Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 18, 2024, 12:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
197961 6.8 警告 ヒューレット・パッカード - HP SIM におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2010-3288 2012-03-27 18:42 2010-10-18 Show GitHub Exploit DB Packet Storm
197962 8.3 危険 ヒューレット・パッカード - 複数の HP 製品における任意のコードを実行される脆弱性 CWE-noinfo
情報不足
CVE-2010-3287 2012-03-27 18:42 2010-10-13 Show GitHub Exploit DB Packet Storm
197963 5 警告 ヒューレット・パッカード - HP SIM における任意のファイルを読まれる脆弱性 CWE-noinfo
情報不足
CVE-2010-3286 2012-03-27 18:42 2010-10-13 Show GitHub Exploit DB Packet Storm
197964 5 警告 ヒューレット・パッカード - HP OV NNM におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2010-3285 2012-03-27 18:42 2010-09-22 Show GitHub Exploit DB Packet Storm
197965 4.3 警告 ヒューレット・パッカード - HP SMH における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2010-3284 2012-03-27 18:42 2010-09-22 Show GitHub Exploit DB Packet Storm
197966 4.3 警告 ヒューレット・パッカード - HP SMH におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認
CVE-2010-3283 2012-03-27 18:42 2010-09-22 Show GitHub Exploit DB Packet Storm
197967 5.4 警告 Alcatel-Lucent - Alcatel-Lucent OmniVista の HTTP プロキシサービスにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2010-3281 2012-03-27 18:42 2010-09-20 Show GitHub Exploit DB Packet Storm
197968 6.9 警告 Alcatel-Lucent - Alcatel-Lucent OmniTouch Contact Center の TSA コンポーネントの CCAgent オプションにおける Contact Center 操作を監視または再設定される脆弱性 CWE-200
情報漏えい
CVE-2010-3280 2012-03-27 18:42 2010-09-20 Show GitHub Exploit DB Packet Storm
197969 7.6 危険 Alcatel-Lucent - Alcatel-Lucent OmniTouch Contact Center の CCAgent オプションのディフォルト設定における Contact Center 操作を監視または再設定される脆弱性 CWE-16
環境設定
CVE-2010-3279 2012-03-27 18:42 2010-09-20 Show GitHub Exploit DB Packet Storm
197970 2.1 注意 VMware - VMware Workstation および VMware Player のインストーラにおける Web スクリプトまたは HTML の想定外の解釈が発生する脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-3277 2012-03-27 18:42 2010-09-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 18, 2024, 12:12 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
991 5.4 MEDIUM
Network
anasedreesi marquee_elementor_with_posts Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Anas Edreesi Marquee Elementor with Posts allows DOM-Based XSS.This issue affects Marquee … CWE-79
Cross-site Scripting
CVE-2024-51584 2024-11-14 11:23 2024-11-10 Show GitHub Exploit DB Packet Storm
992 5.4 MEDIUM
Network
pluginspoint kento_ads_rotator Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in KentoThemes Kento Ads Rotator allows Stored XSS.This issue affects Kento Ads Rotator: from… CWE-79
Cross-site Scripting
CVE-2024-51583 2024-11-14 11:17 2024-11-10 Show GitHub Exploit DB Packet Storm
993 5.5 MEDIUM
Local
apple macos The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. A malicious app may be able to cause a denial-of-service. NVD-CWE-noinfo
CVE-2024-44197 2024-11-14 11:16 2024-10-29 Show GitHub Exploit DB Packet Storm
994 5.5 MEDIUM
Local
apple macos A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An app may be able to modify protected parts of the file system. NVD-CWE-noinfo
CVE-2024-44196 2024-11-14 11:15 2024-10-29 Show GitHub Exploit DB Packet Storm
995 7.8 HIGH
Local
artifex
debian
suse
ghostscript
debian_linux
linux_enterprise_high_performance_computing
linux_enterprise_server
linux_enterprise_server_for_sap
An issue was discovered in psi/zcolor.c in Artifex Ghostscript before 10.04.0. An unchecked Implementation pointer in Pattern color space could lead to arbitrary code execution. CWE-824
 Access of Uninitialized Pointer
CVE-2024-46951 2024-11-14 11:13 2024-11-11 Show GitHub Exploit DB Packet Storm
996 7.8 HIGH
Local
artifex
debian
suse
ghostscript
debian_linux
linux_enterprise_high_performance_computing
linux_enterprise_server
linux_enterprise_server_for_sap
An issue was discovered in base/gsdevice.c in Artifex Ghostscript before 10.04.0. An integer overflow when parsing the filename format string (for the output filename) results in path truncation, and… CWE-190
 Integer Overflow or Wraparound
CVE-2024-46953 2024-11-14 11:01 2024-11-11 Show GitHub Exploit DB Packet Storm
997 7.8 HIGH
Local
artifex
debian
ghostscript
debian_linux
An issue was discovered in pdf/pdf_xref.c in Artifex Ghostscript before 10.04.0. There is a buffer overflow during handling of a PDF XRef stream (related to W array values). CWE-120
Classic Buffer Overflow
CVE-2024-46952 2024-11-14 11:01 2024-11-11 Show GitHub Exploit DB Packet Storm
998 - - - In shouldHideDocument of ExternalStorageProvider.java, there is a possible bypass of a file path filter designed to prevent access to sensitive directories due to incorrect unicode normalization. Th… - CVE-2024-43093 2024-11-14 11:00 2024-11-14 Show GitHub Exploit DB Packet Storm
999 9.8 CRITICAL
Network
paloaltonetworks expedition Missing authentication for a critical function in Palo Alto Networks Expedition can lead to an Expedition admin account takeover for attackers with network access to Expedition. Note: Expedition is … CWE-306
Missing Authentication for Critical Function
CVE-2024-5910 2024-11-14 11:00 2024-07-11 Show GitHub Exploit DB Packet Storm
1000 7.8 HIGH
Local
artifex ghostscript An issue was discovered in decode_utf8 in base/gp_utf8.c in Artifex Ghostscript before 10.04.0. Overlong UTF-8 encoding leads to possible ../ directory traversal. CWE-22
Path Traversal
CVE-2024-46954 2024-11-14 10:58 2024-11-11 Show GitHub Exploit DB Packet Storm