Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Oct. 14, 2024, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 195081 | 9.3 | 危険 | VideoLAN | - | VideoLAN VLC Media Player の libdirectx_plugin.dll における任意のコードを実行される脆弱性 |
CWE-119
バッファエラー |
CVE-2010-3275 | 2012-03-27 18:42 | 2011-03-28 | Show | GitHub Exploit DB Packet Storm |
| 195082 | 4.3 | 警告 | Zoho Corporation | - | ZOHO ManageEngine ADSelfService Plus の Employee Search Engine におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-3274 | 2012-03-27 18:42 | 2011-02-17 | Show | GitHub Exploit DB Packet Storm |
| 195083 | 5 | 警告 | Zoho Corporation | - | ZOHO ManageEngine ADSelfService Plus における任意のユーザアカウントへのアクセスを取得される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-3273 | 2012-03-27 18:42 | 2011-02-17 | Show | GitHub Exploit DB Packet Storm |
| 195084 | 4.3 | 警告 | Zoho Corporation | - | ZOHO ManageEngine ADSelfService Plus の security-questions 実装における任意のユーザアカウントへのアクセスを取得される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-3272 | 2012-03-27 18:42 | 2011-02-17 | Show | GitHub Exploit DB Packet Storm |
| 195085 | 6.8 | 警告 | IBM | - | IBM WAS の Integrated Solutions Console におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2010-3271 | 2012-03-27 18:42 | 2011-07-18 | Show | GitHub Exploit DB Packet Storm |
| 195086 | 6.8 | 警告 | シスコシステムズ | - | Cisco WebEx Meeting Center T27LB におけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-3270 | 2012-03-27 18:42 | 2011-02-1 | Show | GitHub Exploit DB Packet Storm |
| 195087 | 9.3 | 危険 | シスコシステムズ | - | Cisco WRF および ARF Player T27LB におけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-3269 | 2012-03-27 18:42 | 2011-02-1 | Show | GitHub Exploit DB Packet Storm |
| 195088 | 6.4 | 警告 | orbeon | - | Orbeon Forms の XForms サービスの xforms-server コンポーネントにおけるイントラネットサーバへ HTTP リクエストを送信される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-3260 | 2012-03-27 18:42 | 2011-04-26 | Show | GitHub Exploit DB Packet Storm |
| 195089 | 5 | 警告 | シマンテック インテル |
- | Symantec Antivirus Corporate Edition などで使用される Intel AMS の GetStringAMSHandler 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-3268 | 2012-03-27 18:42 | 2010-12-22 | Show | GitHub Exploit DB Packet Storm |
| 195090 | 6.5 | 警告 | ifdefined | - | BugTracker.NET における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-3267 | 2012-03-27 18:42 | 2010-12-2 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:Oct. 10, 2024, 8:13 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 771 | 7.5 |
HIGH
Network |
- | - | Windows Kerberos Elevation of Privilege Vulnerability | - | CVE-2024-38129 | 2024-10-10 21:56 | 2024-10-9 | Show | GitHub Exploit DB Packet Storm |
| 772 | 9.0 |
CRITICAL
Adjacent |
- | - | Windows Netlogon Elevation of Privilege Vulnerability |
CWE-287
Improper Authentication |
CVE-2024-38124 | 2024-10-10 21:56 | 2024-10-9 | Show | GitHub Exploit DB Packet Storm |
| 773 | 7.1 |
HIGH
Local |
- | - | Azure Monitor Agent Elevation of Privilege Vulnerability |
CWE-59
Link Following |
CVE-2024-38097 | 2024-10-10 21:56 | 2024-10-9 | Show | GitHub Exploit DB Packet Storm |
| 774 | 7.5 |
HIGH
Network |
- | - | Microsoft OpenSSH for Windows Remote Code Execution Vulnerability |
CWE-73
External Control of File Name or Path |
CVE-2024-38029 | 2024-10-10 21:56 | 2024-10-9 | Show | GitHub Exploit DB Packet Storm |
| 775 | 6.7 |
MEDIUM
Local |
- | - | Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability |
CWE-822
Untrusted Pointer Dereference |
CVE-2024-37983 | 2024-10-10 21:56 | 2024-10-9 | Show | GitHub Exploit DB Packet Storm |
| 776 | 6.7 |
MEDIUM
Local |
- | - | Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability |
CWE-822
Untrusted Pointer Dereference |
CVE-2024-37982 | 2024-10-10 21:56 | 2024-10-9 | Show | GitHub Exploit DB Packet Storm |
| 777 | 6.7 |
MEDIUM
Local |
- | - | Windows Kernel Elevation of Privilege Vulnerability |
CWE-822
Untrusted Pointer Dereference |
CVE-2024-37979 | 2024-10-10 21:56 | 2024-10-9 | Show | GitHub Exploit DB Packet Storm |
| 778 | 6.7 |
MEDIUM
Local |
- | - | Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability |
CWE-190
Integer Overflow or Wraparound |
CVE-2024-37976 | 2024-10-10 21:56 | 2024-10-9 | Show | GitHub Exploit DB Packet Storm |
| 779 | - | - | - | NULL pointer dereference in IP socket options processing of the Networking Stack in QNX Software Development Platform (SDP) version(s) 7.1 and 7.0 could allow an attacker with local access to cause a… | - | CVE-2024-35215 | 2024-10-10 21:56 | 2024-10-9 | Show | GitHub Exploit DB Packet Storm | |
| 780 | 8.0 |
HIGH
Adjacent |
- | - | Windows Hyper-V Remote Code Execution Vulnerability |
CWE-20 CWE-829 Improper Input Validation Inclusion of Functionality from Untrusted Control Sphere |
CVE-2024-30092 | 2024-10-10 21:56 | 2024-10-9 | Show | GitHub Exploit DB Packet Storm |