Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Oct. 4, 2024, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 195551 | 4.3 | 警告 | Apache Software Foundation | - | Apache Struts におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-1006 | 2012-02-8 16:34 | 2012-02-7 | Show | GitHub Exploit DB Packet Storm |
| 195552 | 10 | 危険 | シマンテック | - | Symantec pcAnywhere 製品におけるクライアントへアクセスされる脆弱性 |
CWE-noinfo
情報不足 |
CVE-2012-0290 | 2012-02-8 16:33 | 2012-01-24 | Show | GitHub Exploit DB Packet Storm |
| 195553 | 7.1 | 危険 | IBM | - | IBM AIX の TCP 実装におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2012-0194 | 2012-02-8 16:28 | 2012-02-3 | Show | GitHub Exploit DB Packet Storm |
| 195554 | 10 | 危険 | Broadwin | - | Advantech/BroadWin WebAccess の webvrpcs.exe における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2011-4041 | 2012-02-8 16:27 | 2012-02-6 | Show | GitHub Exploit DB Packet Storm |
| 195555 | 5 | 警告 | Opera Software ASA | - | Opera における整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2012-1003 | 2012-02-8 16:18 | 2012-02-7 | Show | GitHub Exploit DB Packet Storm |
| 195556 | 4 | 警告 | DELL EMC (旧 EMC Corporation) | - | EMC Documentum xPlore におけるオブジェクトの存在を特定される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2012-0396 | 2012-02-8 16:15 | 2012-02-6 | Show | GitHub Exploit DB Packet Storm |
| 195557 | 8.5 | 危険 | シーメンス | - | 複数の Siemens 製品の HMI Web サーバにおける任意のメモリロケーションからデータを読まれる脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2011-4879 | 2012-02-8 11:12 | 2012-01-24 | Show | GitHub Exploit DB Packet Storm |
| 195558 | 7.8 | 危険 | シーメンス | - | 複数の Siemens 製品の HMI Web サーバにおけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2011-4878 | 2012-02-8 11:11 | 2012-01-24 | Show | GitHub Exploit DB Packet Storm |
| 195559 | 7.1 | 危険 | シーメンス | - | 複数の Siemens 製品の HmiLoad におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2011-4877 | 2012-02-8 11:09 | 2012-01-24 | Show | GitHub Exploit DB Packet Storm |
| 195560 | 9.3 | 危険 | シーメンス | - | 複数の Siemens 製品の HmiLoad におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2011-4876 | 2012-02-8 11:07 | 2012-01-24 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:Oct. 4, 2024, 8:12 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 801 | 4.4 |
MEDIUM
Local |
codesys | oscat_basic_library | Out-of-Bounds read vulnerability in OSCAT Basic Library allows an local, unprivileged attacker to access limited internal data of the PLC which may lead to a crash of the affected service. |
CWE-125
Out-of-bounds Read |
CVE-2024-6876 | 2024-10-1 16:15 | 2024-09-11 | Show | GitHub Exploit DB Packet Storm |
| 802 | 8.1 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP … |
NVD-CWE-noinfo
|
CVE-2024-43393 | 2024-10-1 16:15 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
| 803 | 8.1 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP … |
NVD-CWE-noinfo
|
CVE-2024-43392 | 2024-10-1 16:15 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
| 804 | 8.1 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_PORTFORWARDING.SR… |
NVD-CWE-noinfo
|
CVE-2024-43391 | 2024-10-1 16:15 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
| 805 | 7.3 |
HIGH
Local |
beckhoff |
twincat\/bsd mdp_package |
The MPD package included in TwinCAT/BSD allows an authenticated, low-privileged local attacker to induce a Denial-of-Service (DoS) condition on the daemon and execute code in the context of user “roo… |
NVD-CWE-Other
|
CVE-2024-41176 | 2024-10-1 16:15 | 2024-08-27 | Show | GitHub Exploit DB Packet Storm |
| 806 | 6.5 |
MEDIUM
Network |
phoenixcontact |
axc_f_1152_firmware axc_f_2152_firmware axc_f_3152_firmware bpc_9102s_firmware epc_1502_firmware epc_1522_firmware plcnext_engineer rfc_4072r_firmware rfc_4072s_firmware |
A download of code without integrity check vulnerability in PLCnext products allows an remote attacker with low privileges to compromise integrity on the affected engineering station and the connecte… |
CWE-494
Download of Code Without Integrity Check |
CVE-2023-46144 | 2024-10-1 16:15 | 2023-12-14 | Show | GitHub Exploit DB Packet Storm |
| 807 | 8.1 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can perform configuration changes of the firewall services, including packet forwarding or NAT through the FW_NAT.IN_IP environment variable which can lead to a DoS. |
NVD-CWE-noinfo
|
CVE-2024-43390 | 2024-10-1 16:15 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
| 808 | 8.1 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can perform configuration changes of the ospf service through OSPF_INTERFACE.SIMPLE_KEY, OSPF_INTERFACE.DIGEST_KEY environment variables which can lead to a DoS. |
NVD-CWE-noinfo
|
CVE-2024-43389 | 2024-10-1 16:15 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
| 809 | 0.0 |
NONE
Physics |
- | - | This CVE has been rejected. | - | CVE-2024-8421 | 2024-10-1 15:15 | 2024-10-1 | Show | GitHub Exploit DB Packet Storm |
| 810 | - | - | - | The fix for CVE-2024-2199 in 389-ds-base was insufficient to cover all scenarios. In certain product versions, an authenticated user may cause a server crash while modifying `userPassword` using malf… | - | CVE-2024-8445 | 2024-10-1 15:15 | 2024-09-6 | Show | GitHub Exploit DB Packet Storm |