Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Oct. 30, 2024, 10:01 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
197821 5 警告 Apache Software Foundation - Apache Tomcat におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-4084 2012-01-4 16:50 2011-12-30 Show GitHub Exploit DB Packet Storm
197822 5 警告 Google - Google V8 におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 CWE-20
不適切な入力確認
CVE-2011-5037 2012-01-4 16:48 2011-12-30 Show GitHub Exploit DB Packet Storm
197823 5 警告 Christian Neukirchen - Rack におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 CWE-20
不適切な入力確認
CVE-2011-5036 2012-01-4 16:48 2011-12-30 Show GitHub Exploit DB Packet Storm
197824 7.8 危険 Apache Software Foundation - Apache Geronimo におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 CWE-20
不適切な入力確認
CVE-2011-5034 2012-01-4 16:47 2011-12-30 Show GitHub Exploit DB Packet Storm
197825 7.8 危険 JRuby - JRuby におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 CWE-20
不適切な入力確認
CVE-2011-4838 2012-01-4 16:43 2011-12-28 Show GitHub Exploit DB Packet Storm
197826 5 警告 Plone Foundation - Plone におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 CWE-20
不適切な入力確認
CVE-2011-4462 2012-01-4 16:38 2011-12-30 Show GitHub Exploit DB Packet Storm
197827 9.3 危険 マイクロソフト - Microsoft .NET Framework における任意のユーザアカウントへアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-3417 2012-01-4 16:34 2011-12-29 Show GitHub Exploit DB Packet Storm
197828 8.5 危険 マイクロソフト - Microsoft .NET Framework における任意のユーザアカウントへアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-3416 2012-01-4 16:33 2011-12-29 Show GitHub Exploit DB Packet Storm
197829 9.3 危険 Google
Hex-Rays
- IDA Pro の IDAPython プラグインにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2011-4783 2011-12-28 16:47 2011-07-27 Show GitHub Exploit DB Packet Storm
197830 7.2 危険 NVIDIA - NVIDIA Stereoscopic 3D ドライバにおける権限を取得される脆弱性 CWE-20
不適切な入力確認
CVE-2011-4784 2011-12-28 16:44 2011-12-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Oct. 30, 2024, 6:01 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
491 8.8 HIGH
Network
dlink dir-890l_firmware D-Link DIR-890L 1.20b01 allows attackers to execute arbitrary code due to the hardcoded option Wake-On-Lan for the parameter 'descriptor' at SetVirtualServerSettings.php Update NVD-CWE-noinfo
CVE-2022-29778 2024-10-29 06:35 2022-06-4 Show GitHub Exploit DB Packet Storm
492 9.8 CRITICAL
Network
thekelleys dnsmasq Dnsmasq 2.86 has a heap-based buffer overflow in print_mac (called from log_packet and dhcp_reply). NOTE: the vendor's position is that CVE-2021-45951 through CVE-2021-45957 "do not represent real vu… Update CWE-787
 Out-of-bounds Write
CVE-2021-45956 2024-10-29 06:35 2022-01-1 Show GitHub Exploit DB Packet Storm
493 4.8 MEDIUM
Network
adtran netvanta_3120_firmware Multiple stored cross-site scripting (XSS) vulnerabilities on AdTran NetVanta 3120 18.01.01.00.E devices allow remote attackers to inject arbitrary JavaScript, as demonstrated by /mainPassword.html, … Update CWE-79
Cross-site Scripting
CVE-2024-31971 2024-10-29 06:15 2024-07-25 Show GitHub Exploit DB Packet Storm
494 - - - Directory Traversal vulnerability in D-Link DAP-1650 Firmware v.1.03 allows a local attacker to escalate privileges via the hedwig.cgi component. Update - CVE-2024-40505 2024-10-29 06:15 2024-07-17 Show GitHub Exploit DB Packet Storm
495 - - - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-37295. Reason: This candidate is a reservation duplicate of CVE-2024-37295. Notes: All CVE users should reference CVE-2024-3729… Update - CVE-2024-36811 2024-10-29 06:15 2024-06-8 Show GitHub Exploit DB Packet Storm
496 - - - The TELNET service of AdTran NetVanta 3120 18.01.01.00.E devices is enabled by default, and has default credentials for a root-level account. Update - CVE-2024-28093 2024-10-29 06:15 2024-03-26 Show GitHub Exploit DB Packet Storm
497 - - - ncurses 6.4-20230610 has a NULL pointer dereference in tgetstr in tinfo/lib_termcap.c. NOTE: Multiple third parties have disputed this indicating upstream does not regard it as a security issue. Update - CVE-2023-45918 2024-10-29 06:15 2024-02-17 Show GitHub Exploit DB Packet Storm
498 - - - Android before 2024-10-05 on Google Pixel devices allows privilege escalation in the ABL component, A-329163861. Update - CVE-2024-47031 2024-10-29 05:35 2024-10-25 Show GitHub Exploit DB Packet Storm
499 - - - Android before 2024-10-05 on Google Pixel devices allows information disclosure in the ACPM component, A-315191818. Update - CVE-2024-47030 2024-10-29 05:35 2024-10-25 Show GitHub Exploit DB Packet Storm
500 - - - An issue was discovered on certain GL-iNet devices, including MT6000, MT3000, MT2500, AXT1800, and AX1800 4.6.2. The params parameter in the call method of the /rpc endpoint is vulnerable to arbitrar… Update - CVE-2024-45262 2024-10-29 05:35 2024-10-25 Show GitHub Exploit DB Packet Storm