Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Nov. 20, 2024, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
192921	5	警告	マイクロソフト AfterLogic	-	ASP.NET 用の AfterLogic MailBee WebMail Pro の download_view_attachment.aspx におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-0333	2012-06-26 15:54	2008-01-17	Show	GitHub Exploit DB Packet Storm

192922	5	警告	aria	-	aria の arias/help/effect.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-0332	2012-06-26 15:54	2008-01-17	Show	GitHub Exploit DB Packet Storm

192923	7.8	危険	funkwerk	-	Funkwerk System Software におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-0331	2012-06-26 15:54	2008-01-17	Show	GitHub Exploit DB Packet Storm

192924	7.5	危険	fascript	-	FaScript FaName の page.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0328	2012-06-26 15:54	2008-01-17	Show	GitHub Exploit DB Packet Storm

192925	7.5	危険	fascript	-	FaScript FaMp3 の show.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0327	2012-06-26 15:54	2008-01-17	Show	GitHub Exploit DB Packet Storm

192926	7.5	危険	fascript	-	FaScript FaPersianHack の class/show.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0326	2012-06-26 15:54	2008-01-17	Show	GitHub Exploit DB Packet Storm

192927	7.5	危険	fascript	-	FaScript FaPersian Petition の show.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0325	2012-06-26 15:54	2008-01-17	Show	GitHub Exploit DB Packet Storm

192928	9.3	危険	Borland Software Corporation	-	Borland CaliberRM 2006 の PGMWebHandler::parse_request 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0311	2012-06-26 15:54	2008-04-6	Show	GitHub Exploit DB Packet Storm

192929	7.2	危険	Debian	-	apt-listchanges の apt-listchanges.py における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-0302	2012-06-26 15:54	2008-01-16	Show	GitHub Exploit DB Packet Storm

192930	4.3	警告	アップル	-	Apple Safari で使用される KHTML WebKit におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-0298	2012-06-26 15:54	2008-01-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Nov. 20, 2024, 4:18 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2931	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ASoC: meson: axg-card: fix 'use-after-free' Buffer 'card->dai_link' is reallocated in 'meson_card_reallocate_links()', so move 'p…	CWE-416 Use After Free	CVE-2024-46849	2024-11-9 01:15	2024-09-27	Show	GitHub Exploit DB Packet Storm

2932	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: spi: nxp-fspi: fix the KASAN report out-of-bounds bug Change the memcpy length to fix the out-of-bounds issue when writing the da…	CWE-787 Out-of-bounds Write	CVE-2024-46853	2024-11-9 01:15	2024-09-27	Show	GitHub Exploit DB Packet Storm

2933	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: gpio: prevent potential speculation leaks in gpio_device_get_desc() Userspace may trigger a speculative read of an address outsid…	NVD-CWE-noinfo	CVE-2024-44931	2024-11-9 01:15	2024-08-26	Show	GitHub Exploit DB Packet Storm

2934	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix NULL dereference at band check in starting tx ba session In MLD connection, link_data/link_conf are dynamical…	CWE-476 NULL Pointer Dereference	CVE-2024-43911	2024-11-9 01:15	2024-08-26	Show	GitHub Exploit DB Packet Storm

2935	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add null checks for 'stream' and 'plane' before dereferencing This commit adds null checks for the 'stream' and …	CWE-476 NULL Pointer Dereference	CVE-2024-43904	2024-11-9 01:15	2024-08-26	Show	GitHub Exploit DB Packet Storm

2936	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net: ipv6: ensure we call ipv6_mc_down() at most once There are two reasons for addrconf_notify() to be called with NETDEV_DOWN: …	NVD-CWE-noinfo	CVE-2022-48910	2024-11-9 01:15	2024-08-22	Show	GitHub Exploit DB Packet Storm

2937	-		-	-	In the Linux kernel, the following vulnerability has been resolved: KVM: Fix a data race on last_boosted_vcpu in kvm_vcpu_on_spin() Use {READ,WRITE}_ONCE() to access kvm->last_boosted_vcpu to ensur…	-	CVE-2024-40953	2024-11-9 01:15	2024-07-12	Show	GitHub Exploit DB Packet Storm

2938	-		-	-	In the Linux kernel, the following vulnerability has been resolved: inet: inet_defrag: prevent sk release while still in use ip_local_out() and other functions can pass skb->sk as function argument…	-	CVE-2024-26921	2024-11-9 01:15	2024-04-18	Show	GitHub Exploit DB Packet Storm

2939	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: bpf: Fix DEVMAP_HASH overflow check on 32-bit arches The devmap code allocates a number hash buckets equal to the next power of t…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2024-26885	2024-11-9 01:15	2024-04-17	Show	GitHub Exploit DB Packet Storm

2940	-		-	-	In the Linux kernel, the following vulnerability has been resolved: erofs: fix lz4 inplace decompression Currently EROFS can map another compressed buffer for inplace decompression, that was used t…	-	CVE-2023-52497	2024-11-9 01:15	2024-03-1	Show	GitHub Exploit DB Packet Storm