Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Oct. 15, 2024, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
194831	7.8	危険	ヒューレット・パッカード	-	複数の HP プリンタ製品で使用される File System External Access 設定の PJL Access 値のデフォルト設定における任意のファイルを読まれる脆弱性	CWE-22 パス・トラバーサル	CVE-2010-4107	2012-03-27 18:42	2010-11-15	Show	GitHub Exploit DB Packet Storm

194832	6.8	警告	ヒューレット・パッカード	-	HP Insight Control におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-4106	2012-03-27 18:42	2010-10-28	Show	GitHub Exploit DB Packet Storm

194833	6.4	警告	ヒューレット・パッカード	-	HP Insight Orchestration におけるアクセス制限を回避する脆弱性	CWE-noinfo 情報不足	CVE-2010-4105	2012-03-27 18:42	2010-10-28	Show	GitHub Exploit DB Packet Storm

194834	5	警告	ヒューレット・パッカード	-	HP Insight Orchestration における任意のファイルを読まれる脆弱性	CWE-noinfo 情報不足	CVE-2010-4104	2012-03-27 18:42	2010-10-28	Show	GitHub Exploit DB Packet Storm

194835	5	警告	ヒューレット・パッカード	-	HP Insight Managed System Setup Wizard における任意のファイルを読まれる脆弱性	CWE-noinfo 情報不足	CVE-2010-4103	2012-03-27 18:42	2010-10-28	Show	GitHub Exploit DB Packet Storm

194836	5	警告	ヒューレット・パッカード	-	HP Insight Recovery における任意のファイルを読まれる脆弱性	CWE-noinfo 情報不足	CVE-2010-4102	2012-03-27 18:42	2010-10-28	Show	GitHub Exploit DB Packet Storm

194837	4.3	警告	ヒューレット・パッカード	-	HP Insight Recovery におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4101	2012-03-27 18:42	2010-10-28	Show	GitHub Exploit DB Packet Storm

194838	5	警告	ヒューレット・パッカード	-	HP Insight Control Performance Management における任意のファイルを読まれる脆弱性	CWE-noinfo 情報不足	CVE-2010-4100	2012-03-27 18:42	2010-10-28	Show	GitHub Exploit DB Packet Storm

194839	6.8	警告	nitrosecurity	-	NitroSecurity NitroView ESM の ess.pm における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-4099	2012-03-27 18:42	2010-10-27	Show	GitHub Exploit DB Packet Storm

194840	5	警告	monotone	-	monotone におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2010-4098	2012-03-27 18:42	2010-10-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Oct. 10, 2024, 8:13 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
591	7.5	HIGH Network	huawei	emui harmonyos	Input verification vulnerability in the storage module. Successful exploitation of this vulnerability may cause the device to restart.	CWE-20 Improper Input Validation	CVE-2023-39381	2024-10-11 00:35	2023-08-13	Show	GitHub Exploit DB Packet Storm

592	7.5	HIGH Network	huawei	harmonyos emui	Permission control vulnerability in the audio module. Successful exploitation of this vulnerability may cause audio devices to perform abnormally.	CWE-287 Improper Authentication	CVE-2023-39380	2024-10-11 00:35	2023-08-13	Show	GitHub Exploit DB Packet Storm

593	7.2	HIGH Network	apache	airflow_cncf_kubernetes	Arbitrary code execution in Apache Airflow CNCF Kubernetes provider version 5.0.0 allows user to change xcom sidecar image and resources via Airflow connection. In order to exploit this weakness, a …	CWE-74 Injection	CVE-2023-33234	2024-10-11 00:35	2023-05-30	Show	GitHub Exploit DB Packet Storm

594	8.8	HIGH Network	google fedoraproject	chrome fedora	Use after free in WebProtect in Google Chrome prior to 111.0.5563.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	CWE-416 Use After Free	CVE-2023-1533	2024-10-11 00:35	2023-03-22	Show	GitHub Exploit DB Packet Storm

595	8.8	HIGH Network	google fedoraproject	chrome fedora	Out of bounds read in GPU Video in Google Chrome prior to 111.0.5563.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	CWE-125 Out-of-bounds Read	CVE-2023-1532	2024-10-11 00:35	2023-03-22	Show	GitHub Exploit DB Packet Storm

596	8.8	HIGH Network	google fedoraproject chromium	chrome fedora chromium	Use after free in ANGLE in Google Chrome prior to 111.0.5563.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	CWE-416 Use After Free	CVE-2023-1531	2024-10-11 00:35	2023-03-22	Show	GitHub Exploit DB Packet Storm

597	4.9	MEDIUM Network	ibm	datastage	IBM DataStage on Cloud Pak for Data 4.0.6 to 4.5.2 stores sensitive credential information that can be read by a privileged user. IBM X-Force ID: 235060.	CWE-522 Insufficiently Protected Credentials	CVE-2022-38714	2024-10-11 00:32	2024-02-13	Show	GitHub Exploit DB Packet Storm

598	7.8	HIGH Local	microsoft	windows_10_1809 windows_server_2019 windows_server_2022 windows_11_21h2 windows_10_21h2 windows_11_22h2 windows_10_22h2 windows_11_22h3 windows_11_23h2 windows_server_23h2<…	Microsoft Management Console Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-43572	2024-10-11 00:25	2024-10-9	Show	GitHub Exploit DB Packet Storm

599	-		-	-	A vulnerability classified as problematic has been found in D-Link DSL-2750U R5B017. This affects an unknown part of the component Port Forwarding Page. The manipulation of the argument PortMappingDe…	CWE-79 Cross-site Scripting	CVE-2024-9792	2024-10-11 00:15	2024-10-11	Show	GitHub Exploit DB Packet Storm

600	-		-	-	A vulnerability was found in LyLme_spage 1.9.5. It has been classified as critical. Affected is an unknown function of the file /admin/sou.php. The manipulation of the argument id leads to sql inject…	CWE-89 SQL Injection	CVE-2024-9790	2024-10-11 00:15	2024-10-11	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed