Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Oct. 30, 2024, 6:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
198461 10 危険 シスコシステムズ - Cisco TelePresence Recording Server および Cisco TelePresence Multipoint Switch における脆弱性 CWE-Other
その他
CVE-2011-0385 2011-11-29 10:29 2011-02-23 Show GitHub Exploit DB Packet Storm
198462 10 危険 シスコシステムズ - Cisco TelePresence Multipoint Switch における任意のコードを実行される脆弱性 CWE-287
不適切な認証
CVE-2011-0384 2011-11-29 10:28 2011-02-23 Show GitHub Exploit DB Packet Storm
198463 10 危険 シスコシステムズ - Cisco TelePresence Recording Server および Cisco TelePresence Multipoint Switch における脆弱性 CWE-287
不適切な認証
CVE-2011-0383 2011-11-29 10:27 2011-02-23 Show GitHub Exploit DB Packet Storm
198464 10 危険 シスコシステムズ - Cisco TelePresence Recording Server における任意のコードを実行される脆弱性 CWE-78
OSコマンド・インジェクション
CVE-2011-0382 2011-11-29 09:55 2011-02-23 Show GitHub Exploit DB Packet Storm
198465 10 危険 シスコシステムズ - Cisco TelePresence Manager における任意のコードを実行される脆弱性 CWE-78
OSコマンド・インジェクション
CVE-2011-0381 2011-11-29 09:55 2011-02-23 Show GitHub Exploit DB Packet Storm
198466 7.5 危険 シスコシステムズ - Cisco TelePresence Manager における認証を回避される脆弱性 CWE-287
不適切な認証
CVE-2011-0380 2011-11-29 09:54 2011-02-23 Show GitHub Exploit DB Packet Storm
198467 7.9 危険 シスコシステムズ - 複数の Cisco 製品におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-0379 2011-11-29 09:53 2011-02-23 Show GitHub Exploit DB Packet Storm
198468 8.3 危険 シスコシステムズ - Cisco TelePresence エンドポイントデバイスの XML-RPC 実装における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション
CVE-2011-0378 2011-11-29 09:53 2011-02-23 Show GitHub Exploit DB Packet Storm
198469 7.8 危険 シスコシステムズ - Cisco TelePresence エンドポイントデバイスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-0377 2011-11-29 09:52 2011-02-23 Show GitHub Exploit DB Packet Storm
198470 10 危険 シスコシステムズ - Cisco TelePresence エンドポイントデバイスにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2011-0376 2011-11-29 09:51 2011-02-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Oct. 30, 2024, 8:16 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
401 5.5 MEDIUM
Local
tukaani xz An issue discovered in XZ 5.2.5 allows attackers to cause a denial of service via decompression of a crafted file. NOTE: the vendor disputes the claims of "endless output" and "denial of service" bec… Update NVD-CWE-noinfo
CVE-2020-22916 2024-10-29 23:35 2023-08-23 Show GitHub Exploit DB Packet Storm
402 2.4 LOW
Physics
apple iphone_os
ipados
This issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 16.4 and iPadOS 16.4. A person with physical access to an iOS device may be able to view the las… Update NVD-CWE-noinfo
CVE-2022-46724 2024-10-29 23:35 2023-08-15 Show GitHub Exploit DB Packet Storm
403 5.5 MEDIUM
Local
apple macos A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13. An app may be able to modify protected parts of the file system. Update NVD-CWE-noinfo
CVE-2022-46722 2024-10-29 23:35 2023-08-15 Show GitHub Exploit DB Packet Storm
404 6.1 MEDIUM
Network
truedesk truedesk A cross-site scripting (XSS) vulnerability in Truedesk v1.2.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the team name parameter. Update CWE-79
Cross-site Scripting
CVE-2022-31456 2024-10-29 23:35 2023-07-27 Show GitHub Exploit DB Packet Storm
405 6.5 MEDIUM
Network
vocera voice_server
report_server
An issue was discovered in Vocera Report Server and Voice Server 5.x through 5.8. There is Path Traversal in the Task Exec filename. The Vocera Report Console contains various jobs that are executed … Update CWE-22
Path Traversal
CVE-2022-46900 2024-10-29 23:35 2023-07-26 Show GitHub Exploit DB Packet Storm
406 7.5 HIGH
Network
furukawa 423-41w\/ac_firmware
ld421-21w_firmware
ld420-10r_firmware
ld421-21wv_firmware
Furukawa Electric LatAm 423-41W/AC before v1.1.4 and LD421-21W before v1.3.3 were discovered to contain an HTML injection vulnerability via the serial number update function. Update CWE-79
Cross-site Scripting
CVE-2021-37386 2024-10-29 23:35 2023-07-18 Show GitHub Exploit DB Packet Storm
407 6.5 MEDIUM
Network
libgd libgd The GD Graphics Library (aka LibGD) through 2.3.2 has an out-of-bounds read because of the lack of certain gdGetBuf and gdPutBuf return value checks. Update CWE-125
Out-of-bounds Read
CVE-2021-40812 2024-10-29 23:35 2021-09-9 Show GitHub Exploit DB Packet Storm
408 8.3 HIGH
Network
unicode unicode An issue was discovered in the character definitions of the Unicode Specification through 14.0. The specification allows an adversary to produce source code identifiers such as function names using h… Update NVD-CWE-Other
CVE-2021-42694 2024-10-29 23:35 2021-11-1 Show GitHub Exploit DB Packet Storm
409 4.3 MEDIUM
Network
samba
redhat
samba
enterprise_linux
storage
A flaw was found in the way samba handled file and directory permissions. An authenticated user could use this flaw to gain access to certain file and directory information which otherwise would be u… Update CWE-266
 Incorrect Privilege Assignment
CVE-2020-14318 2024-10-29 23:35 2020-12-4 Show GitHub Exploit DB Packet Storm
410 6.5 MEDIUM
Network
h2database h2 An issue was discovered in H2 1.4.197. Insecure handling of permissions in the backup function allows attackers to read sensitive files (outside of their permissions) via a symlink to a fake database… Update CWE-59
Link Following
CVE-2018-14335 2024-10-29 23:35 2018-07-24 Show GitHub Exploit DB Packet Storm