Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 18, 2024, 10 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
196001 6.4 警告 HTC Corporation - 複数の HTC の Android 上で動作する HTC IQRD サービスにおける SMS メッセージを送信される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2012-2217 2012-05-7 15:54 2012-05-1 Show GitHub Exploit DB Packet Storm
196002 2.1 注意 Mumble - Mumble における平文パスワードおよび設定データを取得される脆弱性 CWE-310
暗号の問題
CVE-2012-0863 2012-05-2 15:17 2012-04-30 Show GitHub Exploit DB Packet Storm
196003 6.5 警告 Digium - Asterisk Open Source および Asterisk Business Edition におけるサービス運用妨害 (デーモンクラッシュ) の脆弱性 CWE-119
バッファエラー
CVE-2012-2416 2012-05-2 15:14 2012-04-16 Show GitHub Exploit DB Packet Storm
196004 7.5 危険 Google - Google Chrome のプロセス間通信の実装におけるサンドボックスの制限を回避される脆弱性 CWE-362
競合状態
CVE-2011-3080 2012-05-2 14:00 2012-04-30 Show GitHub Exploit DB Packet Storm
196005 10 危険 Google - Google Chrome のプロセス間通信の実装における詳細不明な脆弱性 CWE-399
リソース管理の問題
CVE-2011-3079 2012-05-2 13:57 2012-04-30 Show GitHub Exploit DB Packet Storm
196006 8.5 危険 RuggedCom - RuggedCom の Rugged Operating System (ROS) におけるアクセス権限を取得される脆弱性 CWE-310
暗号の問題
CVE-2012-2441 2012-05-1 14:49 2012-04-27 Show GitHub Exploit DB Packet Storm
196007 7.5 危険 ネットギア - Netgear FVS318N の初期設定に問題 CWE-264
認可・権限・アクセス制御
CVE-2012-2439 2012-05-1 14:05 2012-04-3 Show GitHub Exploit DB Packet Storm
196008 7.5 危険 TP-LINK Technologies - TP-Link 8840T の初期設定に問題 CWE-264
認可・権限・アクセス制御
CVE-2012-2440 2012-05-1 12:21 2012-04-3 Show GitHub Exploit DB Packet Storm
196009 1.8 注意 Intuit - Intuit QuickBooks の intu-help-qb ハンドラにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2012-2425 2012-04-27 15:48 2012-04-25 Show GitHub Exploit DB Packet Storm
196010 1.8 注意 Intuit - Intuit QuickBooks の intu-help-qb ハンドラにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他
CVE-2012-2424 2012-04-27 15:47 2012-04-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 18, 2024, 5:14 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
258331 - f-secure anti-virus
email_and_server_security
server_security
SQL injection vulnerability in an unspecified DLL in the FSDBCom ActiveX control in F-Secure Anti-Virus for Microsoft Exchange Server before HF02, Anti-Virus for Windows Servers 9.00 before HF09, Ant… CWE-89
SQL Injection
CVE-2013-7369 2014-04-21 23:49 2014-04-18 Show GitHub Exploit DB Packet Storm
258332 - kokuyo camiapp The Content Provider in the KOKUYO CamiApp application 1.21.1 and earlier for Android allows attackers to bypass intended access restrictions and read database information via a crafted application. CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-1986 2014-04-19 13:48 2014-04-16 Show GitHub Exploit DB Packet Storm
258333 - lightwitch
prosody
metronome
prosody
plugins/mod_compression.lua in (1) Prosody before 0.9.4 and (2) Lightwitch Metronome through 3.4 negotiates stream compression while a session is unauthenticated, which allows remote attackers to cau… CWE-20
 Improper Input Validation 
CVE-2014-2744 2014-04-19 13:48 2014-04-11 Show GitHub Exploit DB Packet Storm
258334 - prosody prosody Prosody before 0.9.4 does not properly restrict the processing of compressed XML elements, which allows remote attackers to cause a denial of service (resource consumption) via a crafted XMPP stream,… CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-2745 2014-04-19 13:48 2014-04-11 Show GitHub Exploit DB Packet Storm
258335 - juniper junos
srx100
srx110
srx210
srx220
srx240
srx550
srx650
Unspecified vulnerability in Juniper Junos before 11.4R10-S1, before 11.4R11, 12.1X44 before 12.1X44-D26, 12.1X44 before 12.1X44-D30, 12.1X45 before 12.1X45-D20, and 12.1X46 before 12.1X46-D10, when … NVD-CWE-noinfo
CVE-2014-0612 2014-04-19 13:46 2014-04-15 Show GitHub Exploit DB Packet Storm
258336 - wireshark wireshark The dissect_sip_common function in epan/dissectors/packet-sip.c in the SIP dissector in Wireshark 1.8.x before 1.8.12 and 1.10.x before 1.10.4 does not check for empty lines, which allows remote atta… CWE-20
 Improper Input Validation 
CVE-2013-7112 2014-04-19 13:45 2013-12-20 Show GitHub Exploit DB Packet Storm
258337 - wireshark wireshark Multiple buffer overflows in the create_ntlmssp_v2_key function in epan/dissectors/packet-ntlmssp.c in the NTLMSSP v2 dissector in Wireshark 1.8.x before 1.8.12 and 1.10.x before 1.10.4 allow remote … CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2013-7114 2014-04-19 13:45 2013-12-20 Show GitHub Exploit DB Packet Storm
258338 - reviewboard review_board Cross-site scripting (XSS) vulnerability in the auto-complete widget in htdocs/media/rb/js/reviews.js in Review Board 1.6.x before 1.6.17 and 1.7.x before 1.7.10 allows remote attackers to inject arb… CWE-79
Cross-site Scripting
CVE-2013-2209 2014-04-19 13:35 2013-07-31 Show GitHub Exploit DB Packet Storm
258339 - xen xen Xen 3.1 through 4.x, when running 64-bit hosts on Intel CPUs, does not clear the NT flag when using an IRET after a SYSENTER instruction, which allows PV guest users to cause a denial of service (hyp… CWE-20
 Improper Input Validation 
CVE-2013-1917 2014-04-19 13:34 2013-05-14 Show GitHub Exploit DB Packet Storm
258340 - xen xen Certain page table manipulation operations in Xen 4.1.x, 4.2.x, and earlier are not preemptible, which allows local PV kernels to cause a denial of service via vectors related to "deep page table tra… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2013-1918 2014-04-19 13:34 2013-05-14 Show GitHub Exploit DB Packet Storm