Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Oct. 1, 2024, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 196491 | 7.8 | 危険 | シスコシステムズ | - | 複数の Cisco 製品におけるサービス運用妨害 (メモリ消費およびデバイスリロード、またはプロセス障害) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2011-2072 | 2011-11-8 10:27 | 2011-09-28 | Show | GitHub Exploit DB Packet Storm |
| 196492 | 7.8 | 危険 | シスコシステムズ | - | Cisco IOS および IOS XE におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2011-0945 | 2011-11-8 10:21 | 2011-09-28 | Show | GitHub Exploit DB Packet Storm |
| 196493 | 7.8 | 危険 | シスコシステムズ | - | Cisco IOS におけるサービス運用妨害 (デバイスリロード) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2011-0944 | 2011-11-8 10:20 | 2011-09-28 | Show | GitHub Exploit DB Packet Storm |
| 196494 | 7.8 | 危険 | シスコシステムズ | - | Cisco IOS および IOS XE におけるサービス運用妨害 (デバイスリロード) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-0939 | 2011-11-8 10:18 | 2011-09-28 | Show | GitHub Exploit DB Packet Storm |
| 196495 | 7.8 | 危険 | シスコシステムズ | - | Cisco IOS および IOS XE におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-3282 | 2011-11-7 16:39 | 2011-09-28 | Show | GitHub Exploit DB Packet Storm |
| 196496 | 7.8 | 危険 | シスコシステムズ | - | Cisco IOS における運用サービス妨害 (デバイスのリロードまたはハング) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-3281 | 2011-11-7 16:39 | 2011-09-28 | Show | GitHub Exploit DB Packet Storm |
| 196497 | 7.8 | 危険 | シスコシステムズ | - | Cisco IOS の NAT 実装におけるサービス運用妨害 (メモリ消費またはデバイスのリロード) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2011-3280 | 2011-11-7 16:38 | 2011-09-28 | Show | GitHub Exploit DB Packet Storm |
| 196498 | 7.8 | 危険 | シスコシステムズ | - | Cisco IOS の provider-edge MPLS NAT 実装におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2011-3279 | 2011-11-7 16:38 | 2011-09-28 | Show | GitHub Exploit DB Packet Storm |
| 196499 | 7.8 | 危険 | シスコシステムズ | - | Cisco IOS および IOS XE の NAT 実装におけるサービス運用妨害 (デバイスのリロード) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-3278 | 2011-11-7 16:37 | 2011-09-28 | Show | GitHub Exploit DB Packet Storm |
| 196500 | 7.8 | 危険 | シスコシステムズ | - | Cisco IOS の NAT 実装におけるサービス運用妨害 (デバイスのリロード) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-3277 | 2011-11-7 16:37 | 2011-09-28 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:Oct. 1, 2024, 8:12 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 581 | 9.8 |
CRITICAL
Network
zoom
|
zoom
|
Improper input validation in Zoom Desktop Client for Windows before 5.14.7 may allow an unauthenticated user to enable an escalation of privilege via network access.
|
NVD-CWE-noinfo
|
CVE-2023-39216
|
2024-09-28 05:15 |
2023-08-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 582 | 5.7 |
MEDIUM
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can get access to CSRF tokens of higher privileged users which can be abused to mount CSRF attacks. |
CWE-212
Improper Removal of Sensitive Information Before Storage or Transfer |
CVE-2024-7698 | 2024-09-28 04:39 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
| 583 | 8.8 |
HIGH
Network |
apache | airflow_sqoop_provider | Apache Airflow Sqoop Provider, versions before 4.0.0, is affected by a vulnerability that allows an attacker pass parameters with the connections, which makes it possible to implement RCE attacks via… |
CWE-20
Improper Input Validation |
CVE-2023-27604 | 2024-09-28 04:35 | 2023-08-28 | Show | GitHub Exploit DB Packet Storm |
| 584 | 8.8 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can read and write files as root due to improper neutralization of special elements in the variable EMAIL_RELAY_PASSWORD in mGuard devices. |
CWE-78
OS Command |
CVE-2024-43387 | 2024-09-28 04:33 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
| 585 | 8.8 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable EMAIL_NOTIFICATION.TO in mGuard devices. |
CWE-78
OS Command |
CVE-2024-43386 | 2024-09-28 04:33 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
| 586 | 8.8 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable PROXY_HTTP_PORT in mGuard devices. |
CWE-78
OS Command |
CVE-2024-43385 | 2024-09-28 04:33 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
| 587 | 8.8 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker with write permissions can reconfigure the SNMP service due to improper input validation. |
NVD-CWE-noinfo
|
CVE-2024-43388 | 2024-09-28 04:32 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
| 588 | 7.5 |
HIGH
Network
redhat |
cryptography.io couchbase
ansible_automation_platform |
enterprise_linux update_infrastructure cryptography couchbase_server
A flaw was found in the python-cryptography package. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confi…
|
CWE-203
|
Information Exposure Through Discrepancy
CVE-2023-50782
|
2024-09-28 04:15 |
2024-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 589 | 7.5 |
HIGH
Network
zoom
|
virtual_desktop_infrastructure |
zoom
Uncontrolled resource consumption in Zoom Team Chat for Zoom Desktop Client for Windows and Zoom VDI Client may allow an unauthenticated user to conduct a disclosure of information via network access.
|
NVD-CWE-noinfo
|
CVE-2023-39203
|
2024-09-28 04:15 |
2023-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 590 | 7.5 |
HIGH
Network
zoom
|
zoom
|
Improper input validation in Zoom Desktop Client for Linux before version 5.15.10 may allow an unauthenticated user to conduct a denial of service via network access.
|
CWE-20
|
Improper Input Validation
CVE-2023-39208
|
2024-09-28 04:15 |
2023-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|