Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Sept. 30, 2024, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 196631 | 2.6 | 注意 | KENT-WEB | - | WEB FORUM におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-3983 | 2011-10-25 13:43 | 2011-10-11 | Show | GitHub Exploit DB Packet Storm |
| 196632 | 5 | 警告 | KENT-WEB | - | WEB FORUM におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-3383 | 2011-10-25 13:43 | 2011-10-11 | Show | GitHub Exploit DB Packet Storm |
| 196633 | 6.8 | 警告 | アップル | - | Apple Mac OS X の MediaKit における任意のコードを実行される脆弱性 |
CWE-119
バッファエラー |
CVE-2011-3217 | 2011-10-25 11:50 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 196634 | 2.1 | 注意 | アップル | - | Apple Mac OS X の kernel におけるアクセス制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-3216 | 2011-10-25 11:49 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 196635 | 2.1 | 注意 | アップル | - | Apple Mac OS X の kernel におけるアクセス制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-3215 | 2011-10-25 11:48 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 196636 | 4.6 | 警告 | アップル | - | Apple Mac OS X の IOGraphics におけるパスワード要求を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-3214 | 2011-10-25 11:48 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 196637 | 7.6 | 危険 | アップル | - | Apple Mac OS X の File Systems コンポーネントにおける WebDAV セッションをハイジャックされる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-3213 | 2011-10-25 11:47 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 196638 | 4.6 | 警告 | アップル | - | Apple Mac OS X の CoreProcesses コンポーネントにおけるアクセス制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-0260 | 2011-10-25 11:45 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 196639 | 5 | 警告 | アップル | - | Apple Mac OS X の CFNetwork におけるユーザを追跡可能な脆弱性 |
CWE-200
情報漏えい |
CVE-2011-0231 | 2011-10-25 11:44 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 196640 | 7.5 | 危険 | アップル | - | Apple Mac OS X の Apple Type Services (ATS) におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2011-0230 | 2011-10-25 11:44 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:Oct. 1, 2024, 5:51 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 481 | 8.1 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can perform configuration changes of the firewall services, including packet forwarding or NAT through the FW_NAT.IN_IP environment variable which can lead to a DoS. Update |
NVD-CWE-noinfo
|
CVE-2024-43390 | 2024-09-28 04:37 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
| 482 | 8.1 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP … Update |
NVD-CWE-noinfo
|
CVE-2024-43393 | 2024-09-28 04:36 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
| 483 | 8.1 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can perform configuration changes of the ospf service through OSPF_INTERFACE.SIMPLE_KEY, OSPF_INTERFACE.DIGEST_KEY environment variables which can lead to a DoS. Update |
NVD-CWE-noinfo
|
CVE-2024-43389 | 2024-09-28 04:36 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
| 484 | 8.8 |
HIGH
Network |
apache | airflow_sqoop_provider | Apache Airflow Sqoop Provider, versions before 4.0.0, is affected by a vulnerability that allows an attacker pass parameters with the connections, which makes it possible to implement RCE attacks via… Update |
CWE-20
Improper Input Validation |
CVE-2023-27604 | 2024-09-28 04:35 | 2023-08-28 | Show | GitHub Exploit DB Packet Storm |
| 485 | 8.8 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can read and write files as root due to improper neutralization of special elements in the variable EMAIL_RELAY_PASSWORD in mGuard devices. Update |
CWE-78
OS Command |
CVE-2024-43387 | 2024-09-28 04:33 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
| 486 | 8.8 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable EMAIL_NOTIFICATION.TO in mGuard devices. Update |
CWE-78
OS Command |
CVE-2024-43386 | 2024-09-28 04:33 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
| 487 | 8.8 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable PROXY_HTTP_PORT in mGuard devices. Update |
CWE-78
OS Command |
CVE-2024-43385 | 2024-09-28 04:33 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
| 488 | 8.8 |
HIGH
Network |
phoenixcontact |
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua… |
A low privileged remote attacker with write permissions can reconfigure the SNMP service due to improper input validation. Update |
NVD-CWE-noinfo
|
CVE-2024-43388 | 2024-09-28 04:32 | 2024-09-10 | Show | GitHub Exploit DB Packet Storm |
| 489 | 7.5 |
HIGH
Network
redhat |
cryptography.io couchbase
ansible_automation_platform |
enterprise_linux update_infrastructure cryptography couchbase_server
A flaw was found in the python-cryptography package. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confi…
Update
|
CWE-203
|
Information Exposure Through Discrepancy
CVE-2023-50782
|
2024-09-28 04:15 |
2024-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 490 | 7.5 |
HIGH
Network
zoom
|
virtual_desktop_infrastructure |
zoom
Uncontrolled resource consumption in Zoom Team Chat for Zoom Desktop Client for Windows and Zoom VDI Client may allow an unauthenticated user to conduct a disclosure of information via network access.
Update
|
NVD-CWE-noinfo
|
CVE-2023-39203
|
2024-09-28 04:15 |
2023-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|