You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
|
Update Date":Oct. 1, 2024, 6 p.m.
No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
---|---|---|---|---|---|---|---|---|---|---|---|
196481 | 7.8 | 危険 | シスコシステムズ | - | 複数の Cisco 製品におけるサービス運用妨害 (デバイスリロード)の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2011-3301 | 2011-11-9 10:53 | 2011-10-5 | Show | GitHub Exploit DB Packet Storm |
196482 | 2.6 | 注意 | 株式会社スカイアークシステム | - | 複数のスカイアークシステム製品におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2011-3994 | 2011-11-8 17:29 | 2011-10-31 | Show | GitHub Exploit DB Packet Storm |
196483 | 4 | 警告 | 株式会社スカイアークシステム | - | 複数のスカイアークシステム製品におけるアクセス制限不備の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-3993 | 2011-11-8 17:29 | 2011-10-31 | Show | GitHub Exploit DB Packet Storm |
196484 | 10 | 危険 | IBM | - | IBM WebSphere Commerce における脆弱性 |
CWE-287
不適切な認証 |
CVE-2011-3577 | 2011-11-8 14:22 | 2011-09-20 | Show | GitHub Exploit DB Packet Storm |
196485 | 4.3 | 警告 | Wireshark | - | Wireshark の OpenSafety 解析部におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2011-3484 | 2011-11-8 14:21 | 2011-09-7 | Show | GitHub Exploit DB Packet Storm |
196486 | 4.3 | 警告 | Wireshark | - | Wireshark におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 |
CWE-119
バッファエラー |
CVE-2011-3483 | 2011-11-8 14:21 | 2011-09-7 | Show | GitHub Exploit DB Packet Storm |
196487 | 4.3 | 警告 | Wireshark | - | Wireshark の CSN.1 解析部におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2011-3482 | 2011-11-8 14:19 | 2011-09-7 | Show | GitHub Exploit DB Packet Storm |
196488 | 6.9 | 警告 | Wireshark | - | Wireshark における権限を取得される脆弱性 |
CWE-Other
その他 |
CVE-2011-3360 | 2011-11-8 14:18 | 2011-09-7 | Show | GitHub Exploit DB Packet Storm |
196489 | 4.3 | 警告 | 株式会社IBC岩手放送 | - | いわてポータルバーにおいて任意のスクリプトが実行される脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-3999 | 2011-11-8 12:01 | 2011-11-8 | Show | GitHub Exploit DB Packet Storm |
196490 | 7.8 | 危険 | シスコシステムズ | - | Cisco IOS および IOS XE におけるサービス運用妨害 (デバイスリロードまたはハング) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2011-0946 | 2011-11-8 10:28 | 2011-09-28 | Show | GitHub Exploit DB Packet Storm |
Update Date:Oct. 2, 2024, 5:12 a.m.
No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
---|---|---|---|---|---|---|---|---|---|---|---|
591 | 8.8 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can read and write files as root due to improper neutralization of special elements in the variable EMAIL_RELAY_PASSWORD in mGuard devices. |
CWE-78
OS Command |
CVE-2024-43387 | 2024-09-28 04:33 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
592 | 8.8 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable EMAIL_NOTIFICATION.TO in mGuard devices. |
CWE-78
OS Command |
CVE-2024-43386 | 2024-09-28 04:33 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
593 | 8.8 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable PROXY_HTTP_PORT in mGuard devices. |
CWE-78
OS Command |
CVE-2024-43385 | 2024-09-28 04:33 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
594 | 8.8 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker with write permissions can reconfigure the SNMP service due to improper input validation. |
NVD-CWE-noinfo
|
CVE-2024-43388 | 2024-09-28 04:32 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
595 | 7.5 |
HIGH
Network
redhat |
cryptography.io couchbase
ansible_automation_platform |
enterprise_linux update_infrastructure cryptography couchbase_server
A flaw was found in the python-cryptography package. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confi…
|
CWE-203
|
Information Exposure Through Discrepancy
CVE-2023-50782
|
2024-09-28 04:15 |
2024-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
596 | 7.5 |
HIGH
Network
zoom
|
virtual_desktop_infrastructure |
zoom
Uncontrolled resource consumption in Zoom Team Chat for Zoom Desktop Client for Windows and Zoom VDI Client may allow an unauthenticated user to conduct a disclosure of information via network access.
|
NVD-CWE-noinfo
|
CVE-2023-39203
|
2024-09-28 04:15 |
2023-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
597 | 7.5 |
HIGH
Network
zoom
|
zoom
|
Improper input validation in Zoom Desktop Client for Linux before version 5.15.10 may allow an unauthenticated user to conduct a denial of service via network access.
|
CWE-20
|
Improper Input Validation
CVE-2023-39208
|
2024-09-28 04:15 |
2023-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
598 | 7.8 |
HIGH
Local |
zoom |
rooms zoom |
Improper privilege management in Zoom Desktop Client for Windows and Zoom Rooms for Windows before 5.15.5 may allow an authenticated user to enable an information disclosure via local access. |
CWE-269
Improper Privilege Management |
CVE-2023-39211 | 2024-09-28 04:15 | 2023-08-9 | Show | GitHub Exploit DB Packet Storm |
599 | 6.5 |
MEDIUM
Network |
zoom | zoom | Improper input validation in Zoom Desktop Client for Windows before 5.15.5 may allow an authenticated user to enable an information disclosure via network access. |
CWE-20
Improper Input Validation |
CVE-2023-39209 | 2024-09-28 04:15 | 2023-08-9 | Show | GitHub Exploit DB Packet Storm |
600 | 6.5 |
MEDIUM
Network |
zoom |
zoom virtual_desktop_infrastructure rooms |
Client-side enforcement of server-side security in Zoom clients before 5.14.10 may allow an authenticated user to enable information disclosure via network access. |
NVD-CWE-Other
|
CVE-2023-36535 | 2024-09-28 04:15 | 2023-08-9 | Show | GitHub Exploit DB Packet Storm |