Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":July 5, 2024, 12:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 191371 | 6.4 | 警告 | The PHP Group サイバートラスト株式会社 レッドハット |
- | PHP の Linear Congruential Generator における値を推測される脆弱性 |
CWE-310
暗号の問題 |
CVE-2010-1128 | 2010-12-15 15:26 | 2010-03-26 | Show | GitHub Exploit DB Packet Storm |
| 191372 | 6.9 | 警告 | GNU Project 日本電気 ターボリナックス サイバートラスト株式会社 レッドハット |
- | GNU Libtool の libltdl における権限昇格の脆弱性 |
CWE-DesignError
|
CVE-2009-3736 | 2010-12-15 15:26 | 2009-11-16 | Show | GitHub Exploit DB Packet Storm |
| 191373 | 6.4 | 警告 | アップル 日本電気 Fetchmail Project |
- | fetchmail における任意の SSL サーバになりすまされる脆弱性 |
CWE-310
暗号の問題 |
CVE-2009-2666 | 2010-12-15 15:25 | 2009-08-6 | Show | GitHub Exploit DB Packet Storm |
| 191374 | 4.3 | 警告 | アップル | - | Apple Safari の WebKit におけるロケーションバーの URL を偽装される脆弱性 |
CWE-Other
その他 |
CVE-2010-3810 | 2010-12-15 14:42 | 2010-11-22 | Show | GitHub Exploit DB Packet Storm |
| 191375 | 9.3 | 危険 | アップル | - | Apple Safari の WebKit における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-3809 | 2010-12-15 14:39 | 2010-11-22 | Show | GitHub Exploit DB Packet Storm |
| 191376 | 9.3 | 危険 | アップル | - | Apple Safari の WebKit における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-3808 | 2010-12-15 14:37 | 2010-11-22 | Show | GitHub Exploit DB Packet Storm |
| 191377 | 9.3 | 危険 | アップル | - | Apple Safari の WebKit 内にある JavaScript 実装における整数アンダーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2010-3805 | 2010-12-15 14:32 | 2010-11-22 | Show | GitHub Exploit DB Packet Storm |
| 191378 | 5 | 警告 | アップル | - | Apple Safari の WebKit 内にある JavaScript 実装におけるユーザを追跡可能な脆弱性 |
CWE-310
暗号の問題 |
CVE-2010-3804 | 2010-12-15 14:29 | 2010-11-22 | Show | GitHub Exploit DB Packet Storm |
| 191379 | 9.3 | 危険 | アップル | - | Apple Safari の WebKit における整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2010-3803 | 2010-12-15 14:25 | 2010-11-22 | Show | GitHub Exploit DB Packet Storm |
| 191380 | 2.6 | 注意 | マイクロソフト | - | Internet Explorer におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-3348 | 2010-12-15 14:08 | 2010-12-15 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:July 5, 2024, 10:20 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 2031 | 7.8 |
HIGH
Local |
microsoft |
windows_server_2008 windows_server_2012 windows_8.1 windows_7 windows_rt_8.1 windows_10_1809 windows_10_21h1 windows_server_2022 windows_10_20h2 windows_server_20h2 wind… |
Windows Print Spooler Elevation of Privilege Vulnerability Update |
NVD-CWE-noinfo
|
CVE-2022-22718 | 2024-07-3 02:04 | 2022-02-10 | Show | GitHub Exploit DB Packet Storm |
| 2032 | 7.0 |
HIGH
Local |
microsoft |
windows_server_2008 windows_server_2012 windows_8.1 windows_7 windows_rt_8.1 windows_10_1809 windows_10_1909 windows_10_21h1 windows_10_20h2 windows_11_21h2 windows_10_2… |
Windows User Profile Service Elevation of Privilege Vulnerability Update |
CWE-59
Link Following |
CVE-2022-21919 | 2024-07-3 02:03 | 2022-01-12 | Show | GitHub Exploit DB Packet Storm |
| 2033 | 7.8 |
HIGH
Local |
microsoft |
windows_10_21h1 windows_server_2022 windows_10_2004 windows_server_2004 windows_10_20h2 windows_server_20h2 windows_11_21h2 |
Win32k Elevation of Privilege Vulnerability Update |
NVD-CWE-noinfo
|
CVE-2021-41357 | 2024-07-3 02:03 | 2021-10-13 | Show | GitHub Exploit DB Packet Storm |
| 2034 | 7.8 |
HIGH
Local |
microsoft |
windows_10_1809 windows_10_1909 windows_10_21h1 windows_server_2022 windows_10_2004 windows_server_2004 windows_10_20h2 windows_server_20h2 windows_11_21h2 windows_server_2… |
Win32k Elevation of Privilege Vulnerability Update |
NVD-CWE-noinfo
|
CVE-2021-40450 | 2024-07-3 02:03 | 2021-10-13 | Show | GitHub Exploit DB Packet Storm |
| 2035 | 7.8 |
HIGH
Local |
apple |
macos ipad_os iphone_os tvos watchos ipados |
A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 15.0.2 and iPadOS 15.0.2, macOS Monterey 12.0.1, iOS 14.8.1 and iPadOS 14.8.1, tvOS 15.1, watchOS 8.1… Update |
CWE-787
Out-of-bounds Write |
CVE-2021-30883 | 2024-07-3 02:03 | 2021-08-25 | Show | GitHub Exploit DB Packet Storm |
| 2036 | 8.8 |
HIGH
Network |
apple fedoraproject webkitgtk |
mac_os_x ipados iphone_os tvos watchos macos fedora webkitgtk |
A type confusion issue was addressed with improved state handling. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, tvOS 14.4, watchOS 7.… Update |
CWE-843
Type Confusion |
CVE-2021-1789 | 2024-07-3 02:02 | 2021-04-3 | Show | GitHub Exploit DB Packet Storm |
| 2037 | 10.0 |
CRITICAL
Network
mozilla
|
firefox_esr |
firefox thunderbird
Insufficient vetting of parameters passed with the Prompt:Open IPC message between child and parent processes can result in the non-sandboxed parent process opening web content chosen by a compromise…
Update
|
CWE-20
|
Improper Input Validation
CVE-2019-11708
|
2024-07-3 02:02 |
2019-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 2038 | 6.5 |
MEDIUM
Network |
chrome | Object lifetime issue in Blink in Google Chrome prior to 72.0.3626.121 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. Update |
CWE-416
Use After Free |
CVE-2019-5786 | 2024-07-3 02:01 | 2019-06-28 | Show | GitHub Exploit DB Packet Storm | |
| 2039 | 9.8 |
CRITICAL
Network
whatsapp
|
whatsapp
|
A buffer overflow vulnerability in WhatsApp VOIP stack allowed remote code execution via specially crafted series of RTCP packets sent to a target phone number. The issue affects WhatsApp for Android…
Update
|
CWE-119
|
Incorrect Access of Indexable Resource ('Range Error')
CVE-2019-3568
|
2024-07-3 02:01 |
2019-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 2040 | 9.9 |
CRITICAL
Network |
jenkins redhat |
script_security openshift_container_platform |
A sandbox bypass vulnerability exists in Jenkins Script Security Plugin 1.53 and earlier in src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/GroovySandbox.java, src/main/java/org/jen… Update |
NVD-CWE-noinfo
|
CVE-2019-1003029 | 2024-07-3 01:58 | 2019-03-9 | Show | GitHub Exploit DB Packet Storm |