Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Oct. 31, 2024, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
197871 3.6 注意 オラクル - Oracle Solaris における TCP/IP の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2012-0109 2012-01-23 10:09 2012-01-17 Show GitHub Exploit DB Packet Storm
197872 4.9 警告 オラクル - Oracle Solaris における Kernel の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2012-0103 2012-01-23 10:04 2012-01-17 Show GitHub Exploit DB Packet Storm
197873 5 警告 オラクル - Oracle Solaris における Network の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2012-0096 2012-01-23 10:04 2012-01-17 Show GitHub Exploit DB Packet Storm
197874 6.8 警告 オラクル - Oracle Solaris における Kerberos の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2012-0100 2012-01-23 10:03 2012-01-17 Show GitHub Exploit DB Packet Storm
197875 7.8 危険 オラクル - Oracle Solaris における TCP/IP の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2012-0094 2012-01-23 09:59 2012-01-17 Show GitHub Exploit DB Packet Storm
197876 9.3 危険 7-Technologies - 7-Technologies Interactive Graphical SCADA System における権限を取得される脆弱性 CWE-Other
その他
CVE-2011-4053 2012-01-20 16:50 2012-01-19 Show GitHub Exploit DB Packet Storm
197877 2.1 注意 DELL EMC (旧 EMC Corporation) - EMC SourceOne Email Management の Web 検索機能における重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理
CVE-2011-4142 2012-01-20 16:49 2012-01-19 Show GitHub Exploit DB Packet Storm
197878 4.6 警告 IBM - IBM WebSphere Application Server の iscdeploy におけるファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-1376 2012-01-20 16:48 2012-01-18 Show GitHub Exploit DB Packet Storm
197879 4 警告 オラクル - Oracle JD Edwards Products の JD Edwards EnterpriseOne Tools コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2011-2317 2012-01-20 16:45 2012-01-17 Show GitHub Exploit DB Packet Storm
197880 4 警告 オラクル - Oracle JD Edwards Products の JD Edwards EnterpriseOne Tools コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2011-3524 2012-01-20 16:44 2012-01-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Oct. 31, 2024, 1:08 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
701 7.8 HIGH
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ext4: drop ppath from ext4_ext_replay_update_ex() to avoid double-free When calling ext4_force_split_extent_at() in ext4_ext_repl… Update CWE-415
 Double Free
CVE-2024-49983 2024-10-30 01:23 2024-10-22 Show GitHub Exploit DB Packet Storm
702 7.8 HIGH
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Prevent out of bounds access in performance query extensions Check that the number of perfmons userspace is passing in t… Update CWE-787
 Out-of-bounds Write
CVE-2024-49984 2024-10-30 01:22 2024-10-22 Show GitHub Exploit DB Packet Storm
703 7.5 HIGH
Network
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: net: ethernet: lantiq_etop: fix memory disclosure When applying padding, the buffer is not zeroed, which results in memory disclo… Update CWE-212
 Improper Removal of Sensitive Information Before Storage or Transfer
CVE-2024-49997 2024-10-30 01:20 2024-10-22 Show GitHub Exploit DB Packet Storm
704 5.5 MEDIUM
Local
intel oneapi Improper access control in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.2 may allow an authenticated user to potentially enable denial of service via local access. Update NVD-CWE-noinfo
CVE-2023-28715 2024-10-30 01:16 2024-02-14 Show GitHub Exploit DB Packet Storm
705 7.5 HIGH
Network
- - The FileOrganizer – Manage WordPress and Website Files plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the "fileorganizer_ajax_handler" function in… New CWE-434
 Unrestricted Upload of File with Dangerous Type 
CVE-2024-7985 2024-10-30 01:15 2024-10-30 Show GitHub Exploit DB Packet Storm
706 - - - An Open-Redirect vulnerability exists in PingAM where well-crafted requests may cause improper validation of redirect URLs. This could allow an attacker to redirect end-users to malicious sites under… New - CVE-2024-25566 2024-10-30 01:15 2024-10-30 Show GitHub Exploit DB Packet Storm
707 - - - Organization admins can delete pending invites created in an organization they are not part of. New - CVE-2024-10452 2024-10-30 01:15 2024-10-30 Show GitHub Exploit DB Packet Storm
708 6.1 MEDIUM
Network
rollupjs rollup Rollup is a module bundler for JavaScript. Versions prior to 2.79.2, 3.29.5, and 4.22.4 are susceptible to a DOM Clobbering vulnerability when bundling scripts with properties from `import.meta` (e.g… Update CWE-79
Cross-site Scripting
CVE-2024-47068 2024-10-30 01:15 2024-09-24 Show GitHub Exploit DB Packet Storm
709 7.8 HIGH
Local
intel software_development_kit_for_opencl Uncontrolled search path in some Intel(R) SDK for OpenCL(TM) Applications software may allow an authenticated user to potentially enable escalation of privilege via local access. Update CWE-427
 Uncontrolled Search Path Element
CVE-2023-36493 2024-10-30 01:15 2024-02-14 Show GitHub Exploit DB Packet Storm
710 7.8 HIGH
Local
intel oneapi Uncontrolled search path in some Intel(R) oneAPI Toolkit and component software installers before version 4.3.2 may allow an authenticated user to potentially enable escalation of privilege via local… Update CWE-427
 Uncontrolled Search Path Element
CVE-2023-32618 2024-10-30 01:15 2024-02-14 Show GitHub Exploit DB Packet Storm