Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Sept. 22, 2024, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
193151	4.3	警告	ヒューレット・パッカード	-	HP Insight Control Power Management におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4023	2012-03-27 18:42	2010-10-25	Show	GitHub Exploit DB Packet Storm

193152	6.2	警告	アップル	-	Apple の iOS におけるパスワードロックを回避される脆弱性	CWE-362 競合状態	CVE-2010-4012	2012-03-27 18:42	2010-12-8	Show	GitHub Exploit DB Packet Storm

193153	5	警告	オラクル	-	Oracle Mojarra における View State を変更される脆弱性	CWE-310 暗号の問題	CVE-2010-4007	2012-03-27 18:42	2010-10-20	Show	GitHub Exploit DB Packet Storm

193154	7.5	危険	wsnlinks	-	WSN Links の search.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4006	2012-03-27 18:42	2010-11-3	Show	GitHub Exploit DB Packet Storm

193155	6.9	警告	GNOME Project	-	GNOME Tomboy の tomboy スクリプトにおける権限を取得される脆弱性	CWE-94 コード・インジェクション	CVE-2010-4005	2012-03-27 18:42	2010-11-5	Show	GitHub Exploit DB Packet Storm

193156	6.9	警告	GNOME Project	-	GNOME Shell の gnome-shell における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-4000	2012-03-27 18:42	2010-11-5	Show	GitHub Exploit DB Packet Storm

193157	6.9	警告	gnucash	-	GnuCash の gnc-test-env における権限を取得される脆弱性	CWE-DesignError	CVE-2010-3999	2012-03-27 18:42	2010-11-5	Show	GitHub Exploit DB Packet Storm

193158	6.9	警告	banshee-project	-	Banshee の banshee-1 スクリプトにおける権限を取得される脆弱性	CWE-DesignError	CVE-2010-3998	2012-03-27 18:42	2010-11-5	Show	GitHub Exploit DB Packet Storm

193159	6.9	警告	cstr	-	CSTR Festival の festival_server における権限を取得される脆弱性	CWE-DesignError	CVE-2010-3996	2012-03-27 18:42	2010-11-5	Show	GitHub Exploit DB Packet Storm

193160	4.3	警告	ヒューレット・パッカード	-	HP VCRM におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3994	2012-03-27 18:42	2010-10-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Sept. 23, 2024, 5:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2101	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Take state lock during tx timeout reporter mlx5e_safe_reopen_channels() requires the state lock taken. The referenced …	CWE-667 Improper Locking	CVE-2024-45019	2024-09-14 01:36	2024-09-12	Show	GitHub Exploit DB Packet Storm

2102	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable: initialise extack before use Fix missing initialisation of extack in flow offload.	CWE-665 Improper Initialization	CVE-2024-45018	2024-09-14 01:36	2024-09-12	Show	GitHub Exploit DB Packet Storm

2103	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: mm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0 The __vmap_pages_range_noflush() assume…	CWE-787 Out-of-bounds Write	CVE-2024-45022	2024-09-14 01:36	2024-09-12	Show	GitHub Exploit DB Packet Storm

2104	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: bpf: Fix a kernel verifier crash in stacksafe() Daniel Hodges reported a kernel verifier crash when playing with sched-ext. Furth…	CWE-787 Out-of-bounds Write	CVE-2024-45020	2024-09-14 01:36	2024-09-12	Show	GitHub Exploit DB Packet Storm

2105	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: netem: fix return value if duplicate enqueue fails There is a bug in netem_enqueue() introduced by commit 5845f706388a ("net: net…	CWE-416 Use After Free	CVE-2024-45016	2024-09-14 01:36	2024-09-12	Show	GitHub Exploit DB Packet Storm

2106	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix IPsec RoCE MPV trace call Prevent the call trace below from happening, by not allowing IPsec creation over a slave,…	NVD-CWE-noinfo	CVE-2024-45017	2024-09-14 01:36	2024-09-12	Show	GitHub Exploit DB Packet Storm

2107	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: char: xillybus: Check USB endpoints when probing device Ensure, as the driver probes the device, that all endpoints that the driv…	NVD-CWE-noinfo	CVE-2024-45011	2024-09-14 01:36	2024-09-12	Show	GitHub Exploit DB Packet Storm

2108	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: only decrement add_addr_accepted for MPJ req Adding the following warning ... WARN_ON_ONCE(msk->pm.add_addr_accepte…	NVD-CWE-noinfo	CVE-2024-45009	2024-09-14 01:36	2024-09-12	Show	GitHub Exploit DB Packet Storm

2109	-		-	-	An External XML Entity (XXE) vulnerability in the provisioning web service of Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote unauthenticated attacker to leak API secrets.	-	CVE-2024-37397	2024-09-14 01:35	2024-09-12	Show	GitHub Exploit DB Packet Storm

2110	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: s390/boot: Avoid possible physmem_info segment corruption When physical memory for the kernel image is allocated it does not cons…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2024-45014	2024-09-14 01:35	2024-09-12	Show	GitHub Exploit DB Packet Storm