Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Oct. 26, 2024, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
197901 7.8 危険 シスコシステムズ - Cisco IOS XR におけるサービス運用妨害 (line-card reload) の脆弱性 CWE-noinfo
情報不足 		CVE-2011-2549 2011-12-1 11:18 2011-07-20 Show GitHub Exploit DB Packet Storm
197902 9 危険 シスコシステムズ - Cisco SA 500 series security appliances における任意のコマンドを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2547 2011-12-1 11:17 2011-07-20 Show GitHub Exploit DB Packet Storm
197903 5 警告 シスコシステムズ - Cisco SA 500 series security appliances における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-2546 2011-12-1 11:14 2011-07-20 Show GitHub Exploit DB Packet Storm
197904 6.8 警告 マイクロソフト
シスコシステムズ		 - Cisco VPN Client における権限を取得される脆弱性 CWE-DesignError
CVE-2011-2678 2011-12-1 11:14 2011-07-7 Show GitHub Exploit DB Packet Storm
197905 7.8 危険 シスコシステムズ - Cisco IOS におけるサービス運用妨害 (デバイスリロード) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2064 2011-12-1 11:12 2011-07-6 Show GitHub Exploit DB Packet Storm
197906 5 警告 シスコシステムズ - Cisco IOS における Router Advertisement Guarding 機能が回避される脆弱性 CWE-16
環境設定 		CVE-2011-2395 2011-12-1 11:12 2011-06-9 Show GitHub Exploit DB Packet Storm
197907 7.2 危険 マイクロソフト
シスコシステムズ		 - Cisco AnyConnect Secure Mobility Client における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2041 2011-12-1 11:11 2011-06-1 Show GitHub Exploit DB Packet Storm
197908 10 危険 シスコシステムズ - Cisco Network Registrar におけるアクセス権を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2011-2024 2011-12-1 11:11 2011-06-1 Show GitHub Exploit DB Packet Storm
197909 1.5 注意 シスコシステムズ - Cisco Unified IP Phones 7900 デバイスにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1637 2011-12-1 11:10 2011-06-1 Show GitHub Exploit DB Packet Storm
197910 10 危険 シスコシステムズ - Cisco Media Processing Software におけるアクセス権を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2011-1623 2011-12-1 11:08 2011-06-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Oct. 27, 2024, 5:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
231 - - - OvalEdge 5.2.8.0 and earlier is affected by an Account Takeover vulnerability via a POST request to /profile/updateProfile via the userId and email parameters. Authentication is required. New - CVE-2022-30355 2024-10-26 01:15 2024-10-26 Show GitHub Exploit DB Packet Storm
232 - - - OvalEdge 5.2.8.0 and earlier is affected by a Sensitive Data Exposure vulnerability via a GET request to /user/getUserWithTeam. Authentication is required. The information disclosed is associated wit… New - CVE-2022-30354 2024-10-26 01:15 2024-10-26 Show GitHub Exploit DB Packet Storm
233 4.6 MEDIUM
Network 		umbraco umbraco_cms Umbraco, a free and open source .NET content management system, has a remote code execution issue in versions on the 13.x branch prior to 13.5.2, 10.x prior to 10.8.7, and 8.x prior to 8.18.15. There… Update CWE-79
Cross-site Scripting 		CVE-2024-48927 2024-10-26 01:15 2024-10-23 Show GitHub Exploit DB Packet Storm
234 - - - Cross Site Scripting vulnerability in JavaScript Library jquery-ui v.1.13.1 allows a remote attacker to obtain sensitive information and execute arbitrary code via a crafted payload to the window.add… Update - CVE-2024-30875 2024-10-26 01:15 2024-10-18 Show GitHub Exploit DB Packet Storm
235 4.2 MEDIUM
Network 		umbraco umbraco_cms Umbraco is a free and open source .NET content management system. In versions on the 13.x branch prior to 13.5.2 and versions on the 10.x branch prior to 10.8.7, during an explicit sign-out, the serv… Update CWE-384
 Session Fixation 		CVE-2024-48929 2024-10-26 01:12 2024-10-23 Show GitHub Exploit DB Packet Storm
236 9.8 CRITICAL
Network 		ibm concert IBM Concert 1.0.0 and 1.0.1 vulnerable to attacks that rely on the use of cookies without the SameSite attribute. Update CWE-295
Improper Certificate Validation  		CVE-2024-43177 2024-10-26 01:05 2024-10-23 Show GitHub Exploit DB Packet Storm
237 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix use-after-free during gpu recovery [Why] [ 754.862560] refcount_t: underflow; use-after-free. [ 754.862… Update CWE-416
 Use After Free 		CVE-2022-48990 2024-10-26 01:03 2024-10-22 Show GitHub Exploit DB Packet Storm
238 4.7 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: fscache: Fix oops due to race with cookie_lru and use_cookie If a cookie expires from the LRU and the LRU_DISCARD flag is set, bu… Update CWE-362
Race Condition 		CVE-2022-48989 2024-10-26 01:02 2024-10-22 Show GitHub Exploit DB Packet Storm
239 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: io_uring: Fix a null-ptr-deref in io_tctx_exit_cb() Syzkaller reports a NULL deref bug as follows: BUG: KASAN: null-ptr-deref i… Update CWE-476
 NULL Pointer Dereference 		CVE-2022-48983 2024-10-26 00:58 2024-10-22 Show GitHub Exploit DB Packet Storm
240 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: add list empty check to avoid null pointer issue Add list empty check to avoid null pointer issues in some corner cas… Update CWE-476
 NULL Pointer Dereference 		CVE-2024-49904 2024-10-26 00:54 2024-10-22 Show GitHub Exploit DB Packet Storm