Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 17, 2024, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198081 10 危険 The Tor Project - Tor におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-1676 2012-03-27 18:42 2010-12-20 Show GitHub Exploit DB Packet Storm
198082 9.3 危険 Nullsoft - Winamp の vp6.w5s におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-1523 2012-03-27 18:42 2010-10-8 Show GitHub Exploit DB Packet Storm
198083 9.3 危険 March Hare Pty Ltd - March Hare Software CVSNT の perms.cpp における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1326 2012-03-27 18:42 2010-09-15 Show GitHub Exploit DB Packet Storm
198084 4.3 警告 IBM - IBM WebSphere MQ における X.509 証明書の認証をなりすまされる脆弱性 CWE-Other
その他 		CVE-2010-0782 2012-03-27 18:42 2010-10-20 Show GitHub Exploit DB Packet Storm
198085 5 警告 シスコシステムズ - Cisco WLC におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0575 2012-03-27 18:42 2010-09-8 Show GitHub Exploit DB Packet Storm
198086 7.8 危険 シスコシステムズ - Cisco WLC におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-0574 2012-03-27 18:42 2010-09-8 Show GitHub Exploit DB Packet Storm
198087 3.5 注意 IBM - IBM PNMSS の load.php における CRLF インジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0155 2012-03-27 18:42 2010-09-14 Show GitHub Exploit DB Packet Storm
198088 4 警告 IBM - IBM PNMSS アプライアンスの sla/index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-0154 2012-03-27 18:42 2010-09-14 Show GitHub Exploit DB Packet Storm
198089 6.8 警告 IBM - IBM PNMSS アプライアンスの LMI におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-0153 2012-03-27 18:42 2010-09-14 Show GitHub Exploit DB Packet Storm
198090 4.3 警告 IBM - IBM PNMSS アプライアンスの LMI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0152 2012-03-27 18:42 2010-09-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 17, 2024, 4:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
911 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: net: sched: use RCU read-side critical section in taprio_dump() Fix possible use-after-free in 'taprio_dump()' by adding RCU read… Update CWE-416
 Use After Free 		CVE-2024-50126 2024-11-15 01:15 2024-11-6 Show GitHub Exploit DB Packet Storm
912 7.0 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: net: do not delay dst_entries_add() in dst_release() dst_entries_add() uses per-cpu data that might be freed at netns dismantle f… Update NVD-CWE-noinfo
CVE-2024-50036 2024-11-15 01:15 2024-10-22 Show GitHub Exploit DB Packet Storm
913 - - - In the Linux kernel, the following vulnerability has been resolved: bnxt_re: avoid shift undefined behavior in bnxt_qplib_alloc_init_hwq Undefined behavior is triggered when bnxt_qplib_alloc_init_h… Update - CVE-2024-38540 2024-11-15 01:15 2024-06-19 Show GitHub Exploit DB Packet Storm
914 7.1 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: net: bridge: xmit: make sure we have at least eth header len bytes syzbot triggered an uninit value[1] error in bridge device's x… Update CWE-908
 Use of Uninitialized Resource 		CVE-2024-38538 2024-11-15 01:15 2024-06-19 Show GitHub Exploit DB Packet Storm
915 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Additional check in ntfs_file_release Update NVD-CWE-noinfo
CVE-2024-50242 2024-11-15 01:12 2024-11-9 Show GitHub Exploit DB Packet Storm
916 5.4 MEDIUM
Network 		sap netweaver_enterprise_portal SAP NetWeaver Enterprise Portal (KMC) does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting vulnerability in KMC servlet. An attacker could craft a script and trick t… Update CWE-79
Cross-site Scripting 		CVE-2024-47594 2024-11-15 01:12 2024-10-8 Show GitHub Exploit DB Packet Storm
917 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: phy: qcom: qmp-usb: fix NULL-deref on runtime suspend Commit 413db06c05e7 ("phy: qcom-qmp-usb: clean up probe initialisation") re… Update CWE-476
 NULL Pointer Dereference 		CVE-2024-50240 2024-11-15 00:57 2024-11-9 Show GitHub Exploit DB Packet Storm
918 5.4 MEDIUM
Network 		ampache ampache Ampache is a web based audio/video streaming application and file manager. The current implementation of token parsing does not adequately validate CSRF tokens when users send messages to one another… Update CWE-352
 Origin Validation Error 		CVE-2024-51489 2024-11-15 00:46 2024-11-12 Show GitHub Exploit DB Packet Storm
919 9.0 CRITICAL
Network 		ampache ampache Ampache is a web based audio/video streaming application and file manager. This vulnerability exists in the interface section of the Ampache menu, where users can change "Custom URL - Logo". This sec… Update CWE-79
Cross-site Scripting 		CVE-2024-51490 2024-11-15 00:30 2024-11-12 Show GitHub Exploit DB Packet Storm
920 7.5 HIGH
Network 		metabase metabase Metabase is an open source data analytics platform. In affected versions a security issue has been discovered with the custom GeoJSON map (`admin->settings->maps->custom maps->add a map`) support and… Update CWE-22
Path Traversal 		CVE-2021-41277 2024-11-15 00:26 2021-11-18 Show GitHub Exploit DB Packet Storm