Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Nov. 19, 2024, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
189221	4	警告	Moodle	-	Moodle における moodle/site:readallmessages 機能の制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2354	2012-07-24 15:50	2012-07-21	Show	GitHub Exploit DB Packet Storm

189222	4	警告	Moodle	-	Moodle における非表示フィールドから重要なユーザ情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-2353	2012-07-24 15:46	2012-07-21	Show	GitHub Exploit DB Packet Storm

189223	7.5	危険	Nullsoft	-	Winamp の bmp.w5s におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-4045	2012-07-24 15:38	2012-06-28	Show	GitHub Exploit DB Packet Storm

189224	5	警告	WordPress.org	-	WordPress における重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3385	2012-07-24 15:38	2012-06-27	Show	GitHub Exploit DB Packet Storm

189225	6.8	警告	WordPress.org	-	WordPress のカスタマイザにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-3384	2012-07-24 15:37	2012-06-27	Show	GitHub Exploit DB Packet Storm

189226	2.6	注意	WordPress.org	-	WordPress におけるクロスサイトスクリプティングの脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3383	2012-07-24 15:36	2012-06-27	Show	GitHub Exploit DB Packet Storm

189227	2.6	注意	フェンリル株式会社	-	Sleipnir Mobile for Android における WebView クラスに関する脆弱性	CWE-Other その他	CVE-2012-2646	2012-07-24 12:02	2012-07-24	Show	GitHub Exploit DB Packet Storm

189228	4.3	警告	Mozilla Foundation	-	複数の Mozilla 製品におけるアドレスバーを偽造される脆弱性	CWE-Other その他	CVE-2012-0479	2012-07-23 17:58	2012-04-24	Show	GitHub Exploit DB Packet Storm

189229	9.3	危険	Mozilla Foundation	-	複数の Mozilla 製品の texImage2D の実装における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-0478	2012-07-23 17:57	2012-04-24	Show	GitHub Exploit DB Packet Storm

189230	4.3	警告	Mozilla Foundation	-	複数の Mozilla 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0477	2012-07-23 17:57	2012-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Nov. 19, 2024, 4:16 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
701	-		-	-	VMware Avi Load Balancer contains an information disclosure vulnerability. A malicious actor with access to the system logs can view cloud connection credentials in plaintext.	-	CVE-2024-22266	2024-11-16 05:35	2024-05-8	Show	GitHub Exploit DB Packet Storm

702	-		-	-	netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /include/authrp.php.	-	CVE-2024-30872	2024-11-16 05:35	2024-04-1	Show	GitHub Exploit DB Packet Storm

703	-		-	-	An issue in uverif v.2.0 allows a remote attacker to obtain sensitive information.	-	CVE-2024-26559	2024-11-16 05:35	2024-02-29	Show	GitHub Exploit DB Packet Storm

704	6.5	MEDIUM Local	-	-	A vulnerability was found in Golang FIPS OpenSSL. This flaw allows a malicious user to randomly cause an uninitialized buffer length variable with a zeroed buffer to be returned in FIPS mode. It may …	CWE-457 Use of Uninitialized Variable	CVE-2024-9355	2024-11-16 05:15	2024-10-2	Show	GitHub Exploit DB Packet Storm

705	7.5	HIGH Network	sunmochina	enterprise_management_system	Incorrect access control in the component /servlet/SnoopServlet of Shenzhou News Union Enterprise Management System v5.0 through v18.8 allows attackers to access sensitive information regarding the s…	NVD-CWE-Other	CVE-2024-44760	2024-11-16 05:15	2024-08-29	Show	GitHub Exploit DB Packet Storm

706	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: octeon_ep: Add SKB allocation failures handling in __octep_oq_process_rx() build_skb() returns NULL in case of a memory allocatio…	CWE-476 NULL Pointer Dereference	CVE-2024-50145	2024-11-16 04:50	2024-11-7	Show	GitHub Exploit DB Packet Storm

707	-		-	-	Incorrect access control in the account management function of web interface in Aten PE6208 2.3.228 and 2.4.232 allows remote authenticated users to alter user and administrator accounts credentials …	-	CVE-2023-43842	2024-11-16 04:35	2024-05-29	Show	GitHub Exploit DB Packet Storm

708	7.8	HIGH Local	amd	ryzen_ai_software	Improper input validation in the NPU driver could allow an attacker to supply a specially crafted pointer potentially leading to arbitrary code execution.	NVD-CWE-noinfo	CVE-2024-21974	2024-11-16 04:20	2024-11-13	Show	GitHub Exploit DB Packet Storm

709	5.5	MEDIUM Local	amd	ryzen_ai_software	Improper validation of user input in the NPU driver could allow an attacker to provide a buffer with unexpected size, potentially leading to system crash.	NVD-CWE-noinfo	CVE-2024-21949	2024-11-16 04:20	2024-11-13	Show	GitHub Exploit DB Packet Storm

710	7.8	HIGH Local	amd	ryzen_ai_software	Improper input validation in the NPU driver could allow an attacker to supply a specially crafted pointer potentially leading to arbitrary code execution.	NVD-CWE-noinfo	CVE-2024-21975	2024-11-16 04:15	2024-11-13	Show	GitHub Exploit DB Packet Storm