Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Oct. 4, 2024, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
197051 9.3 危険 マイクロソフト - 複数の Microsoft Excel 製品における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1989 2011-10-20 16:17 2011-09-13 Show GitHub Exploit DB Packet Storm
197052 9.3 危険 マイクロソフト - 複数の Microsoft Excel 製品における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-1990 2011-10-20 16:17 2011-09-13 Show GitHub Exploit DB Packet Storm
197053 9.3 危険 マイクロソフト - Microsoft Windows における権限昇格の脆弱性 CWE-Other
その他 		CVE-2011-1991 2011-10-20 16:17 2011-09-13 Show GitHub Exploit DB Packet Storm
197054 9.3 危険 アドビシステムズ - Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2442 2011-10-20 16:14 2011-09-13 Show GitHub Exploit DB Packet Storm
197055 9.3 危険 アドビシステムズ - Adobe Reader および Acrobat の CoolType.dll におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-2441 2011-10-20 16:14 2011-09-13 Show GitHub Exploit DB Packet Storm
197056 9.3 危険 アドビシステムズ - Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2440 2011-10-20 16:13 2011-09-13 Show GitHub Exploit DB Packet Storm
197057 9.3 危険 アドビシステムズ - Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2439 2011-10-20 16:12 2011-09-13 Show GitHub Exploit DB Packet Storm
197058 - - BlueZ Project - BlueZ-hcidump におけるヒープオーバーフローの脆弱性 - CVE-2011-3334 2011-10-19 11:23 2011-10-13 Show GitHub Exploit DB Packet Storm
197059 - - VideoLAN - VLC Media Player に脆弱性 - CVE-2011-3333 2011-10-19 11:22 2011-10-13 Show GitHub Exploit DB Packet Storm
197060 6.4 警告 ヒューレット・パッカード - HP Onboard Administrator におけるアクセス制限を回避される脆弱性 CWE-noinfo
情報不足 		CVE-2011-3155 2011-10-19 11:20 2011-10-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Oct. 4, 2024, 8:12 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
481 7.5 HIGH
Network 		nokia service_router_linux
service_router_operating_system 		Nokia Service Router Operating System (SR OS) 22.10 and SR Linux, when error-handling update-fault-tolerance is not enabled, mishandle BGP path attributes. Update NVD-CWE-noinfo
CVE-2023-41376 2024-10-3 00:35 2023-08-30 Show GitHub Exploit DB Packet Storm
482 7.8 HIGH
Local 		pagekit pagekit An issue in Pagekit pagekit v.1.0.18 alows a remote attacker to execute arbitrary code via thedownloadAction and updateAction functions in UpdateController.php Update NVD-CWE-noinfo
CVE-2023-41005 2024-10-3 00:35 2023-08-29 Show GitHub Exploit DB Packet Storm
483 9.8 CRITICAL
Network 		atlassian crowd Affected versions of Atlassian Crowd allow an attacker to authenticate as the crowd application via security misconfiguration and subsequent ability to call privileged endpoints in Crowd's REST API u… Update NVD-CWE-noinfo
CVE-2022-43782 2024-10-3 00:35 2022-11-17 Show GitHub Exploit DB Packet Storm
484 9.8 CRITICAL
Network 		atlassian bitbucket There is a command injection vulnerability using environment variables in Bitbucket Server and Data Center. An attacker with permission to control their username can exploit this issue to execute arb… Update CWE-77
Command Injection 		CVE-2022-43781 2024-10-3 00:35 2022-11-17 Show GitHub Exploit DB Packet Storm
485 8.8 HIGH
Network 		atlassian jira_align The MasterUserEdit API in Atlassian Jira Align Server before version 10.109.2 allows An authenticated attacker with the People role permission to use the MasterUserEdit API to modify any users role t… Update CWE-276
Incorrect Default Permissions  		CVE-2022-36803 2024-10-3 00:35 2022-10-14 Show GitHub Exploit DB Packet Storm
486 5.3 MEDIUM
Adjacent 		synology active_backup_for_business_agent Missing encryption of sensitive data vulnerability in login component in Synology Active Backup for Business Agent before 2.7.0-3221 allows adjacent man-in-the-middle attackers to obtain user credent… Update CWE-311
Missing Encryption of Sensitive Data 		CVE-2023-52950 2024-10-3 00:26 2024-09-26 Show GitHub Exploit DB Packet Storm
487 5.5 MEDIUM
Local 		synology active_backup_for_business_agent Missing authentication for critical function vulnerability in proxy settings functionality in Synology Active Backup for Business Agent before 2.7.0-3221 allows local users to obtain user credential … Update CWE-306
Missing Authentication for Critical Function 		CVE-2023-52949 2024-10-3 00:26 2024-09-26 Show GitHub Exploit DB Packet Storm
488 5.0 MEDIUM
Local 		synology active_backup_for_business_agent Missing encryption of sensitive data vulnerability in settings functionality in Synology Active Backup for Business Agent before 2.7.0-3221 allows local users to obtain user credential via unspecifie… Update CWE-311
Missing Encryption of Sensitive Data 		CVE-2023-52948 2024-10-3 00:26 2024-09-26 Show GitHub Exploit DB Packet Storm
489 3.3 LOW
Local 		synology active_backup_for_business_agent Missing authentication for critical function vulnerability in logout functionality in Synology Active Backup for Business Agent before 2.6.3-3101 allows local users to logout the client via unspecifi… Update CWE-306
Missing Authentication for Critical Function 		CVE-2023-52947 2024-10-3 00:26 2024-09-26 Show GitHub Exploit DB Packet Storm
490 - - - DataDump is a MediaWiki extension that provides dumps of wikis. Several interface messages are unescaped (more specifically, (datadump-table-column-queued), (datadump-table-column-in-progress), (data… New CWE-79
CWE-80
Cross-site Scripting
Basic XSS 		CVE-2024-47612 2024-10-3 00:15 2024-10-3 Show GitHub Exploit DB Packet Storm