Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Oct. 28, 2024, 6:04 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
189341 6.8 警告 grayscalecms - BandSite CMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-7058 2012-06-26 16:10 2009-08-24 Show GitHub Exploit DB Packet Storm
189342 4.3 警告 grayscalecms - BandSite CMS の merchandise.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-7057 2012-06-26 16:10 2009-08-24 Show GitHub Exploit DB Packet Storm
189343 5 警告 grayscalecms - BandSite CMS におけるデータベースのコピーを取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7056 2012-06-26 16:10 2009-08-24 Show GitHub Exploit DB Packet Storm
189344 7.5 危険 aj square - AJ Square AJ Article における管理者機能へアクセスされる脆弱性 CWE-287
不適切な認証 		CVE-2008-7051 2012-06-26 16:10 2009-08-24 Show GitHub Exploit DB Packet Storm
189345 6.4 警告 aj square - AJPoll における新たにアンケートを作成される脆弱性 CWE-287
不適切な認証 		CVE-2008-7046 2012-06-26 16:10 2009-08-24 Show GitHub Exploit DB Packet Storm
189346 6.4 警告 aj square - AJPoll Database における得票をリセットされるの脆弱性 CWE-287
不適切な認証 		CVE-2008-7045 2012-06-26 16:10 2009-08-24 Show GitHub Exploit DB Packet Storm
189347 7.5 危険 DNN - DotNetNuke における特権機能へアクセスされる脆弱性 CWE-20
不適切な入力確認 		CVE-2008-7102 2012-06-26 16:10 2008-09-10 Show GitHub Exploit DB Packet Storm
189348 5 警告 DNN - DotNetNuke における重要な情報 (ポータル番号) を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2008-7101 2012-06-26 16:10 2008-09-9 Show GitHub Exploit DB Packet Storm
189349 6.5 警告 DNN - DotNetNuke における権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2008-7100 2012-06-26 16:10 2008-09-9 Show GitHub Exploit DB Packet Storm
189350 7.5 危険 aj square - AJPoll Database の admin/include/newpoll.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-7044 2012-06-26 16:10 2009-08-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Oct. 29, 2024, 5:57 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1 5.5 MEDIUM
Local 		google android In gsc_gsa_rescue of gsc_gsa.c, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with no additional execution privileges needed… New CWE-125
Out-of-bounds Read 		CVE-2024-47026 2024-10-29 02:59 2024-10-25 Show GitHub Exploit DB Packet Storm
2 5.5 MEDIUM
Local 		google android In ppmp_protect_buf of drm_fw.c, there is a possible information disclosure due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges n… New NVD-CWE-noinfo
CVE-2024-47025 2024-10-29 02:59 2024-10-25 Show GitHub Exploit DB Packet Storm
3 4.4 MEDIUM
Local 		google android In ffu_flash_pack of ffu.c, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure with System execution privileges needed. User interactio… New CWE-190
 Integer Overflow or Wraparound 		CVE-2024-47028 2024-10-29 02:58 2024-10-25 Show GitHub Exploit DB Packet Storm
4 7.8 HIGH
Local 		google android In sm_mem_compat_get_vmm_obj of lib/sm/shared_mem.c, there is a possible arbitrary physical memory access due to improper input validation. This could lead to local escalation of privilege with no ad… New NVD-CWE-noinfo
CVE-2024-47027 2024-10-29 02:58 2024-10-25 Show GitHub Exploit DB Packet Storm
5 7.8 HIGH
Local 		google android In lwis_allocator_free of lwis_allocator.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges nee… New CWE-416
 Use After Free 		CVE-2024-47033 2024-10-29 02:57 2024-10-25 Show GitHub Exploit DB Packet Storm
6 5.5 MEDIUM
Local 		google android In TrustySharedMemoryManager::GetSharedMemory of ondevice/trusty/trusty_shared_memory_manager.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local inf… New CWE-125
Out-of-bounds Read 		CVE-2024-47029 2024-10-29 02:57 2024-10-25 Show GitHub Exploit DB Packet Storm
7 5.5 MEDIUM
Local 		google android there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed fo… New CWE-125
Out-of-bounds Read 		CVE-2024-47034 2024-10-29 02:56 2024-10-25 Show GitHub Exploit DB Packet Storm
8 7.8 HIGH
Local 		google android In ufshc_scsi_cmd of ufs.c, there is a possible stack variable use after free due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed.… New CWE-416
 Use After Free 		CVE-2024-47017 2024-10-29 02:56 2024-10-25 Show GitHub Exploit DB Packet Storm
9 7.8 HIGH
Local 		intel virtual_raid_on_cpu Path transversal in some Intel(R) VROC software before version 8.0.8.1001 may allow an authenticated user to potentially enable escalation of privilege via local access. Update CWE-22
Path Traversal 		CVE-2023-35003 2024-10-29 02:55 2024-02-14 Show GitHub Exploit DB Packet Storm
10 7.8 HIGH
Local 		intel virtual_raid_on_cpu Incorrect default permissions in some Intel(R) VROC software before version 8.0.8.1001 may allow an authenticated user to potentially enable escalation of privilege via local access. Update CWE-276
Incorrect Default Permissions  		CVE-2023-34315 2024-10-29 02:55 2024-02-14 Show GitHub Exploit DB Packet Storm