Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Sept. 23, 2024, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193171 9 危険 SAP - SAP BusinessObjects Enterprise の CmcApp における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3983 2012-03-27 18:42 2010-10-18 Show GitHub Exploit DB Packet Storm
193172 5 警告 SAP - SAP BusinessObjects Enterprise における任意のポートおよびイントラネットホストへの TCP 接続を誘発する脆弱性 CWE-200
情報漏えい 		CVE-2010-3982 2012-03-27 18:42 2010-10-18 Show GitHub Exploit DB Packet Storm
193173 4.3 警告 SAP - SAP BusinessObjects Enterprise におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3981 2012-03-27 18:42 2010-10-18 Show GitHub Exploit DB Packet Storm
193174 4 警告 SAP - SAP BusinessObjects Enterprise の Dswsbobje におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-3980 2012-03-27 18:42 2010-10-18 Show GitHub Exploit DB Packet Storm
193175 5 警告 SAP - SAP BusinessObjects Enterprise の Dswsbobje におけるアカウント名を列挙する脆弱性 CWE-200
情報漏えい 		CVE-2010-3979 2012-03-27 18:42 2010-10-18 Show GitHub Exploit DB Packet Storm
193176 5 警告 Spree Commerce - Spree における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-3978 2012-03-27 18:42 2010-11-17 Show GitHub Exploit DB Packet Storm
193177 9.3 危険 アドビシステムズ - Adobe Flash Player における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2010-3975 2012-03-27 18:42 2010-10-19 Show GitHub Exploit DB Packet Storm
193178 6.4 警告 Ruby on Rails project - Ruby on Rails における任意のレコードを変更される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3933 2012-03-27 18:42 2010-10-15 Show GitHub Exploit DB Packet Storm
193179 4.3 警告 Vtiger - vtiger CRM におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3911 2012-03-27 18:42 2010-11-26 Show GitHub Exploit DB Packet Storm
193180 6.8 警告 Vtiger - vtiger CRM の return_application_language 関数におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-3910 2012-03-27 18:42 2010-11-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Sept. 23, 2024, 12:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2121 9.8 CRITICAL
Network 		comfast cf-xr11_firmware COMFAST CF-XR11 V2.7.2 has a command injection vulnerability in function sub_424CB4. Attackers can send POST request messages to /usr/bin/webmgnt and inject commands into parameter iface. CWE-77
Command Injection 		CVE-2024-44466 2024-09-14 01:32 2024-09-12 Show GitHub Exploit DB Packet Storm
2122 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: fix bitmap corruption on close_range() with CLOSE_RANGE_UNSHARE copy_fd_bitmaps(new, old, count) is expected to copy the first co… CWE-787
 Out-of-bounds Write 		CVE-2024-45025 2024-09-14 01:30 2024-09-12 Show GitHub Exploit DB Packet Storm
2123 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: fix hugetlb vs. core-mm PT locking We recently made GUP's common page table walking code to also walk hugetlb VMAs wi… CWE-667
 Improper Locking 		CVE-2024-45024 2024-09-14 01:30 2024-09-12 Show GitHub Exploit DB Packet Storm
2124 7.1 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: md/raid1: Fix data corruption for degraded array with slow disk read_balance() will avoid reading from slow disks as much as poss… CWE-787
 Out-of-bounds Write 		CVE-2024-45023 2024-09-14 01:30 2024-09-12 Show GitHub Exploit DB Packet Storm
2125 3.9 LOW
Physics 		redhat
opensc_project 		enterprise_linux
opensc 		A vulnerability was found in pkcs15-init in OpenSC. An attacker could use a crafted USB Device or Smart Card, which would present the system with a specially crafted response to APDUs. Insufficient… CWE-908
 Use of Uninitialized Resource 		CVE-2024-45618 2024-09-14 01:30 2024-09-4 Show GitHub Exploit DB Packet Storm
2126 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: cfg80211: Handle SSID based pmksa deletion wpa_supplicant 2.11 sends since 1efdba5fdc2c ("Handle PMKSA flush in t… CWE-476
 NULL Pointer Dereference 		CVE-2024-46672 2024-09-14 01:29 2024-09-12 Show GitHub Exploit DB Packet Storm
2127 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: igb: cope with large MAX_SKB_FRAGS Sabrina reports that the igb driver does not cope well with large MAX_SKB_FRAG values: setting… CWE-787
 Out-of-bounds Write 		CVE-2024-45030 2024-09-14 01:29 2024-09-12 Show GitHub Exploit DB Packet Storm
2128 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: i2c: tegra: Do not mark ACPI devices as irq safe On ACPI machines, the tegra i2c module encounters an issue due to a mutex being … CWE-667
 Improper Locking 		CVE-2024-45029 2024-09-14 01:29 2024-09-12 Show GitHub Exploit DB Packet Storm
2129 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: mmc: mmc_test: Fix NULL dereference on allocation failure If the "test->highmem = alloc_pages()" allocation fails then calling __… CWE-476
 NULL Pointer Dereference 		CVE-2024-45028 2024-09-14 01:29 2024-09-12 Show GitHub Exploit DB Packet Storm
2130 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Check for xhci->interrupters being allocated in xhci_mem_clearup() If xhci_mem_init() fails, it calls into xhci_mem_cl… CWE-459
 Incomplete Cleanup 		CVE-2024-45027 2024-09-14 01:29 2024-09-12 Show GitHub Exploit DB Packet Storm