You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
|
Update Date":Oct. 1, 2024, 4:01 p.m.
No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
---|---|---|---|---|---|---|---|---|---|---|---|
196621 | 3.3 | 注意 | QNX Software Systems | - | QNX Neutrino RTOS の runtime linker におけるファイルを上書きされる脆弱性 |
CWE-59
リンク解釈の問題 |
CVE-2011-4060 | 2011-10-27 16:22 | 2011-10-18 | Show | GitHub Exploit DB Packet Storm |
196622 | 5 | 警告 | オラクル | - | Oracle Solaris における Remote Quota Server の処理に関する脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-3535 | 2011-10-27 16:18 | 2011-10-18 | Show | GitHub Exploit DB Packet Storm |
196623 | 7.8 | 危険 | オラクル | - | Oracle OpenSSO における認証の処理に関する脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-3517 | 2011-10-27 16:17 | 2011-10-18 | Show | GitHub Exploit DB Packet Storm |
196624 | 3.5 | 注意 | オラクル | - | Oracle Sun Products Suite の Oracle Communications Unified コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-3507 | 2011-10-27 16:16 | 2011-10-18 | Show | GitHub Exploit DB Packet Storm |
196625 | 4.3 | 警告 | オラクル | - | Oracle OpenSSO における認証の処理に関する脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-3506 | 2011-10-27 16:14 | 2011-10-18 | Show | GitHub Exploit DB Packet Storm |
196626 | 2.1 | 注意 | オラクル | - | Oracle Sun Products Suite の Oracle Communications Unified コンポーネントおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-2327 | 2011-10-27 16:14 | 2011-10-18 | Show | GitHub Exploit DB Packet Storm |
196627 | 7.5 | 危険 | オラクル | - | Oracle Sun Products Suite の Oracle Waveset コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-2310 | 2011-10-27 16:12 | 2011-10-18 | Show | GitHub Exploit DB Packet Storm |
196628 | 7.8 | 危険 | オラクル | - | Oracle Solaris 11 Express における iSCSI DataMover の処理に関する脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-3543 | 2011-10-27 16:11 | 2011-10-18 | Show | GitHub Exploit DB Packet Storm |
196629 | 4.9 | 警告 | オラクル | - | Oracle Solaris における Kernel/Performance Counter BackEnd Module の処理に関する脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-3542 | 2011-10-27 16:10 | 2011-10-18 | Show | GitHub Exploit DB Packet Storm |
196630 | 5.6 | 警告 | オラクル | - | Oracle Solaris における Process File System (procfs) の処理に関する脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-3515 | 2011-10-27 16:09 | 2011-10-18 | Show | GitHub Exploit DB Packet Storm |
Update Date:Oct. 1, 2024, 4:12 p.m.
No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
---|---|---|---|---|---|---|---|---|---|---|---|
531 | 5.7 |
MEDIUM
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can get access to CSRF tokens of higher privileged users which can be abused to mount CSRF attacks. |
CWE-212
Improper Removal of Sensitive Information Before Storage or Transfer |
CVE-2024-7698 | 2024-09-28 04:39 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
532 | 8.1 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_PORTFORWARDING.SR… |
NVD-CWE-noinfo
|
CVE-2024-43391 | 2024-09-28 04:38 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
533 | 8.1 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can perform configuration changes of the firewall services, including packet forwarding or NAT through the FW_NAT.IN_IP environment variable which can lead to a DoS. |
NVD-CWE-noinfo
|
CVE-2024-43390 | 2024-09-28 04:37 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
534 | 8.1 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP … |
NVD-CWE-noinfo
|
CVE-2024-43393 | 2024-09-28 04:36 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
535 | 8.1 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can perform configuration changes of the ospf service through OSPF_INTERFACE.SIMPLE_KEY, OSPF_INTERFACE.DIGEST_KEY environment variables which can lead to a DoS. |
NVD-CWE-noinfo
|
CVE-2024-43389 | 2024-09-28 04:36 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
536 | 8.8 |
HIGH
Network |
apache | airflow_sqoop_provider | Apache Airflow Sqoop Provider, versions before 4.0.0, is affected by a vulnerability that allows an attacker pass parameters with the connections, which makes it possible to implement RCE attacks via… |
CWE-20
Improper Input Validation |
CVE-2023-27604 | 2024-09-28 04:35 | 2023-08-28 | Show | GitHub Exploit DB Packet Storm |
537 | 8.8 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can read and write files as root due to improper neutralization of special elements in the variable EMAIL_RELAY_PASSWORD in mGuard devices. |
CWE-78
OS Command |
CVE-2024-43387 | 2024-09-28 04:33 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
538 | 8.8 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable EMAIL_NOTIFICATION.TO in mGuard devices. |
CWE-78
OS Command |
CVE-2024-43386 | 2024-09-28 04:33 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
539 | 8.8 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable PROXY_HTTP_PORT in mGuard devices. |
CWE-78
OS Command |
CVE-2024-43385 | 2024-09-28 04:33 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
540 | 8.8 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker with write permissions can reconfigure the SNMP service due to improper input validation. |
NVD-CWE-noinfo
|
CVE-2024-43388 | 2024-09-28 04:32 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |