Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 18, 2024, 12:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
188581 7.7 危険 ヒューレット・パッカード - HP Virtual SAN Appliance 上で稼働する HP SAN/iQ における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2012-2986 2012-08-22 16:46 2012-08-20 Show GitHub Exploit DB Packet Storm
188582 2.1 注意 Tecnick.com - TCExam の admin/code/tce_edit_answer.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4238 2012-08-22 16:44 2012-08-6 Show GitHub Exploit DB Packet Storm
188583 6.8 警告 Tecnick.com - TCExam における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-4237 2012-08-22 16:43 2012-08-6 Show GitHub Exploit DB Packet Storm
188584 4.3 警告 Jease - Jease におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4052 2012-08-22 16:42 2012-08-20 Show GitHub Exploit DB Packet Storm
188585 4.3 警告 Total Shop UK - Total Shop UK eCommerce Open Source におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4236 2012-08-22 16:40 2012-08-20 Show GitHub Exploit DB Packet Storm
188586 4.9 警告 OpenStack - OpenStack Compute (Nova) の virt/disk/api.py における任意のファイルを上書される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3447 2012-08-22 16:34 2012-07-31 Show GitHub Exploit DB Packet Storm
188587 5 警告 Debian - devotee における秘密のあだ名を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-2387 2012-08-22 16:24 2012-08-20 Show GitHub Exploit DB Packet Storm
188588 5 警告 GNOME Project - libsoup における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2012-2132 2012-08-22 16:20 2011-12-15 Show GitHub Exploit DB Packet Storm
188589 6.8 警告 Libav - Libav の libavcodec におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-0947 2012-08-22 16:19 2012-05-4 Show GitHub Exploit DB Packet Storm
188590 4.3 警告 FFmpeg
Libav		 - FFmpeg および Libav の libavcodec におけるサービス運用妨害 (メモリ破損) の脆弱性 CWE-119
バッファエラー 		CVE-2011-4579 2012-08-22 15:26 2011-12-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 18, 2024, 12:12 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
331 4.4 MEDIUM
Local 		- - Three vulnerabilities in the CLI of Cisco TelePresence CE and RoomOS could allow an authenticated, local attacker to overwrite arbitrary files on the local file system of an affected device. These… New CWE-59
Link Following 		CVE-2023-20004 2024-11-16 01:15 2024-11-16 Show GitHub Exploit DB Packet Storm
332 5.4 MEDIUM
Network 		- - A vulnerability in the web management interface of Cisco BroadWorks Hosted Thin Receptionist could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against … New CWE-79
Cross-site Scripting 		CVE-2022-20948 2024-11-16 01:15 2024-11-16 Show GitHub Exploit DB Packet Storm
333 4.3 MEDIUM
Network 		- - A vulnerability in the web-based management interface of Cisco Smart Software Manager On-Prem could allow an authenticated, remote attacker to elevate privileges on an affected system. This vul… New CWE-922
 Insecure Storage of Sensitive Information 		CVE-2022-20939 2024-11-16 01:15 2024-11-16 Show GitHub Exploit DB Packet Storm
334 6.5 MEDIUM
Adjacent 		- - A vulnerability in the version control of Cisco TelePresence CE Software for Cisco Touch 10 Devices could allow an unauthenticated, adjacent attacker to install an older version of the soft… New CWE-527
 Exposure of Version-Control Repository to an Unauthorized Control Sphere 		CVE-2022-20931 2024-11-16 01:15 2024-11-16 Show GitHub Exploit DB Packet Storm
335 6.3 MEDIUM
Network 		- - A vulnerability in the web management interface of Cisco AsyncOS for Cisco Secure Web Appliance, formerly Cisco Web Security Appliance (WSA), could allow an authenticated, remote … New CWE-78
OS Command  		CVE-2022-20871 2024-11-16 01:15 2024-11-16 Show GitHub Exploit DB Packet Storm
336 7.4 HIGH
Network 		- - A vulnerability in the REST API of Cisco Expressway Series and Cisco TelePresence VCS could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack o… New CWE-352
 Origin Validation Error 		CVE-2022-20853 2024-11-16 01:15 2024-11-16 Show GitHub Exploit DB Packet Storm
337 6.1 MEDIUM
Adjacent 		- - A vulnerability in the Broadband Network Gateway PPP over Ethernet (PPPoE) feature of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause the PPPoE process to contin… New CWE-391
CVE-2022-20849 2024-11-16 01:15 2024-11-16 Show GitHub Exploit DB Packet Storm
338 6.0 MEDIUM
Local 		- - A vulnerability in the TL1 function of Cisco Network Convergence System (NCS) 4000 Series could allow an authenticated, local attacker to cause a memory leak in the TL1 process. This vulnerabil… New CWE-789
 Memory Allocation with Excessive Size Value 		CVE-2022-20845 2024-11-16 01:15 2024-11-16 Show GitHub Exploit DB Packet Storm
339 7.4 HIGH
Network 		- - A vulnerability in the certificate validation of Cisco Expressway-C and Cisco TelePresence VCS could allow an unauthenticated, remote attacker to gain unauthorized access to sensitive data.… New CWE-295
Improper Certificate Validation  		CVE-2022-20814 2024-11-16 01:15 2024-11-16 Show GitHub Exploit DB Packet Storm
340 6.8 MEDIUM
Network 		- - A vulnerability in pairing process of Cisco TelePresence CE Software and RoomOS Software for Cisco Touch 10 Devices could allow an unauthenticated, remote attacker to impersonate a legitima… New CWE-325
 Missing Required Cryptographic Step 		CVE-2022-20793 2024-11-16 01:15 2024-11-16 Show GitHub Exploit DB Packet Storm