Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 17, 2024, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
198771 4.3 警告 SmartyCMS - SmartyCMS の template モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-1066 2012-02-17 11:16 2012-02-14 Show GitHub Exploit DB Packet Storm
198772 4.3 警告 2X Software - 2X ApplicationServer の TuxScripting.dll における任意のファイルを作成される脆弱性 CWE-Other
その他
CVE-2012-1065 2012-02-17 11:00 2012-02-14 Show GitHub Exploit DB Packet Storm
198773 9.3 危険 マイクロソフト
AB Team
- Microsoft Windows XP で利用される Indeo コーデックにおける権限昇格の脆弱性 CWE-Other
その他
CVE-2010-3138 2012-02-16 16:14 2010-08-27 Show GitHub Exploit DB Packet Storm
198774 4.4 警告 マイクロソフト - Microsoft Windows Server 2008 の colorcpl.exe における権限昇格の脆弱性 CWE-Other
その他
CVE-2010-5082 2012-02-16 16:04 2012-01-17 Show GitHub Exploit DB Packet Storm
198775 9.3 危険 アップル
マイクロソフト
- Microsoft Windows 7 Professional 64-bit におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2011-5046 2012-02-16 11:40 2011-12-30 Show GitHub Exploit DB Packet Storm
198776 4.3 警告 アドビシステムズ - Adobe RoboHelp for Word におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-0765 2012-02-16 11:27 2012-02-14 Show GitHub Exploit DB Packet Storm
198777 10 危険 アドビシステムズ - Adobe Shockwave Player の Shockwave 3D Asset コンポーネントにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2012-0766 2012-02-16 11:23 2012-02-14 Show GitHub Exploit DB Packet Storm
198778 10 危険 アドビシステムズ - Adobe Shockwave Player の Shockwave 3D Asset コンポーネントにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2012-0764 2012-02-16 11:23 2012-02-14 Show GitHub Exploit DB Packet Storm
198779 10 危険 アドビシステムズ - Adobe Shockwave Player の Shockwave 3D Asset コンポーネントにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2012-0763 2012-02-16 11:21 2012-02-14 Show GitHub Exploit DB Packet Storm
198780 10 危険 アドビシステムズ - Adobe Shockwave Player の Shockwave 3D Asset コンポーネントにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2012-0762 2012-02-16 11:13 2012-02-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 17, 2024, 4:13 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1611 - - - vmir e8117 was discovered to contain a stack overflow via the init_local_vars function at /src/vmir_wasm_parser.c. - CVE-2024-35426 2024-11-13 00:35 2024-11-9 Show GitHub Exploit DB Packet Storm
1612 9.8 CRITICAL
Network
oretnom23 online_computer_and_laptop_store Sourcecodester Online Computer and Laptop Store 1.0 is vulnerable to Incorrect Access Control, which allows remote attackers to elevate privileges to the administrator's role. NVD-CWE-Other
CVE-2023-31704 2024-11-13 00:35 2023-07-14 Show GitHub Exploit DB Packet Storm
1613 7.3 HIGH
Local
samsung android Out-of-bounds write in parsing subtitle file in libsubextractor.so prior to SMR Nov-2024 Release 1 allows local attackers to cause memory corruption. User interaction is required for triggering this … CWE-787
 Out-of-bounds Write
CVE-2024-34676 2024-11-13 00:31 2024-11-6 Show GitHub Exploit DB Packet Storm
1614 7.8 HIGH
Local
samsung android Out-of-bounds write in libsapeextractor.so prior to SMR Nov-2024 Release 1 allows local attackers to cause memory corruption. CWE-787
 Out-of-bounds Write
CVE-2024-34678 2024-11-13 00:30 2024-11-6 Show GitHub Exploit DB Packet Storm
1615 - - - In Gliffy Online an insecure configuration was discovered in versions before 4.14.0-6. Reported by Ather Iqbal. - CVE-2024-10315 2024-11-13 00:15 2024-11-12 Show GitHub Exploit DB Packet Storm
1616 - - - A flaw was found in NetworkManager. When a system running NetworkManager with DEBUG logs enabled and an interface eth1 configured with LLDP enabled, a malicious user could inject a malformed LLDP pac… CWE-400
 Uncontrolled Resource Consumption
CVE-2024-6501 2024-11-13 00:15 2024-07-10 Show GitHub Exploit DB Packet Storm
1617 - - - A flaw was found in the cockpit package. This flaw allows an authenticated user to kill any process when enabling the pam_env's user_readenv option, which leads to a denial of service (DoS) attack. CWE-400
 Uncontrolled Resource Consumption
CVE-2024-6126 2024-11-13 00:15 2024-07-4 Show GitHub Exploit DB Packet Storm
1618 - - - A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, … CWE-354
 Improper Validation of Integrity Check Value
CVE-2024-3727 2024-11-13 00:15 2024-05-15 Show GitHub Exploit DB Packet Storm
1619 - - - A use-after-free vulnerability was found in the ProcRenderAddGlyphs() function of Xorg servers. This issue occurs when AllocateGlyph() is called to store new glyphs sent by the client to the X server… CWE-416
 Use After Free
CVE-2024-31083 2024-11-13 00:15 2024-04-5 Show GitHub Exploit DB Packet Storm
1620 - - - A heap-based buffer over-read vulnerability was found in the X.org server's ProcXIPassiveGrabDevice() function. This issue occurs when byte-swapped length values are used in replies, potentially lead… CWE-126
 Buffer Over-read
CVE-2024-31081 2024-11-13 00:15 2024-04-4 Show GitHub Exploit DB Packet Storm