Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Sept. 20, 2024, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
191491	4.3	警告	WordPress.org	-	WordPress の wp-comments-post.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2404	2012-04-24 15:51	2012-04-21	Show	GitHub Exploit DB Packet Storm

191492	4.3	警告	WordPress.org	-	WordPress の wp-includes/formatting.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2403	2012-04-24 15:49	2012-04-21	Show	GitHub Exploit DB Packet Storm

191493	5.5	警告	WordPress.org	-	WordPress の wp-admin/plugins.php におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2402	2012-04-24 15:43	2012-04-21	Show	GitHub Exploit DB Packet Storm

191494	5	警告	WordPress.org Moxiecode Systems	-	WordPress および他の製品で使用される Plupload における同一生成元ポリシーを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2401	2012-04-24 15:35	2012-04-21	Show	GitHub Exploit DB Packet Storm

191495	10	危険	WordPress.org	-	WordPress の wp-includes/js/swfobject.js における詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2012-2400	2012-04-24 15:27	2012-04-21	Show	GitHub Exploit DB Packet Storm

191496	6.8	警告	ジャストシステム	-	複数のジャストシステム製品における DLL 読み込みに関する脆弱性	CWE-Other その他	CVE-2012-1242	2012-04-24 12:00	2012-04-24	Show	GitHub Exploit DB Packet Storm

191497	5	警告	CA Technologies	-	Windows 上で稼働する CA ARCserve Backup におけるサービス運用妨害 (サービスシャットダウン) の脆弱性	CWE-20 不適切な入力確認	CVE-2012-1662	2012-04-23 15:35	2012-03-20	Show	GitHub Exploit DB Packet Storm

191498	6.5	警告	Ryan Walberg	-	PHP Gift Registry の users.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-2236	2012-04-23 14:41	2012-04-20	Show	GitHub Exploit DB Packet Storm

191499	4.9	警告	Comodo	-	Windows 7 64-bit プラットフォーム上で稼働する Comodo Internet Security におけるサービス運用妨害 (DoS) の脆弱性	CWE-94 コード・インジェクション	CVE-2012-2273	2012-04-23 14:40	2012-04-20	Show	GitHub Exploit DB Packet Storm

191500	5	警告	DELL EMC (旧 EMC Corporation)	-	EMC Data Protection Advisor の DPA_Utilities ライブラリにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2012-0407	2012-04-23 14:37	2012-04-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Sept. 21, 2024, 5:56 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
61	-		-	-	Insufficient verification of data authenticity in the installer for Zoom Workplace VDI App for Windows may allow an authenticated user to conduct an escalation of privilege via local access. Update	-	CVE-2024-27244	2024-09-21 00:15	2024-05-16	Show	GitHub Exploit DB Packet Storm

62	-		-	-	Buffer overflow in some Zoom Workplace Apps and SDK’s may allow an authenticated user to conduct a denial of service via network access. Update	-	CVE-2024-27243	2024-09-21 00:15	2024-05-16	Show	GitHub Exploit DB Packet Storm

63	-		-	-	Improper privilege management in the installer for Zoom Desktop Client for macOS before version 5.17.10 may allow a privileged user to conduct an escalation of privilege via local access. Update	-	CVE-2024-27247	2024-09-21 00:15	2024-04-10	Show	GitHub Exploit DB Packet Storm

64	-		-	-	Improper privilege management in the installer for Zoom Desktop Client for Windows before version 5.17.10 may allow an authenticated user to conduct an escalation of privilege via local access. Update	-	CVE-2024-24694	2024-09-21 00:15	2024-04-10	Show	GitHub Exploit DB Packet Storm

65	5.5	MEDIUM Local	zoom	rooms	Improper access control in the installer for Zoom Rooms Client for Windows before version 5.17.5 may allow an authenticated user to conduct a denial of service via local access. Update	NVD-CWE-Other	CVE-2024-24693	2024-09-21 00:15	2024-03-14	Show	GitHub Exploit DB Packet Storm

66	-		-	-	Improper input validation in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows may allow an unauthenticated user to conduct an escalation of privilege via… Update	-	CVE-2024-24691	2024-09-21 00:15	2024-02-14	Show	GitHub Exploit DB Packet Storm

67	-		-	-	Improper input validation in some Zoom clients may allow an authenticated user to conduct a denial of service via network access. Update	-	CVE-2024-24690	2024-09-21 00:15	2024-02-14	Show	GitHub Exploit DB Packet Storm

68	7.8	HIGH Local	zoom	zoom video_software_development_kit meeting_software_development_kit virtual_desktop_infrastructure	Improper access control in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom SDKs for Windows before version 5.16.10 may allow an authenticated user to conduct an escalation of p… Update	NVD-CWE-noinfo	CVE-2023-49647	2024-09-21 00:15	2024-01-13	Show	GitHub Exploit DB Packet Storm

69	6.5	MEDIUM Network	zoom	zoom virtual_desktop_infrastructure meeting_software_development_kit video_software_development_kit	Improper authentication in some Zoom clients before version 5.16.5 may allow an authenticated user to conduct a denial of service via network access. Update	CWE-287 Improper Authentication	CVE-2023-49646	2024-09-21 00:15	2023-12-14	Show	GitHub Exploit DB Packet Storm

70	6.5	MEDIUM Network	zoom	meetings virtual_desktop_infrastructure zoom	Insufficient control flow management in some Zoom clients may allow an authenticated user to conduct an information disclosure via network access. Update	NVD-CWE-Other	CVE-2023-43588	2024-09-21 00:15	2023-11-15	Show	GitHub Exploit DB Packet Storm