Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 8, 2025, 6:02 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
193011	6.8	警告	RSAセキュリティ	-	EMC RSA Access Manager Server および RSA Access Manager Agent におけるリプレイ攻撃の脆弱性	CWE-287 不適切な認証	CVE-2012-2281	2012-07-9 15:38	2012-07-5	Show	GitHub Exploit DB Packet Storm

193012	6.8	警告	シマンテック	-	Symantec Message Filter の Brightmail Control Center におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-0303	2012-07-9 11:33	2012-06-26	Show	GitHub Exploit DB Packet Storm

193013	4.3	警告	シマンテック	-	Symantec Message Filter の Brightmail Control Center におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0302	2012-07-9 11:33	2012-06-26	Show	GitHub Exploit DB Packet Storm

193014	5.4	警告	シマンテック	-	Symantec Message Filter の Brightmail Control Center における Web セッションをハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2012-0301	2012-07-9 11:32	2012-06-26	Show	GitHub Exploit DB Packet Storm

193015	3.3	注意	シマンテック	-	Symantec Message Filter の Brightmail Control Center におけるバージョン情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-0300	2012-07-9 11:31	2012-06-26	Show	GitHub Exploit DB Packet Storm

193016	5	警告	Novell	-	Novell GroupWise の WebAccess におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-0410	2012-07-6 14:34	2012-03-26	Show	GitHub Exploit DB Packet Storm

193017	5	警告	Invensys	-	Invensys InTouch および Wonderware Application Server におけるサービス運用妨害 (リソース消費) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-3847	2012-07-6 14:31	2012-07-5	Show	GitHub Exploit DB Packet Storm

193018	5	警告	Invensys	-	Invensys System Platform software suite におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-3007	2012-07-6 14:27	2012-07-5	Show	GitHub Exploit DB Packet Storm

193019	9.3	危険	General Electric Company	-	GE Intelligent Platforms 製品で使用される KeyWorks KeyHelp における任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2012-2516	2012-07-6 14:11	2012-04-24	Show	GitHub Exploit DB Packet Storm

193020	9.3	危険	General Electric Company DELL EMC (旧 EMC Corporation)	-	EMC および GE 製品などで使用される KeyWorks KeyHelp におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-2515	2012-07-6 14:10	2012-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 9, 2025, 4:56 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
270161	-	ibm	db2_universal_database	Unspecified vulnerability in the SSL LOAD GSKIT action in IBM DB2 UDB 9.1 before Fixpak 4 has unknown impact and attack vectors, involving a call to dlopen when the effective uid is root.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2007-6049	2011-03-8 12:01	2007-11-21	Show	GitHub Exploit DB Packet Storm

270162	-	ibm	db2_universal_database	Unspecified vulnerability in DB2LICD in IBM DB2 UDB 9.1 before Fixpak 4 has unknown impact and attack vectors, related to creation of an "insecure directory."	CWE-264 Permissions, Privileges, and Access Controls	CVE-2007-6050	2011-03-8 12:01	2007-11-21	Show	GitHub Exploit DB Packet Storm

270163	-	ibm	db2_universal_database	IBM DB2 UDB 9.1 before Fixpak 4 does not properly perform vector aggregation, which might allow attackers to cause a denial of service (divide-by-zero error and DBMS crash), related to an "overflow."…	NVD-CWE-Other	CVE-2007-6052	2011-03-8 12:01	2007-11-21	Show	GitHub Exploit DB Packet Storm

270164	-	ibm	db2_universal_database	IBM DB2 UDB 9.1 before Fixpak 4 does not properly handle use of large numbers of file descriptors, which might allow attackers to have an unknown impact involving "memory corruption." NOTE: the vendo…	CWE-399 Resource Management Errors	CVE-2007-6053	2011-03-8 12:01	2007-11-21	Show	GitHub Exploit DB Packet Storm

270165	-	feed2js	feed2js	Cross-site scripting (XSS) vulnerability in Feed to JavaScript (Feed2JS) 1.91 allows remote attackers to inject arbitrary web script or HTML via a URL in a feed.	CWE-79 Cross-site Scripting	CVE-2007-6102	2011-03-8 12:01	2007-11-24	Show	GitHub Exploit DB Packet Storm

270166	-	irc_services	irc_services	Unspecified vulnerability in IRC Services 5.1.8 has unknown impact and attack vectors.	NVD-CWE-noinfo	CVE-2007-6123	2011-03-8 12:01	2007-11-27	Show	GitHub Exploit DB Packet Storm

270167	-	gnu	gnump3d	gnump3d 2.9final does not apply password protection to its plugins, which might allow remote attackers to bypass intended access restrictions.	CWE-287 Improper Authentication	CVE-2007-6130	2011-03-8 12:01	2007-11-27	Show	GitHub Exploit DB Packet Storm

270168	-	redhat	fedora_core	buttonpressed.sh in scanbuttond 0.2.3 allows local users to overwrite arbitrary files via a symlink attack on the (1) scan.pnm and (2) scan.jpg temporary files.	CWE-16 Configuration	CVE-2007-6131	2011-03-8 12:01	2007-11-27	Show	GitHub Exploit DB Packet Storm

270169	-	xunlei	web_thunder	Buffer overflow in a certain ActiveX control in Xunlei Web Thunder 5.6.9.344, possibly the DapPlayer ActiveX control in DapPlayer_Now.dll, allows remote attackers to execute arbitrary code via a long…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2007-5064	2011-03-8 12:00	2007-09-25	Show	GitHub Exploit DB Packet Storm

270170	-	kaspersky_lab	kaspersky_anti-virus kaspersky_internet_security	Kaspersky Anti-Virus (KAV) and Internet Security 7.0 build 125 do not properly validate certain parameters to System Service Descriptor Table (SSDT) and Shadow SSDT function handlers, which allows lo…	CWE-20 Improper Input Validation	CVE-2007-5086	2011-03-8 12:00	2007-09-26	Show	GitHub Exploit DB Packet Storm