Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Oct. 28, 2024, 6:04 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
198141	9.3	危険	シスコシステムズ	-	Cisco Secure Desktop における意図しないプログラムをダウンロードされる脆弱性	CWE-20 不適切な入力確認	CVE-2011-0926	2011-11-29 10:35	2011-02-25	Show	GitHub Exploit DB Packet Storm

198142	7.5	危険	シスコシステムズ	-	Cisco TelePresence Recording サーバにおける不特定な操作を実行される脆弱性	CWE-287 不適切な認証	CVE-2011-0392	2011-11-29 10:35	2011-02-23	Show	GitHub Exploit DB Packet Storm

198143	7.8	危険	シスコシステムズ	-	Cisco TelePresence Recording サーバデバイスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0391	2011-11-29 10:34	2011-02-23	Show	GitHub Exploit DB Packet Storm

198144	7.8	危険	シスコシステムズ	-	Cisco TelePresence Multipoint Switch デバイスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0390	2011-11-29 10:33	2011-02-23	Show	GitHub Exploit DB Packet Storm

198145	7.8	危険	シスコシステムズ	-	Cisco TelePresence Multipoint Switch デバイスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0389	2011-11-29 10:32	2011-02-23	Show	GitHub Exploit DB Packet Storm

198146	7.8	危険	シスコシステムズ	-	Cisco TelePresence Recording Server および Cisco TelePresence Multipoint Switch における脆弱性	CWE-399 リソース管理の問題	CVE-2011-0388	2011-11-29 10:31	2011-02-23	Show	GitHub Exploit DB Packet Storm

198147	8	危険	シスコシステムズ	-	Cisco TelePresence Multipoint Switch (CTMS) デバイスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-0387	2011-11-29 10:31	2011-02-23	Show	GitHub Exploit DB Packet Storm

198148	9.3	危険	シスコシステムズ	-	Cisco TelePresence Recording Server 上の XML-RPC の実装におけるファイルを上書きされる脆弱性	CWE-94 コード・インジェクション	CVE-2011-0386	2011-11-29 10:30	2011-02-23	Show	GitHub Exploit DB Packet Storm

198149	10	危険	シスコシステムズ	-	Cisco TelePresence Recording Server および Cisco TelePresence Multipoint Switch における脆弱性	CWE-Other その他	CVE-2011-0385	2011-11-29 10:29	2011-02-23	Show	GitHub Exploit DB Packet Storm

198150	10	危険	シスコシステムズ	-	Cisco TelePresence Multipoint Switch における任意のコードを実行される脆弱性	CWE-287 不適切な認証	CVE-2011-0384	2011-11-29 10:28	2011-02-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Oct. 28, 2024, 8:13 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
481	-		-	-	Android before 2024-10-05 on Google Pixel devices allows information disclosure in the modem component, A-299774545.	-	CVE-2024-44100	2024-10-25 23:15	2024-10-25	Show	GitHub Exploit DB Packet Storm

482	6.5	MEDIUM Network	umbraco	umbraco_cms	Umbraco, a free and open source .NET content management system, has an improper access control issue starting in version 14.0.0 and prior to version 14.3.0. The issue allows low-privilege users to ac…	CWE-284 CWE-863 Improper Access Control Incorrect Authorization	CVE-2024-48925	2024-10-25 23:12	2024-10-23	Show	GitHub Exploit DB Packet Storm

483	4.7	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: nvme: fix SRCU protection of nvme_ns_head list Walking the nvme_ns_head siblings list is protected by the head's srcu in nvme_ns_…	CWE-416 Use After Free	CVE-2022-49003	2024-10-25 23:12	2024-10-22	Show	GitHub Exploit DB Packet Storm

484	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/xe/ct: prevent UAF in send_recv() Ensure we serialize with completion side to prevent UAF with fence going out of scope on th…	CWE-416 Use After Free	CVE-2024-50030	2024-10-25 23:06	2024-10-22	Show	GitHub Exploit DB Packet Storm

485	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/msm/adreno: Assign msm_gpu->pdev earlier to avoid nullptrs There are some cases, such as the one uncovered by Commit 46d4efcc…	CWE-476 NULL Pointer Dereference	CVE-2024-49901	2024-10-25 23:05	2024-10-22	Show	GitHub Exploit DB Packet Storm

486	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix TTLM teardown work The worker calculates the wrong sdata pointer, so if it ever runs, it'll crash. Fix that.	NVD-CWE-noinfo	CVE-2024-43848	2024-10-25 22:57	2024-08-17	Show	GitHub Exploit DB Packet Storm

487	7.3	HIGH Local	intel	virtual_raid_on_cpu	Uncontrolled search path element in some Intel(R) VROC software before version 8.0.8.1001 may allow an authenticated user to potentially enable escalation of privilege via local access.	CWE-427 Uncontrolled Search Path Element	CVE-2023-32646	2024-10-25 22:54	2024-02-14	Show	GitHub Exploit DB Packet Storm

488	7.8	HIGH Local	intel	ethernet_connections_boot_utility\ _preboot_images\ _and_efi_drivers administrative_tools_for_intel_network_adapters	Insecure inherited permissions in some Intel(R) Ethernet tools and driver install software may allow an authenticated user to potentially enable escalation of privilege via local access.	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2023-33870	2024-10-25 22:51	2024-02-14	Show	GitHub Exploit DB Packet Storm

489	7.0	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: jfs: Fix uaf in dbFreeBits [syzbot reported] ================================================================== BUG: KASAN: slab-…	CWE-416 Use After Free	CVE-2024-49903	2024-10-25 22:40	2024-10-22	Show	GitHub Exploit DB Packet Storm

490	-		-	-	This vulnerability exists in Philips lighting devices due to storage of Wi-Fi credentials in plain text within the device firmware. An attacker with physical access could exploit this by extracting t…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2024-9991	2024-10-25 22:15	2024-10-25	Show	GitHub Exploit DB Packet Storm