Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Oct. 5, 2024, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
196901	4.3	警告	オラクル	-	Oracle Industry Applications の Health Sciences - Oracle Clinical、Remote Data Capture における脆弱性	CWE-noinfo 情報不足	CVE-2011-2309	2011-10-27 10:07	2011-10-18	Show	GitHub Exploit DB Packet Storm

196902	6.8	警告	オラクル	-	Oracle Virtualization の Sun Ray コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-3538	2011-10-27 10:06	2011-10-18	Show	GitHub Exploit DB Packet Storm

196903	5.5	警告	オラクル	-	Oracle Linux の Oracle Validated 処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2011-2306	2011-10-27 10:05	2011-10-19	Show	GitHub Exploit DB Packet Storm

196904	2.1	注意	オラクル	-	複数の Oracle Sun 製品における Integrated Lights Out Manager CLI の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2011-3522	2011-10-27 10:04	2011-10-18	Show	GitHub Exploit DB Packet Storm

196905	5.5	警告	オラクル	-	Oracle PeopleSoft Enterprise HRMS における JPM の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2011-3533	2011-10-27 10:03	2011-10-18	Show	GitHub Exploit DB Packet Storm

196906	4	警告	オラクル	-	Oracle PeopleSoft Enterprise HRMS における Talent Acquisition Manager の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2011-3529	2011-10-27 10:01	2011-10-18	Show	GitHub Exploit DB Packet Storm

196907	5.5	警告	オラクル	-	Oracle PeopleSoft Enterprise HRMS における Candidate Gateway の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2011-3527	2011-10-27 10:01	2011-10-18	Show	GitHub Exploit DB Packet Storm

196908	5.5	警告	オラクル	-	Oracle PeopleSoft Enterprise PeopleTools におけるセキュリティの処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2011-2315	2011-10-27 09:59	2011-10-18	Show	GitHub Exploit DB Packet Storm

196909	2.8	注意	オラクル	-	Oracle PeopleSoft Enterprise PeopleTools における Personalization の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2011-3520	2011-10-27 09:59	2011-10-18	Show	GitHub Exploit DB Packet Storm

196910	4	警告	オラクル	-	Oracle PeopleSoft Enterprise HRMS における eDevelopment の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2011-3530	2011-10-27 09:58	2011-10-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Oct. 5, 2024, 8:11 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
141	5.3	MEDIUM Network	givewp	givewp	The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.15.1. This is due to the plugin utilizing Symf… Update	CWE-209 Information Exposure Through an Error Message	CVE-2024-6551	2024-10-5 00:57	2024-08-29	Show	GitHub Exploit DB Packet Storm

142	4.4	MEDIUM Local	zoom	vdi_windows_meeting_clients zoom meeting_software_development_kit rooms	Improper authentication in some Zoom clients may allow a privileged user to conduct a disclosure of information via local access. Update	NVD-CWE-noinfo	CVE-2024-24698	2024-10-5 00:54	2024-02-14	Show	GitHub Exploit DB Packet Storm

143	6.5	MEDIUM Network	zoom	meeting_software_development_kit zoom vdi_windows_meeting_clients	Improper input validation in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows may allow an authenticated user to conduct a disclosure of information via … Update	NVD-CWE-noinfo	CVE-2024-24695	2024-10-5 00:44	2024-02-14	Show	GitHub Exploit DB Packet Storm

144	9.8	CRITICAL Network	zoom	meeting_software_development_kit zoom vdi_windows_meeting_clients rooms	Improper input validation in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows may allow an unauthenticated user to conduct an escalation of privilege via… Update	NVD-CWE-noinfo	CVE-2024-24691	2024-10-5 00:43	2024-02-14	Show	GitHub Exploit DB Packet Storm

145	6.7	MEDIUM Local	linuxfoundation rdkcentral google openwrt	yocto rdk-b android openwrt	In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed… Update	CWE-787 Out-of-bounds Write	CVE-2023-20832	2024-10-5 00:35	2023-09-4	Show	GitHub Exploit DB Packet Storm

146	7.5	HIGH Network	oracle	weblogic_server	Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Security). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.1.0 and 12.2.1.… Update	NVD-CWE-noinfo	CVE-2017-10271	2024-10-5 00:35	2017-10-20	Show	GitHub Exploit DB Packet Storm

147	4.7	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid race between dcn35_set_drr() and dc_state_destruct() dc_state_destruct() nulls the resource context of the… Update	CWE-476 NULL Pointer Dereference	CVE-2024-46850	2024-10-5 00:30	2024-09-27	Show	GitHub Exploit DB Packet Storm

148	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel: Limit the period on Haswell Running the ltp test cve-2015-3290 concurrently reports the following warnings. perf… Update	NVD-CWE-noinfo	CVE-2024-46848	2024-10-5 00:23	2024-09-27	Show	GitHub Exploit DB Packet Storm

149	-		-	-	IDURAR is open source ERP CRM accounting invoicing software. The vulnerability exists in the corePublicRouter.js file. Using the reference usage here, it is identified that the public endpoint is acc… New	CWE-22 CWE-23 Path Traversal Relative Path Traversal	CVE-2024-47769	2024-10-5 00:15	2024-10-5	Show	GitHub Exploit DB Packet Storm

150	-		-	-	Lif Authentication Server is a server used by Lif to do various tasks regarding Lif accounts. This vulnerability has to do with the account recovery system where there does not appear to be a check t… New	CWE-287 Improper Authentication	CVE-2024-47768	2024-10-5 00:15	2024-10-5	Show	GitHub Exploit DB Packet Storm