Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 17, 2024, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
188471 5 警告 Nicolas Cannasse - OCaml Xml-Light Library におけるサービス運用妨害 (DoS) の脆弱性 CWE-310
暗号の問題 		CVE-2012-3514 2012-08-28 16:06 2012-08-25 Show GitHub Exploit DB Packet Storm
188472 4.3 警告 Roundcube.net - Roundcube Webmail の program/lib/washtml.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3508 2012-08-28 15:56 2012-08-14 Show GitHub Exploit DB Packet Storm
188473 2.6 注意 Roundcube.net - RoundCube Webmail の program/steps/mail/func.inc におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3507 2012-08-28 15:36 2012-06-7 Show GitHub Exploit DB Packet Storm
188474 6.5 警告 Katello Project - Katello における任意のユーザーとして CloudForms System Engine の Web インターフェイスに認証される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3503 2012-08-28 15:35 2012-08-25 Show GitHub Exploit DB Packet Storm
188475 5 警告 Gilles Darold - SquidClamav の squidclamav.c におけるサービス運用妨害 (デーモンクラッシュ) の脆弱性 CWE-119
バッファエラー 		CVE-2012-3501 2012-08-28 15:34 2012-08-25 Show GitHub Exploit DB Packet Storm
188476 6.8 警告 The GIMP Team - GIMP の Adobe Photoshop PSD プラグインにおける整数オーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-3402 2012-08-28 13:49 2012-08-25 Show GitHub Exploit DB Packet Storm
188477 4.3 警告 OpenTTD - OpenTTD におけるサービス運用妨害 (ゲーム休止) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-0048 2012-08-28 13:47 2012-01-6 Show GitHub Exploit DB Packet Storm
188478 4.3 警告 アドビシステムズ - Adobe Flash Player におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0767 2012-08-27 16:55 2012-02-15 Show GitHub Exploit DB Packet Storm
188479 10 危険 アドビシステムズ - Adobe Flash Player におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-0756 2012-08-27 16:54 2012-02-15 Show GitHub Exploit DB Packet Storm
188480 10 危険 アドビシステムズ - Adobe Flash Player におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-0755 2012-08-27 16:53 2012-02-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 17, 2024, 5:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
71 - - - FlightPath 7.5 contains a Cross Site Scripting (XSS) vulnerability, which allows authenticated remote attackers with administrative rights to inject arbitrary JavaScript in the web browser of a user … New - CVE-2024-50983 2024-11-16 07:15 2024-11-16 Show GitHub Exploit DB Packet Storm
72 - - - GLPI is a free asset and IT management software package. Starting in 9.2.0 and prior to 11.0.0, it is possible to download a document from the API without appropriate rights. Upgrade to 10.0.16. New CWE-285
Improper Authorization 		CVE-2024-38370 2024-11-16 07:15 2024-11-16 Show GitHub Exploit DB Packet Storm
73 - - - A vulnerability, which was classified as critical, was found in SourceCodester Student Record Management System 1.0. Affected is an unknown function of the file StudentRecordManagementSystem.cpp of t… New CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2024-11261 2024-11-16 07:15 2024-11-16 Show GitHub Exploit DB Packet Storm
74 - - - In setAllowOnlyVpnForUids of NetworkManagementService.java, there is a possible security settings bypass due to a missing permission check. This could lead to local escalation of privilege allowing u… New - CVE-2017-13314 2024-11-16 07:15 2024-11-16 Show GitHub Exploit DB Packet Storm
75 - - - In ElementaryStreamQueue::dequeueAccessUnitMPEG4Video of ESQueue.cpp, there is a possible infinite loop leading to resource exhaustion due to an incorrect bounds check. This could lead to remote deni… New - CVE-2017-13313 2024-11-16 07:15 2024-11-16 Show GitHub Exploit DB Packet Storm
76 - - - In createFromParcel of MediaCas.java, there is a possible parcel read/write mismatch due to improper input validation. This could lead to local escalation of privilege where an app can start an activ… New - CVE-2017-13312 2024-11-16 07:15 2024-11-16 Show GitHub Exploit DB Packet Storm
77 - - - In the read() function of ProcessStats.java, there is a possible read/write serialization issue leading to a permissions bypass. This could lead to local escalation of privilege where an app can star… New - CVE-2017-13311 2024-11-16 07:15 2024-11-16 Show GitHub Exploit DB Packet Storm
78 - - - In createFromParcel of ViewPager.java, there is a possible read/write serialization issue leading to a permissions bypass. This could lead to local escalation of privilege where an app can start an a… New - CVE-2017-13310 2024-11-16 07:15 2024-11-16 Show GitHub Exploit DB Packet Storm
79 - - - In readEncryptedData of ConscryptEngine.java, there is a possible plaintext leak due to improperly used crypto. This could lead to local information disclosure with no additional execution privileges… New - CVE-2017-13309 2024-11-16 06:35 2024-11-16 Show GitHub Exploit DB Packet Storm
80 - - - An invalid memory access when handling the ProtocolIE_ID field of S1Setup Request messages in Athonet vEPC MME v11.4.0 allows attackers to cause a Denial of Service (DoS) to the cellular network by r… New - CVE-2024-24459 2024-11-16 06:35 2024-11-16 Show GitHub Exploit DB Packet Storm