Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Nov. 16, 2024, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
192811	10	危険	bug software	-	BugHotel Reservation System の main.php における管理アクセス権を取得される脆弱性	CWE-287 不適切な認証	CVE-2007-6011	2012-06-26 15:54	2007-11-15	Show	GitHub Exploit DB Packet Storm

192812	9.3	危険	ACD Systems	-	ACD 製品におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-6009	2012-06-26 15:54	2007-11-15	Show	GitHub Exploit DB Packet Storm

192813	9.3	危険	Autonomy	-	Autonomy の emlsr.dll におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-6008	2012-06-26 15:54	2007-11-15	Show	GitHub Exploit DB Packet Storm

192814	6.8	警告	ACD Systems	-	ACD ACDSee Photo Manager の ID_PSP.apl のプラグインにおける整数オーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-6007	2012-06-26 15:54	2007-11-15	Show	GitHub Exploit DB Packet Storm

192815	4.3	警告	bandersnatch	-	Bandersnatch の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6001	2012-06-26 15:54	2007-11-15	Show	GitHub Exploit DB Packet Storm

192816	7.5	危険	datecomm	-	datecomm Social Networking Script の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-5992	2012-06-26 15:54	2007-11-15	Show	GitHub Exploit DB Packet Storm

192817	7.5	危険	exoscripts	-	ExoPHPdesk の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-5991	2012-06-26 15:54	2007-11-15	Show	GitHub Exploit DB Packet Storm

192818	4.3	警告	exoscripts	-	ExoPHPdesk におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5990	2012-06-26 15:54	2007-11-15	Show	GitHub Exploit DB Packet Storm

192819	7.5	危険	bti-tracker	-	BtiTracker の blocks/shoutbox_block.php における任意ユーザとしてシャウトボックスエントリを投稿される脆弱性	CWE-255 CWE-264 CWE-287	CVE-2007-5988	2012-06-26 15:54	2007-11-14	Show	GitHub Exploit DB Packet Storm

192820	6.8	警告	bti-tracker	-	BtiTracker の details.php における保護メカニズムを回避される脆弱性	CWE-264 CWE-287	CVE-2007-5987	2012-06-26 15:54	2007-11-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Nov. 17, 2024, 5:17 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2431	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: mm/khugepaged: invoke MMU notifiers in shmem/file collapse paths Any codepath that zaps page table entries must invoke MMU notifi…	CWE-416 Use After Free	CVE-2022-48991	2024-11-8 04:36	2024-10-22	Show	GitHub Exploit DB Packet Storm

2432	4.7	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net: mana: Fix race on per-CQ variable napi work_done After calling napi_complete_done(), the NAPIF_STATE_SCHED bit may be cleare…	NVD-CWE-noinfo	CVE-2022-48985	2024-11-8 04:35	2024-10-22	Show	GitHub Exploit DB Packet Storm

2433	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: do_sys_name_to_handle(): use kzalloc() to fix kernel-infoleak syzbot identified a kernel information leak vulnerability in do_sys…	CWE-908 Use of Uninitialized Resource	CVE-2024-26901	2024-11-8 04:35	2024-04-17	Show	GitHub Exploit DB Packet Storm

2434	-		-	-	In the Linux kernel, the following vulnerability has been resolved: iommufd: Fix protection fault in iommufd_test_syz_conv_iova Syzkaller reported the following bug: general protection fault, pr…	-	CVE-2024-26785	2024-11-8 04:35	2024-04-4	Show	GitHub Exploit DB Packet Storm

2435	-		-	-	In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_ct: skip expectations for confirmed conntrack nft_ct_expect_obj_eval() calls nf_ct_ext_add() for a confirmed connt…	-	CVE-2021-47129	2024-11-8 04:35	2024-03-16	Show	GitHub Exploit DB Packet Storm

2436	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: bpf: support non-r10 register spill/fill to/from stack in precision tracking Use instruction (jump) history to record instruction…	CWE-476 NULL Pointer Dereference	CVE-2023-52920	2024-11-8 04:31	2024-11-5	Show	GitHub Exploit DB Packet Storm

2437	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ext4: filesystems without casefold feature cannot be mounted with siphash When mounting the ext4 filesystem, if the default hash …	NVD-CWE-noinfo	CVE-2024-49968	2024-11-8 04:28	2024-10-22	Show	GitHub Exploit DB Packet Storm

2438	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: update DML2 policy EnhancedPrefetchScheduleAccelerationFinal DCN35 [WHY & HOW] Mismatch in DCN35 DML2 cause bw v…	NVD-CWE-noinfo	CVE-2024-50004	2024-11-8 04:27	2024-10-22	Show	GitHub Exploit DB Packet Storm

2439	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: mac802154: Fix potential RCU dereference issue in mac802154_scan_worker In the `mac802154_scan_worker` function, the `scan_req->t…	CWE-416 Use After Free	CVE-2024-50005	2024-11-8 04:27	2024-10-22	Show	GitHub Exploit DB Packet Storm

2440	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: media: i2c: ar0521: Use cansleep version of gpiod_set_value() If we use GPIO reset from I2C port expander, we must use *_cansleep…	NVD-CWE-noinfo	CVE-2024-49961	2024-11-8 04:22	2024-10-22	Show	GitHub Exploit DB Packet Storm