Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 16, 2024, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
198921 7.8 危険 FreeBSD
NetBSD
- 複数の BSD-based オペレーティングシステムにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-2393 2012-02-7 15:51 2012-02-2 Show GitHub Exploit DB Packet Storm
198922 5 警告 Linux - Linux kernel におけるネットワーク盗聴を検出される脆弱性 CWE-200
情報漏えい
CVE-2010-4563 2012-02-7 15:50 2012-02-2 Show GitHub Exploit DB Packet Storm
198923 4.3 警告 マイクロソフト - Microsoft Windows におけるネットワーク盗聴を検出される問題 CWE-200
情報漏えい
CVE-2010-4562 2012-02-7 15:44 2012-02-2 Show GitHub Exploit DB Packet Storm
198924 4 警告 Mozilla Foundation - Bugzilla における他のユーザアカウントを偽造される脆弱性 CWE-20
不適切な入力確認
CVE-2012-0448 2012-02-6 16:51 2011-12-31 Show GitHub Exploit DB Packet Storm
198925 10 危険 ヒューレット・パッカード - HP Data Protector Media Operations における任意のコードを実行される脆弱性 CWE-noinfo
情報不足
CVE-2011-4791 2012-02-6 16:44 2012-02-1 Show GitHub Exploit DB Packet Storm
198926 5.1 警告 Mozilla Foundation - Bugzilla の jsonrpc.cgi におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2012-0440 2012-02-6 16:35 2012-01-15 Show GitHub Exploit DB Packet Storm
198927 7.2 危険 アップル - Apple Mac OS X の WebDAV Sharing における権限を取得される脆弱性 CWE-287
不適切な認証
CVE-2011-3463 2012-02-6 16:34 2012-02-2 Show GitHub Exploit DB Packet Storm
198928 5 警告 アップル - Apple Mac OS X の Time Machine における重要な情報を取得される脆弱性 CWE-noinfo
情報不足
CVE-2011-3462 2012-02-6 16:34 2012-02-2 Show GitHub Exploit DB Packet Storm
198929 4.3 警告 アップル - Apple Mac OS X の Internet Sharing における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2011-3452 2012-02-6 16:30 2012-02-2 Show GitHub Exploit DB Packet Storm
198930 6.8 警告 アップル - Apple Mac OS X の CoreUI における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2011-3450 2012-02-6 16:29 2012-02-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 16, 2024, 4:17 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
981 5.4 MEDIUM
Network
zohocorp manageengine_servicedesk_plus
manageengine_servicedesk_plus_msp
manageengine_supportcenter_plus
Zoho ManageEngine ServiceDesk Plus before 14202, ServiceDesk Plus MSP before 14300, and SupportCenter Plus before 14300 have a privilege escalation vulnerability in the Release module that allows unp… Update NVD-CWE-noinfo
CVE-2023-34197 2024-11-14 06:35 2023-07-7 Show GitHub Exploit DB Packet Storm
982 - - - Insufficient validation performed on the REST API License file in Paxton Net2 before 6.07.14023.5015 (SR4) enables use of the REST API with an invalid License File. Attackers may be able to retrieve … Update - CVE-2024-48939 2024-11-14 06:15 2024-11-11 Show GitHub Exploit DB Packet Storm
983 8.1 HIGH
Network
parseplatform parse_server Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. If the Parse Server option allowCustomObjectId: true is set, an attacker that is allowed to cre… Update CWE-863
 Incorrect Authorization
CVE-2024-47183 2024-11-14 06:15 2024-10-5 Show GitHub Exploit DB Packet Storm
984 7.8 HIGH
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: bpf: Fix out-of-bounds write in trie_get_next_key() trie_get_next_key() allocates a node stack with size trie->max_prefixlen, whi… Update CWE-787
 Out-of-bounds Write
CVE-2024-50262 2024-11-14 06:10 2024-11-9 Show GitHub Exploit DB Packet Storm
985 9.8 CRITICAL
Network
dlink di-8003_firmware A vulnerability was found in D-Link DI-8003 16.07.16A1. It has been classified as critical. Affected is the function upgrade_filter_asp of the file /upgrade_filter.asp. The manipulation of the argume… Update CWE-78
CWE-77
OS Command 
Command Injection
CVE-2024-11046 2024-11-14 06:01 2024-11-10 Show GitHub Exploit DB Packet Storm
986 9.8 CRITICAL
Network
dlink di-8003_firmware A vulnerability was found in D-Link DI-8003 16.07.16A1. It has been declared as critical. Affected by this vulnerability is the function upgrade_filter_asp of the file /upgrade_filter.asp. The manipu… Update CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow
CVE-2024-11047 2024-11-14 05:56 2024-11-10 Show GitHub Exploit DB Packet Storm
987 9.8 CRITICAL
Network
dlink di-8003_firmware A vulnerability was found in D-Link DI-8003 16.07.16A1. It has been rated as critical. Affected by this issue is the function dbsrv_asp of the file /dbsrv.asp. The manipulation of the argument str le… Update CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow
CVE-2024-11048 2024-11-14 05:53 2024-11-10 Show GitHub Exploit DB Packet Storm
988 5.4 MEDIUM
Network
cleversoft clever_addons_for_elementor Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CleverSoft Clever Addons for Elementor allows Stored XSS.This issue affects Clever Addons … Update CWE-79
Cross-site Scripting
CVE-2024-51580 2024-11-14 05:50 2024-11-10 Show GitHub Exploit DB Packet Storm
989 5.4 MEDIUM
Network
nicheaddons restaurant_\&_cafe_addon_for_elementor Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in NicheAddons Restaurant & Cafe Addon for Elementor allows Stored XSS.This issue affects Res… Update CWE-79
Cross-site Scripting
CVE-2024-51581 2024-11-14 05:49 2024-11-10 Show GitHub Exploit DB Packet Storm
990 7.2 HIGH
Network
salesagility suitecrm SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. SuiteCRM relies on the blacklist of functions/methods to prevent installation of malicious ML… Update NVD-CWE-noinfo
CVE-2024-49774 2024-11-14 05:40 2024-11-6 Show GitHub Exploit DB Packet Storm