Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Sept. 23, 2024, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198671 2.1 注意 オラクル - Oracle Database Server の Export コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0901 2010-08-2 19:32 2010-07-13 Show GitHub Exploit DB Packet Storm
198672 2.6 注意 オラクル - Windows 上で稼働する Oracle Database Server の Network Layer コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0900 2010-08-2 19:32 2010-07-13 Show GitHub Exploit DB Packet Storm
198673 4.3 警告 オラクル - Oracle Database Server の Application Express コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0892 2010-08-2 19:32 2010-07-13 Show GitHub Exploit DB Packet Storm
198674 6 警告 オラクル - Oracle Database Server の Oracle OLAP コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0902 2010-08-2 19:31 2010-07-13 Show GitHub Exploit DB Packet Storm
198675 7.8 危険 オラクル - Windows 上で稼働する Oracle Database Server の Net Foundation Layer コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0903 2010-08-2 19:31 2010-07-13 Show GitHub Exploit DB Packet Storm
198676 7.8 危険 オラクル - Oracle Database Server の Listener コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0911 2010-08-2 19:30 2010-07-13 Show GitHub Exploit DB Packet Storm
198677 5.5 警告 PostgreSQL.org
サイバートラスト株式会社
サン・マイクロシステムズ
レッドハット		 - PostgreSQL における任意のパラメータ設定を削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1975 2010-08-2 17:13 2010-05-19 Show GitHub Exploit DB Packet Storm
198678 5 警告 MySQL AB - MySQL の mysql_uninstall_plugin 関数における任意のプラグインを削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1621 2010-08-2 17:13 2010-04-6 Show GitHub Exploit DB Packet Storm
198679 3.5 注意 オラクル - Oracle Fusion Middleware の Application Server Control コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2381 2010-07-30 17:43 2010-07-13 Show GitHub Exploit DB Packet Storm
198680 3.5 注意 オラクル - Oracle Fusion Middleware の Application Server Control コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0081 2010-07-30 17:42 2010-07-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Sept. 23, 2024, 5:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
171 7.8 HIGH
Local 		watchguard epp_firmware
edr_firmware
epdr_firmware
panda_ad360_firmware 		An issue was discovered in WatchGuard EPDR 8.0.21.0002. Due to a weak implementation of message handling between WatchGuard EPDR processes, it is possible to perform a Local Privilege Escalation on W… Update NVD-CWE-noinfo
CVE-2023-26236 2024-09-21 00:35 2023-10-5 Show GitHub Exploit DB Packet Storm
172 2.7 LOW
Network 		purestorage purity A flaw exists in FlashBlade Purity (OE) Version 4.1.0 whereby a user with privileges to extend an object’s retention period can affect the availability of the object lock. Update NVD-CWE-noinfo
CVE-2023-28372 2024-09-21 00:35 2023-10-3 Show GitHub Exploit DB Packet Storm
173 6.1 MEDIUM
Network 		onlyoffice document_server ONLYOFFICE Docs before 8.0.1 allows XSS because a macro is an immediately-invoked function expression (IIFE), and therefore a sandbox escape is possible by directly calling the constructor of the Fun… Update CWE-79
Cross-site Scripting 		CVE-2023-50883 2024-09-21 00:18 2024-09-10 Show GitHub Exploit DB Packet Storm
174 - - - A vulnerability has been found in SourceCodester Best House Rental Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /ajax.ph… New CWE-79
Cross-site Scripting 		CVE-2024-9033 2024-09-21 00:15 2024-09-21 Show GitHub Exploit DB Packet Storm
175 - - - Insufficient verification of data authenticity in the installer for Zoom Workplace VDI App for Windows may allow an authenticated user to conduct an escalation of privilege via local access. Update - CVE-2024-27244 2024-09-21 00:15 2024-05-16 Show GitHub Exploit DB Packet Storm
176 - - - Buffer overflow in some Zoom Workplace Apps and SDK’s may allow an authenticated user to conduct a denial of service via network access. Update - CVE-2024-27243 2024-09-21 00:15 2024-05-16 Show GitHub Exploit DB Packet Storm
177 - - - Improper privilege management in the installer for Zoom Desktop Client for macOS before version 5.17.10 may allow a privileged user to conduct an escalation of privilege via local access. Update - CVE-2024-27247 2024-09-21 00:15 2024-04-10 Show GitHub Exploit DB Packet Storm
178 - - - Improper privilege management in the installer for Zoom Desktop Client for Windows before version 5.17.10 may allow an authenticated user to conduct an escalation of privilege via local access. Update - CVE-2024-24694 2024-09-21 00:15 2024-04-10 Show GitHub Exploit DB Packet Storm
179 5.5 MEDIUM
Local 		zoom rooms Improper access control in the installer for Zoom Rooms Client for Windows before version 5.17.5 may allow an authenticated user to conduct a denial of service via local access. Update NVD-CWE-Other
CVE-2024-24693 2024-09-21 00:15 2024-03-14 Show GitHub Exploit DB Packet Storm
180 - - - Improper input validation in Zoom Desktop Client for Windows, Zoom VDI Client for Windows, and Zoom Meeting SDK for Windows may allow an unauthenticated user to conduct an escalation of privilege via… Update - CVE-2024-24691 2024-09-21 00:15 2024-02-14 Show GitHub Exploit DB Packet Storm