Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Oct. 6, 2024, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
192061 7.8 危険 Linux - Linux Kernel の rose_parse_ccitt 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-4913 2012-06-25 16:24 2012-06-21 Show GitHub Exploit DB Packet Storm
192062 7.5 危険 Linux - Linux Kernel の rose_parse_national 関数におけるサービス運用妨害 (ヒープメモリ破損) の脆弱性 CWE-Other
その他 		CVE-2011-1493 2012-06-25 16:15 2012-06-21 Show GitHub Exploit DB Packet Storm
192063 4.7 警告 Linux - Linux Kernel の inotify サブシステムにおけるメモリ二重解放の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1479 2012-06-25 15:49 2012-06-21 Show GitHub Exploit DB Packet Storm
192064 4.6 警告 Linux - Linux Kernel の sound/oss/opl3.c におけるサービス運用妨害 (ヒープメモリ破損) の脆弱性 CWE-Other
その他 		CVE-2011-1477 2012-06-25 15:46 2012-06-21 Show GitHub Exploit DB Packet Storm
192065 4 警告 Linux - Linux Kernel の Open Sound System サブシステムにおける整数アンダーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-1476 2012-06-25 15:41 2012-06-21 Show GitHub Exploit DB Packet Storm
192066 2.1 注意 Linux - Linux Kernel の drivers/char/tpm/tpm.c における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-1160 2012-06-25 15:37 2012-06-21 Show GitHub Exploit DB Packet Storm
192067 4.9 警告 Linux - Linux Kernel の Reliable Datagram Sockets サブシステムおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2011-1023 2012-06-25 14:17 2012-06-21 Show GitHub Exploit DB Packet Storm
192068 3.6 注意 Linux - Linux Kernel の drivers/acpi/debugfs.c おける任意のカーネルメモリロケーションを変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1021 2012-06-25 14:15 2012-06-21 Show GitHub Exploit DB Packet Storm
192069 4.7 警告 Linux - Linux Kernel の br_multicast_add_group 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-16
環境設定 		CVE-2011-0716 2012-06-25 14:14 2012-06-21 Show GitHub Exploit DB Packet Storm
192070 1.9 注意 Linux - Linux Kernel の ima_lsm_rule_init 関数における IMA ルールを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-0006 2012-06-25 14:03 2012-06-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Oct. 6, 2024, 4:10 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1031 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/xe/client: add missing bo locking in show_meminfo() bo_meminfo() wants to inspect bo state like tt and the ttm resource, howe… CWE-667
 Improper Locking 		CVE-2024-46866 2024-10-2 02:09 2024-09-27 Show GitHub Exploit DB Packet Storm
1032 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/xe/client: fix deadlock in show_meminfo() There is a real deadlock as well as sleeping in atomic() bug in here, if the bo put… CWE-667
 Improper Locking 		CVE-2024-46867 2024-10-2 02:09 2024-09-27 Show GitHub Exploit DB Packet Storm
1033 2.7 LOW
Network 		formtools form_tools A vulnerability, which was classified as problematic, was found in formtools.org Form Tools 3.1.1. Affected is the function curl_exec of the file /admin/forms/option_lists/edit.php of the component I… NVD-CWE-Other
CVE-2024-6937 2024-10-2 01:51 2024-07-21 Show GitHub Exploit DB Packet Storm
1034 6.5 MEDIUM
Network 		devolutions devolutions_server Authorization bypass in the PAM access request approval mechanism in Devolutions Server 2024.2.10 and earlier allows authenticated users with permissions to approve their own requests, bypassing inte… CWE-863
 Incorrect Authorization 		CVE-2024-6512 2024-10-2 01:36 2024-09-25 Show GitHub Exploit DB Packet Storm
1035 6.1 MEDIUM
Network 		collne welcart The Welcart e-Commerce WordPress plugin before 2.9.5 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used ag… CWE-79
Cross-site Scripting 		CVE-2023-5951 2024-10-2 01:35 2023-12-5 Show GitHub Exploit DB Packet Storm
1036 5.4 MEDIUM
Network 		uploading_svg\
_webp_and_ico_files_project 		uploading_svg\
_webp_and_ico_files 		The Uploading SVG, WEBP and ICO files WordPress plugin through 1.2.1 does not sanitise uploaded SVG files, which could allow users with a role as low as Author to upload a malicious SVG containing XS… CWE-79
Cross-site Scripting 		CVE-2023-4460 2024-10-2 01:35 2023-12-5 Show GitHub Exploit DB Packet Storm
1037 5.3 MEDIUM
Network 		microsoft windows_server_2012
windows_server_2016
windows_server_2019
windows_server_2022 		DHCP Server Service Information Disclosure Vulnerability CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2023-29355 2024-10-2 01:35 2023-06-14 Show GitHub Exploit DB Packet Storm
1038 5.3 MEDIUM
Network 		atlassian confluence_data_center
confluence_server 		Affected versions of Atlassian Confluence Server and Data Center allow anonymous remote attackers to view the names of attachments and labels in a private Confluence space. This occurs via an Informa… NVD-CWE-noinfo
CVE-2023-22503 2024-10-2 01:35 2023-05-2 Show GitHub Exploit DB Packet Storm
1039 5.4 MEDIUM
Network 		strangerstudios paid_memberships_pro The Paid Memberships Pro WordPress plugin before 2.9.9 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as lo… CWE-79
Cross-site Scripting 		CVE-2022-4830 2024-10-2 01:35 2023-02-14 Show GitHub Exploit DB Packet Storm
1040 5.4 MEDIUM
Network 		3dflipbook 3d_flipbook The 3D FlipBook WordPress plugin through 1.13.2 does not validate or escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as Con… CWE-79
Cross-site Scripting 		CVE-2022-4453 2024-10-2 01:35 2023-01-17 Show GitHub Exploit DB Packet Storm