Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 16, 2024, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
194111 7.2 危険 シスコシステムズ - Cisco Unified IP Phone 7906G におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-1072 2012-06-26 15:46 2007-02-21 Show GitHub Exploit DB Packet Storm
194112 7.8 危険 アップル - Apple Mac OS X の gifGetBandProc 関数における整数オーバーフローの脆弱性 - CVE-2007-1071 2012-06-26 15:46 2007-02-22 Show GitHub Exploit DB Packet Storm
194113 7.2 危険 meetinghouse
シスコシステムズ		 - CSSC などの製品の 認証メソッドにおける重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2007-1068 2012-06-26 15:46 2007-02-21 Show GitHub Exploit DB Packet Storm
194114 7.2 危険 meetinghouse
シスコシステムズ		 - CSSC などの製品における権限を取得される脆弱性 - CVE-2007-1067 2012-06-26 15:46 2007-02-21 Show GitHub Exploit DB Packet Storm
194115 6.8 警告 meetinghouse
シスコシステムズ		 - CSSC などの製品における権限を取得される脆弱性 - CVE-2007-1066 2012-06-26 15:46 2007-02-21 Show GitHub Exploit DB Packet Storm
194116 6.8 警告 meetinghouse
シスコシステムズ		 - CSSC などの製品における SYSTEM 権限を取得される脆弱性 - CVE-2007-1065 2012-06-26 15:46 2007-02-21 Show GitHub Exploit DB Packet Storm
194117 6.8 警告 meetinghouse
シスコシステムズ		 - CSSC などの製品における権限を取得される脆弱性 - CVE-2007-1064 2012-06-26 15:46 2007-02-21 Show GitHub Exploit DB Packet Storm
194118 10 危険 シスコシステムズ - SSH server in Cisco Unified IP Phone におけるデバイスへアクセスされる脆弱性 - CVE-2007-1063 2012-06-26 15:46 2007-02-21 Show GitHub Exploit DB Packet Storm
194119 10 危険 シスコシステムズ - Cisco Unified IP Conference Station 7935 などにおける認証制御を回避される脆弱性 CWE-287
不適切な認証 		CVE-2007-1062 2012-06-26 15:46 2007-02-21 Show GitHub Exploit DB Packet Storm
194120 6.8 警告 francisco burzi - Francisco Burzi PHP-Nuke の index.php における SQL インジェクションの脆弱性 - CVE-2007-1061 2012-06-26 15:46 2007-02-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 16, 2024, 4:17 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
258291 - digium asterisk The PJSIP channel driver in Asterisk Open Source 12.x before 12.1.1, when qualify_frequency "is enabled on an AOR and the remote SIP server challenges for authentication of the resulting OPTIONS requ… CWE-20
 Improper Input Validation  		CVE-2014-2288 2014-04-22 02:50 2014-04-19 Show GitHub Exploit DB Packet Storm
258292 - digium asterisk res/res_pjsip_exten_state.c in the PJSIP channel driver in Asterisk Open Source 12.x before 12.1.0 allows remote authenticated users to cause a denial of service (crash) via a SUBSCRIBE request witho… CWE-20
 Improper Input Validation  		CVE-2014-2289 2014-04-22 02:50 2014-04-19 Show GitHub Exploit DB Packet Storm
258293 - digium
fedoraproject 		certified_asterisk
asterisk
fedora 		channels/chan_sip.c in Asterisk Open Source 1.8.x before 1.8.26.1, 11.8.x before 11.8.1, and 12.1.x before 12.1.1, and Certified Asterisk 1.8.15 before 1.8.15-cert5 and 11.6 before 11.6-cert2, when c… CWE-20
 Improper Input Validation  		CVE-2014-2287 2014-04-22 02:37 2014-04-19 Show GitHub Exploit DB Packet Storm
258294 - digium
fedoraproject 		asterisk
fedora
certified_asterisk 		main/http.c in Asterisk Open Source 1.8.x before 1.8.26.1, 11.8.x before 11.8.1, and 12.1.x before 12.1.1, and Certified Asterisk 1.8.x before 1.8.15-cert5 and 11.6 before 11.6-cert2, allows remote a… CWE-20
 Improper Input Validation  		CVE-2014-2286 2014-04-22 02:20 2014-04-19 Show GitHub Exploit DB Packet Storm
258295 - f-secure secure_messaging_secure_gateway Cross-site scripting (XSS) vulnerability in F-Secure Messaging Secure Gateway 7.5.0 before Patch 1862 allows remote authenticated administrators to inject arbitrary web script or HTML via the new par… CWE-79
Cross-site Scripting 		CVE-2014-2844 2014-04-22 00:08 2014-04-18 Show GitHub Exploit DB Packet Storm
258296 - f-secure anti-virus
email_and_server_security
server_security 		SQL injection vulnerability in an unspecified DLL in the FSDBCom ActiveX control in F-Secure Anti-Virus for Microsoft Exchange Server before HF02, Anti-Virus for Windows Servers 9.00 before HF09, Ant… CWE-89
SQL Injection 		CVE-2013-7369 2014-04-21 23:49 2014-04-18 Show GitHub Exploit DB Packet Storm
258297 - kokuyo camiapp The Content Provider in the KOKUYO CamiApp application 1.21.1 and earlier for Android allows attackers to bypass intended access restrictions and read database information via a crafted application. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-1986 2014-04-19 13:48 2014-04-16 Show GitHub Exploit DB Packet Storm
258298 - lightwitch
prosody 		metronome
prosody 		plugins/mod_compression.lua in (1) Prosody before 0.9.4 and (2) Lightwitch Metronome through 3.4 negotiates stream compression while a session is unauthenticated, which allows remote attackers to cau… CWE-20
 Improper Input Validation  		CVE-2014-2744 2014-04-19 13:48 2014-04-11 Show GitHub Exploit DB Packet Storm
258299 - prosody prosody Prosody before 0.9.4 does not properly restrict the processing of compressed XML elements, which allows remote attackers to cause a denial of service (resource consumption) via a crafted XMPP stream,… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-2745 2014-04-19 13:48 2014-04-11 Show GitHub Exploit DB Packet Storm
258300 - juniper junos
srx100
srx110
srx210
srx220
srx240
srx550
srx650 		Unspecified vulnerability in Juniper Junos before 11.4R10-S1, before 11.4R11, 12.1X44 before 12.1X44-D26, 12.1X44 before 12.1X44-D30, 12.1X45 before 12.1X45-D20, and 12.1X46 before 12.1X46-D10, when … NVD-CWE-noinfo
CVE-2014-0612 2014-04-19 13:46 2014-04-15 Show GitHub Exploit DB Packet Storm