Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Oct. 6, 2024, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
192891	7.8	危険	シスコシステムズ	-	Cisco IOS の Smart Install 機能におけるサービス運用妨害 (デバイスリロード) の脆弱性	CWE-20 不適切な入力確認	CVE-2012-0385	2012-04-2 15:36	2012-03-28	Show	GitHub Exploit DB Packet Storm

192892	8.5	危険	シスコシステムズ	-	Cisco IOS および IOS XE におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-0384	2012-04-2 15:34	2012-03-28	Show	GitHub Exploit DB Packet Storm

192893	7.8	危険	シスコシステムズ	-	Cisco IOS の NAT 機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-0383	2012-04-2 15:20	2012-03-28	Show	GitHub Exploit DB Packet Storm

192894	7.1	危険	シスコシステムズ	-	Cisco IOS および IOS XE におけるサービス運用妨害 (デバイスリロード) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-0382	2012-04-2 14:05	2012-03-28	Show	GitHub Exploit DB Packet Storm

192895	7.8	危険	シスコシステムズ	-	Cisco IOS および IOS XE におけるサービス運用妨害 (デバイスリロード) の脆弱性	CWE-310 暗号の問題	CVE-2012-0381	2012-04-2 13:44	2012-03-28	Show	GitHub Exploit DB Packet Storm

192896	6.2	警告	マイクロソフト	-	Microsoft Windows の Shell32.dll おける権限昇格の脆弱性	CWE-Other その他	CVE-2007-6753	2012-03-30 15:21	2012-03-28	Show	GitHub Exploit DB Packet Storm

192897	5	警告	Apache Software Foundation	-	Apache Traffic Server にバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-0256	2012-03-29 17:38	2012-03-23	Show	GitHub Exploit DB Packet Storm

192898	3.3	注意	GoLismero	-	GoLismero の libs/updater.py における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2012-0054	2012-03-29 17:31	2012-03-19	Show	GitHub Exploit DB Packet Storm

192899	7.5	危険	Inspire IRCd	-	InspIRCd にメモリ破損の脆弱性	CWE-119 バッファエラー	CVE-2012-1836	2012-03-29 16:29	2012-03-21	Show	GitHub Exploit DB Packet Storm

192900	6.4	警告	Opera Software ASA	-	Opera におけるアドレスフィールドを偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2012-1927	2012-03-29 16:23	2012-03-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Oct. 7, 2024, 5:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
259271	-	otrs	otrs	The AgentTicketForward feature in Open Ticket Request System (OTRS) before 2.4.7 does not properly remove inline images from HTML e-mail messages, which allows remote attackers to obtain potentially …	CWE-20 Improper Input Validation	CVE-2010-4766	2011-03-22 13:00	2011-03-19	Show	GitHub Exploit DB Packet Storm

259272	-	otrs	otrs	Open Ticket Request System (OTRS) before 2.3.6 does not properly handle e-mail messages in which the From line contains UTF-8 characters associated with diacritical marks and an invalid charset, whic…	CWE-20 Improper Input Validation	CVE-2010-4767	2011-03-22 13:00	2011-03-19	Show	GitHub Exploit DB Packet Storm

259273	-	otrs	otrs	Open Ticket Request System (OTRS) before 2.3.5 does not properly disable hidden permissions, which allows remote authenticated users to bypass intended queue access restrictions in opportunistic circ…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2010-4768	2011-03-22 13:00	2011-03-19	Show	GitHub Exploit DB Packet Storm

259274	-	otrs	otrs	Open Ticket Request System (OTRS) before 2.4.4 grants ticket access on the basis of single-digit substrings of the CustomerID value, which allows remote authenticated users to bypass intended access …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2009-5055	2011-03-22 13:00	2011-03-19	Show	GitHub Exploit DB Packet Storm

259275	-	otrs	otrs	Open Ticket Request System (OTRS) before 2.4.0-beta2 does not properly enforce the move_into permission setting for a queue, which allows remote authenticated users to bypass intended access restrict…	CWE-20 Improper Input Validation	CVE-2009-5056	2011-03-22 13:00	2011-03-19	Show	GitHub Exploit DB Packet Storm

259276	-	otrs	otrs	The S/MIME feature in Open Ticket Request System (OTRS) before 2.3.4 does not configure the RANDFILE and HOME environment variables for OpenSSL, which might make it easier for remote attackers to dec…	CWE-310 Cryptographic Issues	CVE-2009-5057	2011-03-22 13:00	2011-03-19	Show	GitHub Exploit DB Packet Storm

259277	-	otrs	otrs	Multiple cross-site scripting (XSS) vulnerabilities in Open Ticket Request System (OTRS) before 2.3.3 allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) AgentTic…	CWE-79 Cross-site Scripting	CVE-2008-7275	2011-03-22 13:00	2011-03-19	Show	GitHub Exploit DB Packet Storm

259278	-	otrs	otrs	Kernel/System/Web/Request.pm in Open Ticket Request System (OTRS) before 2.3.2 creates a directory under /tmp/ with 1274 permissions, which might allow local users to bypass intended access restricti…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2008-7276	2011-03-22 13:00	2011-03-19	Show	GitHub Exploit DB Packet Storm

259279	-	otrs	otrs	Open Ticket Request System (OTRS) before 2.3.0-beta4 checks for the rw permission, instead of the configured merge permission, during authorization of merge operations, which might allow remote authe…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2008-7277	2011-03-22 13:00	2011-03-19	Show	GitHub Exploit DB Packet Storm

259280	-	otrs	otrs	The S/MIME feature in Open Ticket Request System (OTRS) before 2.2.5, and 2.3.x before 2.3.0-beta1, does not properly configure the RANDFILE environment variable for OpenSSL, which might make it easi…	CWE-20 Improper Input Validation	CVE-2008-7278	2011-03-22 13:00	2011-03-19	Show	GitHub Exploit DB Packet Storm