Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Oct. 6, 2024, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
195331 7.5 危険 アドバンテック株式会社 - 複数の Advantech OPC Server 製品の OPC Server ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-1914 2012-02-23 10:38 2012-02-21 Show GitHub Exploit DB Packet Storm
195332 10 危険 Novell - Windows 上で稼働する Novell iPrint Client におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-4187 2012-02-23 10:02 2012-02-9 Show GitHub Exploit DB Packet Storm
195333 9.3 危険 Novell - Windows 上で稼働する Novell iPrint Client におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-4186 2012-02-23 10:01 2012-02-9 Show GitHub Exploit DB Packet Storm
195334 10 危険 Novell - Windows 上で稼働する Novell iPrint Client における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-4185 2012-02-23 10:01 2012-02-9 Show GitHub Exploit DB Packet Storm
195335 6 警告 Pluck CMS - pluck の admin.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-1227 2012-02-22 16:26 2012-02-21 Show GitHub Exploit DB Packet Storm
195336 6.8 警告 Antonio de Vincentiis - GAzie の modules/config/admin_utente.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-1220 2012-02-22 16:24 2012-02-21 Show GitHub Exploit DB Packet Storm
195337 4.3 警告 freelancerKit - freelancerKit におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1219 2012-02-22 16:18 2012-02-21 Show GitHub Exploit DB Packet Storm
195338 7.5 危険 freelancerKit - freelancerKit における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1218 2012-02-22 16:15 2012-02-21 Show GitHub Exploit DB Packet Storm
195339 4.3 警告 Zenphoto - Zenphoto におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0995 2012-02-22 16:12 2012-02-21 Show GitHub Exploit DB Packet Storm
195340 6 警告 Zenphoto - Zenphoto の Manage Albums 機能における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-0994 2012-02-22 16:09 2012-02-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Oct. 6, 2024, 12:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
711 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink When all the strides in a WQE have been consumed, the WQE is unlinked from t… NVD-CWE-noinfo
CVE-2024-44970 2024-10-3 23:22 2024-09-5 Show GitHub Exploit DB Packet Storm
712 7.5 HIGH
Network 		cisco ios_xr A vulnerability in the multicast traceroute version 2 (Mtrace2) feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to exhaust the UDP packet memory of an affected device… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2024-20304 2024-10-3 23:20 2024-09-12 Show GitHub Exploit DB Packet Storm
713 8.4 HIGH
Local 		motorola ebts_site_controller_firmware
mbts_site_controller_firmware 		Motorola EBTS/MBTS Site Controller drops to debug prompt on unhandled exception. The Motorola MBTS Site Controller exposes a debug prompt on the device's serial port in case of an unhandled exception… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2023-23774 2024-10-3 23:15 2023-08-29 Show GitHub Exploit DB Packet Storm
714 9.8 CRITICAL
Network 		telerik ui_for_wpf In Progress Telerik UI for WPF versions prior to 2024 Q3 (2024.3.924), a command injection attack is possible through improper neutralization of hyperlink elements. CWE-77
Command Injection 		CVE-2024-7575 2024-10-3 22:52 2024-09-25 Show GitHub Exploit DB Packet Storm
715 9.8 CRITICAL
Network 		telerik ui_for_wpf In Progress Telerik UI for WPF versions prior to 2024 Q3 (2024.3.924), a code execution attack is possible through an insecure deserialization vulnerability. CWE-502
 Deserialization of Untrusted Data 		CVE-2024-7576 2024-10-3 22:51 2024-09-25 Show GitHub Exploit DB Packet Storm
716 8.1 HIGH
Network 		prestashop prestashop An issue in Prestashop v.8.1.7 and before allows a remote attacker to execute arbitrary code via the module upgrade functionality. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2024-41651 2024-10-3 22:45 2024-08-13 Show GitHub Exploit DB Packet Storm
717 7.5 HIGH
Network 		cisco ios
ios_xe 		A vulnerability in the Resource Reservation Protocol (RSVP) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to relo… CWE-787
 Out-of-bounds Write 		CVE-2024-20433 2024-10-3 22:34 2024-09-26 Show GitHub Exploit DB Packet Storm
718 9.8 CRITICAL
Network 		tduckcloud tduckpro A vulnerability classified as critical was found in TDuckCloud TDuckPro up to 6.3. Affected by this vulnerability is an unknown functionality. The manipulation leads to weak password recovery. The at… CWE-640
 Weak Password Recovery Mechanism for Forgotten Password 		CVE-2024-8692 2024-10-3 22:17 2024-09-12 Show GitHub Exploit DB Packet Storm
719 - - - A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, … CWE-354
 Improper Validation of Integrity Check Value 		CVE-2024-3727 2024-10-3 22:15 2024-05-15 Show GitHub Exploit DB Packet Storm
720 - - - Improper Encoding or Escaping of Output vulnerability in Apache Zeppelin. The attackers can modify helium.json and exposure XSS attacks to normal users. This issue affects Apache Zeppelin: from 0.8.… CWE-79
Cross-site Scripting 		CVE-2024-31868 2024-10-3 22:15 2024-04-10 Show GitHub Exploit DB Packet Storm