 警告
Local 		asg017 sqlite-vec asg017 の sqlite-vec における境界外書き込みに関する脆弱性 CWE-122
CWE-787
CVE-2024-46488 2024-10-3 09:58 2024-09-25 Show GitHub Exploit DB Packet Storm
148 6.1 警告
Network 		ellevo ellevo ellevo におけるクロスサイトスクリプティングの脆弱性 CWE-79
CWE-79
CVE-2024-46655 2024-10-3 09:58 2024-09-25 Show GitHub Exploit DB Packet Storm
149 5.4 警告
Network 		Livemesh Livemesh Addons for Elementor Livemesh の WordPress 用 Livemesh Addons for Elementor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-47303 2024-10-3 09:58 2024-09-25 Show GitHub Exploit DB Packet Storm
150 4.3 警告
Network 		ThemeHunk easy mega menu plugin ThemeHunk の WordPress 用 easy mega menu plugin における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2024-8434 2024-10-3 09:58 2024-09-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Oct. 7, 2024, 5:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
258641 - joomla joomla Joomla! before 1.0.11 does not properly unset variables when the input data includes a numeric parameter with a value matching an alphanumeric parameter's hash value, which allows remote attackers to… CWE-20
 Improper Input Validation  		CVE-2006-4466 2011-10-11 13:00 2006-09-1 Show GitHub Exploit DB Packet Storm
258642 - freebsd freebsd Integer overflow in the ffs_mountfs function in FreeBSD 6.1 allows local users to cause a denial of service (panic) and possibly execute arbitrary code via a crafted UFS filesystem that causes invali… CWE-189
Numeric Errors 		CVE-2006-5679 2011-10-11 13:00 2006-11-4 Show GitHub Exploit DB Packet Storm
258643 - apple mac_os_x Mail in Apple Mac OS X Leopard (10.5.1) allows user-assisted remote attackers to execute arbitrary code via an AppleDouble attachment containing an apparently-safe file type and script in a resource … CWE-264
CWE-20
Permissions, Privileges, and Access Controls
 Improper Input Validation  		CVE-2007-6165 2011-10-6 13:00 2007-11-29 Show GitHub Exploit DB Packet Storm
258644 - cisco unified_communications_manager
intercompany_media_engine 		Unspecified vulnerability in the Service Advertisement Framework (SAF) in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 8.x before 8.5(1) and Cisco Intercompany Media Engine 8… NVD-CWE-noinfo
CVE-2011-2563 2011-10-6 11:50 2011-08-30 Show GitHub Exploit DB Packet Storm
258645 - cisco unified_communications_manager
intercompany_media_engine 		Unspecified vulnerability in the Service Advertisement Framework (SAF) in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 8.x before 8.5(1) and Cisco Intercompany Media Engine 8… NVD-CWE-noinfo
CVE-2011-2564 2011-10-6 11:50 2011-08-30 Show GitHub Exploit DB Packet Storm
258646 - novell cloud_manager The RPC implementation in the server in Novell Cloud Manager 1.1.2 before Patch 3 does not properly initialize objects, which allows remote attackers to execute arbitrary code by making RPC calls tha… CWE-20
 Improper Input Validation  		CVE-2011-2654 2011-10-6 11:50 2011-09-7 Show GitHub Exploit DB Packet Storm
258647 - realnetworks realplayer
realplayer_sp 		Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5 and RealPlayer SP 1.0 through 1.1.5 allows remote attackers to execute arbitrary code via a crafted S… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2011-2945 2011-10-6 11:50 2011-08-19 Show GitHub Exploit DB Packet Storm
258648 - realnetworks realplayer
realplayer_sp 		Unspecified vulnerability in an ActiveX control in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.0 through 2.1.5 al… NVD-CWE-noinfo
CVE-2011-2946 2011-10-6 11:50 2011-08-19 Show GitHub Exploit DB Packet Storm
258649 - realnetworks realplayer
realplayer_sp 		Cross-zone scripting vulnerability in the RealPlayer ActiveX control in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5 and RealPlayer SP 1.0 through 1.1.5 allows remote attackers… CWE-79
Cross-site Scripting 		CVE-2011-2947 2011-10-6 11:50 2011-08-19 Show GitHub Exploit DB Packet Storm
258650 - realnetworks realplayer
realplayer_sp 		RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5, RealPlayer Enterprise 2.0 through 2.1.5, and Mac RealPlayer 12.0.0.1569 do not properly handle DE… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2011-2948 2011-10-6 11:50 2011-08-19 Show GitHub Exploit DB Packet Storm