Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Nov. 19, 2024, 12:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
198051	7.2	危険	kingsoftsecurity	-	Kingsoft Antivirus の kavfm.sys におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3396	2012-03-27 18:42	2010-09-15	Show	GitHub Exploit DB Packet Storm

198052	6.9	警告	texmacs	-	TeXmacsの texmacs スクリプトにおける権限を取得される脆弱性	CWE-DesignError	CVE-2010-3394	2012-03-27 18:42	2010-10-20	Show	GitHub Exploit DB Packet Storm

198053	6.9	警告	ECMWF	-	Magics++ の magics-config における権限を取得される脆弱性	CWE-DesignError	CVE-2010-3393	2012-03-27 18:42	2010-10-20	Show	GitHub Exploit DB Packet Storm

198054	6.9	警告	lttng	-	LTTng Userspace Tracer の usttrace における権限を取得される脆弱性	CWE-DesignError	CVE-2010-3386	2012-03-27 18:42	2010-10-20	Show	GitHub Exploit DB Packet Storm

198055	6.9	警告	herac	-	TuxGuitar における権限を取得される脆弱性	CWE-DesignError	CVE-2010-3385	2012-03-27 18:42	2010-10-20	Show	GitHub Exploit DB Packet Storm

198056	6.9	警告	Bernhard Wymann	-	TORCS の torcs などのスクリプトにおける権限を取得される脆弱性	CWE-DesignError	CVE-2010-3384	2012-03-27 18:42	2010-10-20	Show	GitHub Exploit DB Packet Storm

198057	6.9	警告	TeamSpeak Systems GmbH	-	TeamSpeak の teamspeak スクリプトにおける権限を取得される脆弱性	CWE-DesignError	CVE-2010-3383	2012-03-27 18:42	2010-10-20	Show	GitHub Exploit DB Packet Storm

198058	6.9	警告	uoregon	-	TAU の tauex における権限を取得される脆弱性	CWE-DesignError	CVE-2010-3382	2012-03-27 18:42	2010-10-20	Show	GitHub Exploit DB Packet Storm

198059	6.9	警告	alex launi	-	Tangerine の tangerine スクリプトにおける権限を取得される脆弱性	CWE-DesignError	CVE-2010-3381	2012-03-27 18:42	2010-10-20	Show	GitHub Exploit DB Packet Storm

198060	6.9	警告	Lawrence Livermore National Laboratory (LLNL)	-	SLURM の init.d/slurm スクリプトにおける権限を取得される脆弱性	CWE-DesignError	CVE-2010-3380	2012-03-27 18:42	2010-09-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Nov. 19, 2024, 1:08 p.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
263931	-	openttd	openttd	Multiple buffer overflows in OpenTTD before 1.1.3 allow local users to cause a denial of service (daemon crash) or possibly gain privileges via (1) a crafted BMP file with RLE compression or (2) craf…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2011-3343	2012-01-19 12:59	2011-09-9	Show	GitHub Exploit DB Packet Storm

263932	-	gnome	ifcfg-rh_plug-in	Incomplete blacklist vulnerability in the svEscape function in settings/plugins/ifcfg-rh/shvar.c in the ifcfg-rh plug-in for GNOME NetworkManager 0.9.1, 0.9.0, 0.8.1, and possibly other versions, whe…	NVD-CWE-Other	CVE-2011-3364	2012-01-19 12:59	2011-11-5	Show	GitHub Exploit DB Packet Storm

263933	-	gnome	ifcfg-rh_plug-in	Per: http://cwe.mitre.org/data/definitions/184.html 'CWE-184: Incomplete Blacklist'	NVD-CWE-Other	CVE-2011-3364	2012-01-19 12:59	2011-11-5	Show	GitHub Exploit DB Packet Storm

263934	-	libreoffice	libreoffice	Stack-based buffer overflow in the Lotus Word Pro import filter in LibreOffice before 3.3.3 allows remote attackers to execute arbitrary code via a crafted .lwp file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2011-2685	2012-01-19 12:58	2011-07-22	Show	GitHub Exploit DB Packet Storm

263935	-	ruby-lang	ruby	The SecureRandom.random_bytes function in lib/securerandom.rb in Ruby before 1.8.7-p352 and 1.9.x before 1.9.2-p290 relies on PID values for initialization, which makes it easier for context-dependen…	CWE-20 Improper Input Validation	CVE-2011-2705	2012-01-19 12:58	2011-08-6	Show	GitHub Exploit DB Packet Storm

263936	-	tor	tor	Tor before 0.2.2.34, when configured as a client or bridge, sends a TLS certificate chain as part of an outgoing OR connection, which allows remote relays to bypass intended anonymity properties by r…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2011-2768	2012-01-19 12:58	2011-12-23	Show	GitHub Exploit DB Packet Storm

263937	-	tor	tor	Tor before 0.2.2.34, when configured as a bridge, accepts the CREATE and CREATE_FAST values in the Command field of a cell within an OR connection that it initiated, which allows remote relays to enu…	CWE-200 Information Exposure	CVE-2011-2769	2012-01-19 12:58	2011-12-23	Show	GitHub Exploit DB Packet Storm

263938	-	tor	tor	Multiple heap-based buffer overflows in Tor before 0.2.2.35 allow remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code by (1) establishing a SOCKS conn…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2011-2778	2012-01-19 12:58	2011-12-23	Show	GitHub Exploit DB Packet Storm

263939	-	apache opensymphony	struts webwork xwork	Multiple cross-site scripting (XSS) vulnerabilities in XWork in Apache Struts 2.x before 2.2.3, and OpenSymphony XWork in OpenSymphony WebWork, allow remote attackers to inject arbitrary web script o…	CWE-79 Cross-site Scripting	CVE-2011-1772	2012-01-19 12:57	2011-05-14	Show	GitHub Exploit DB Packet Storm

263940	-	gnome	networkmanager	GNOME NetworkManager before 0.8.6 does not properly enforce the auth_admin element in PolicyKit, which allows local users to bypass intended wireless network sharing restrictions via unspecified vect…	CWE-287 Improper Authentication	CVE-2011-2176	2012-01-19 12:57	2011-09-3	Show	GitHub Exploit DB Packet Storm