Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Nov. 5, 2024, 6:02 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
191511	4.3	警告	Flyspray	-	Flyspray におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-1165	2012-06-26 15:55	2008-02-24	Show	GitHub Exploit DB Packet Storm

191512	6.8	警告	OpenBSD NetBSD	-	OpenBSD で使用される PRNG アレゴリズムにおける重要な値を推測される脆弱性	CWE-DesignError	CVE-2008-1148	2012-06-26 15:55	2008-03-4	Show	GitHub Exploit DB Packet Storm

191513	6.8	警告	OpenBSD アップル FreeBSD dragonflybsd	-	OpenBSD で使用される PRNG アレゴリズムにおける重要な値を推測される脆弱性	CWE-DesignError	CVE-2008-1147	2012-06-26 15:55	2008-03-4	Show	GitHub Exploit DB Packet Storm

191514	6.8	警告	OpenBSD	-	OpenBSD で使用される PRNG アレゴリズムにおける重要な値を推測される脆弱性	CWE-DesignError	CVE-2008-1146	2012-06-26 15:55	2008-03-4	Show	GitHub Exploit DB Packet Storm

191515	3.7	注意	RXVT project	-	rxvt における X11 接続をハイジャックされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-1142	2012-06-26 15:55	2008-04-7	Show	GitHub Exploit DB Packet Storm

191516	4.9	警告	deslock	-	DESlock+ の DLMFENC.sys におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-1141	2012-06-26 15:55	2008-03-4	Show	GitHub Exploit DB Packet Storm

191517	7.2	危険	deslock	-	DESlock+ の DLMFDISK.sys における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-1140	2012-06-26 15:55	2008-03-4	Show	GitHub Exploit DB Packet Storm

191518	7.2	危険	deslock	-	DESlock+ における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-1139	2012-06-26 15:55	2008-03-4	Show	GitHub Exploit DB Packet Storm

191519	4.9	警告	deslock	-	DESlock+ の DLMFENC.sys におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2008-1138	2012-06-26 15:55	2008-03-4	Show	GitHub Exploit DB Packet Storm

191520	6	警告	crytek	-	Crysis の cryactio 関数におけるフォーマットストリングの脆弱性	CWE-134 書式文字列の問題	CVE-2008-1127	2012-06-26 15:55	2008-03-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Nov. 5, 2024, 4:16 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1941	3.3	LOW Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: wifi: virt_wifi: avoid reporting connection success with wrong SSID When user issues a connection with a different SSID than the …	NVD-CWE-noinfo	CVE-2024-43841	2024-10-30 01:27	2024-08-17	Show	GitHub Exploit DB Packet Storm

1942	6.1	MEDIUM Network	sunshinephotocart	sunshine_photo_cart	URL Redirection to Untrusted Site ('Open Redirect') vulnerability in WP Sunshine Sunshine Photo Cart.This issue affects Sunshine Photo Cart: from n/a through 3.2.9.	CWE-601 Open Redirect	CVE-2024-50463	2024-10-30 01:25	2024-10-28	Show	GitHub Exploit DB Packet Storm

1943	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: bpf, arm64: Fix trampoline for BPF_TRAMP_F_CALL_ORIG When BPF_TRAMP_F_CALL_ORIG is set, the trampoline calls __bpf_tramp_enter() …	NVD-CWE-noinfo	CVE-2024-43840	2024-10-30 01:25	2024-08-17	Show	GitHub Exploit DB Packet Storm

1944	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: bpf: fix overflow check in adjust_jmp_off() adjust_jmp_off() incorrectly used the insn->imm field for all overflow check, which i…	CWE-190 Integer Overflow or Wraparound	CVE-2024-43838	2024-10-30 01:24	2024-08-17	Show	GitHub Exploit DB Packet Storm

1945	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ext4: drop ppath from ext4_ext_replay_update_ex() to avoid double-free When calling ext4_force_split_extent_at() in ext4_ext_repl…	CWE-415 Double Free	CVE-2024-49983	2024-10-30 01:23	2024-10-22	Show	GitHub Exploit DB Packet Storm

1946	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Prevent out of bounds access in performance query extensions Check that the number of perfmons userspace is passing in t…	CWE-787 Out-of-bounds Write	CVE-2024-49984	2024-10-30 01:22	2024-10-22	Show	GitHub Exploit DB Packet Storm

1947	7.5	HIGH Network	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net: ethernet: lantiq_etop: fix memory disclosure When applying padding, the buffer is not zeroed, which results in memory disclo…	CWE-212 Improper Removal of Sensitive Information Before Storage or Transfer	CVE-2024-49997	2024-10-30 01:20	2024-10-22	Show	GitHub Exploit DB Packet Storm

1948	5.5	MEDIUM Local	intel	oneapi	Improper access control in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.2 may allow an authenticated user to potentially enable denial of service via local access.	NVD-CWE-noinfo	CVE-2023-28715	2024-10-30 01:16	2024-02-14	Show	GitHub Exploit DB Packet Storm

1949	6.1	MEDIUM Network	rollupjs	rollup	Rollup is a module bundler for JavaScript. Versions prior to 2.79.2, 3.29.5, and 4.22.4 are susceptible to a DOM Clobbering vulnerability when bundling scripts with properties from `import.meta` (e.g…	CWE-79 Cross-site Scripting	CVE-2024-47068	2024-10-30 01:15	2024-09-24	Show	GitHub Exploit DB Packet Storm

1950	7.8	HIGH Local	intel	software_development_kit_for_opencl	Uncontrolled search path in some Intel(R) SDK for OpenCL(TM) Applications software may allow an authenticated user to potentially enable escalation of privilege via local access.	CWE-427 Uncontrolled Search Path Element	CVE-2023-36493	2024-10-30 01:15	2024-02-14	Show	GitHub Exploit DB Packet Storm