Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Sept. 22, 2024, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
196111	10	危険	マイクロソフト	-	Microsoft Windows Server 2008 の DNS サーバにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-1966	2011-08-26 10:18	2011-08-9	Show	GitHub Exploit DB Packet Storm

196112	4.3	警告	マイクロソフト	-	Microsoft Internet Explorer における Cookie を読まれる脆弱性	CWE-20 不適切な入力確認	CVE-2011-2383	2011-08-26 10:17	2011-08-9	Show	GitHub Exploit DB Packet Storm

196113	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer 7 から 9 における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-1963	2011-08-26 10:15	2011-08-9	Show	GitHub Exploit DB Packet Storm

196114	4.3	警告	マイクロソフト	-	Microsoft Internet Explorer 6 から 9 におけるコンテンツを読まれる脆弱性	CWE-200 情報漏えい	CVE-2011-1962	2011-08-26 10:13	2011-08-9	Show	GitHub Exploit DB Packet Storm

196115	4.3	警告	マイクロソフト	-	Microsoft .NET Framework における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-1978	2011-08-25 10:04	2011-08-9	Show	GitHub Exploit DB Packet Storm

196116	4.7	警告	マイクロソフト	-	複数の Microsoft Windows におけるサービス運用妨害 (リブート) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1971	2011-08-25 10:03	2011-08-9	Show	GitHub Exploit DB Packet Storm

196117	4.3	警告	マイクロソフト	-	Microsoft Visual Studio および Report Viewer におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1976	2011-08-25 10:00	2011-08-9	Show	GitHub Exploit DB Packet Storm

196118	4.3	警告	マイクロソフト	-	Microsoft .NET Framework における任意のファイルを読まれる脆弱性	CWE-200 情報漏えい	CVE-2011-1977	2011-08-25 09:54	2011-08-9	Show	GitHub Exploit DB Packet Storm

196119	7.1	危険	マイクロソフト	-	Microsoft Windows の RDP 実装におけるサービス運用妨害 (リブート) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1968	2011-08-25 09:50	2011-08-9	Show	GitHub Exploit DB Packet Storm

196120	7.1	危険	マイクロソフト	-	Microsoft Windows の TCP/IP スタック内にある Tcpip.sys におけるサービス運用妨害 (リブート) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1965	2011-08-24 10:20	2011-08-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Sept. 22, 2024, 5:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1941	5.3	MEDIUM Network	-	-	The WooCommerce Multiple Free Gift plugin for WordPress is vulnerable to gift manipulation in all versions up to, and including, 1.2.3. This is due to plugin not enforcing server-side checks on the p…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2022-3459	2024-09-14 12:15	2024-09-14	Show	GitHub Exploit DB Packet Storm

1942	8.1	HIGH Network	openbsd redhat suse debian canonical amazon netapp freebsd netbsd	openssh openshift_container_platform enterprise_linux enterprise_linux_for_arm_64 enterprise_linux_for_power_little_endian enterprise_linux_for_ibm_z_systems enterprise_linux_for_po…	A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to handle some signals in an unsafe manner. An unauthenticated, remote a…	CWE-362 Race Condition	CVE-2024-6387	2024-09-14 12:15	2024-07-1	Show	GitHub Exploit DB Packet Storm

1943	7.5	HIGH Network	gnu redhat	glibc enterprise_linux	A flaw was found in the GNU C Library. A recent fix for CVE-2023-4806 introduced the potential for a memory leak, which may result in an application crash.	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2023-5156	2024-09-14 12:15	2023-09-26	Show	GitHub Exploit DB Packet Storm

1944	-		-	-	A flaw was found in the RPC library APIs of libvirt. The RPC server deserialization code allocates memory for arrays before the non-negative length check is performed by the C API entry points. Passi…	CWE-789 Memory Allocation with Excessive Size Value	CVE-2024-2494	2024-09-14 09:15	2024-03-21	Show	GitHub Exploit DB Packet Storm

1945	-		-	-	A NULL pointer dereference flaw was found in the udevConnectListAllInterfaces() function in libvirt. This issue can occur when detaching a host interface while at the same time collecting the list of…	CWE-476 NULL Pointer Dereference	CVE-2024-2496	2024-09-14 09:15	2024-03-18	Show	GitHub Exploit DB Packet Storm

1946	-		-	-	A flaw was found in the Open Virtual Network (OVN). In OVN clusters where BFD is used between hypervisors for high availability, an attacker can inject specially crafted BFD packets from inside unpri…	-	CVE-2024-2182	2024-09-14 09:15	2024-03-13	Show	GitHub Exploit DB Packet Storm

1947	-		-	-	An off-by-one error flaw was found in the udevListInterfacesByStatus() function in libvirt when the number of interfaces exceeds the size of the `names` array. This issue can be reproduced by sending…	-	CVE-2024-1441	2024-09-14 09:15	2024-03-11	Show	GitHub Exploit DB Packet Storm

1948	7.5	HIGH Network	linux redhat debian	linux_kernel enterprise_linux enterprise_linux_server_aus enterprise_linux_server_tus enterprise_linux_eus codeready_linux_builder_eus enterprise_linux_for_power_little_endian_eus	A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to …	CWE-476 NULL Pointer Dereference	CVE-2023-6536	2024-09-14 09:15	2024-02-8	Show	GitHub Exploit DB Packet Storm

1949	6.5	MEDIUM Network	linux redhat	linux_kernel enterprise_linux	A Marvin vulnerability side-channel leakage was found in the RSA decryption operation in the Linux Kernel. This issue may allow a network attacker to decrypt ciphertexts or forge signatures, limiting…	CWE-203 Information Exposure Through Discrepancy	CVE-2023-6240	2024-09-14 09:15	2024-02-4	Show	GitHub Exploit DB Packet Storm

1950	7.8	HIGH Local	linux redhat	linux_kernel enterprise_linux	A null pointer dereference flaw was found in the hugetlbfs_fill_super function in the Linux kernel hugetlbfs (HugeTLB pages) functionality. This issue may allow a local user to crash the system or po…	CWE-476 NULL Pointer Dereference	CVE-2024-0841	2024-09-14 09:15	2024-01-28	Show	GitHub Exploit DB Packet Storm