Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 16, 2024, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
199061 5 警告 IBM - IBM WebSphere Application Server におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 CWE-20
不適切な入力確認
CVE-2012-0193 2012-01-24 16:21 2012-01-17 Show GitHub Exploit DB Packet Storm
199062 10 危険 IBM - IBM Rational License Key Server その他の製品におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2011-1389 2012-01-24 16:19 2012-01-19 Show GitHub Exploit DB Packet Storm
199063 10 危険 フレクセラ・ソフトウェア合同会社 - Flexera FlexNet Publisher の lmgrd におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2011-4135 2012-01-24 16:02 2011-08-16 Show GitHub Exploit DB Packet Storm
199064 10 危険 フレクセラ・ソフトウェア合同会社 - Flexera FlexNet Publisher の lmadmin におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-4134 2012-01-24 15:42 2011-08-3 Show GitHub Exploit DB Packet Storm
199065 2.1 注意 フレクセラ・ソフトウェア合同会社 - Flexera Macrovision InstallShield における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2007-6744 2012-01-24 15:32 2007-05-23 Show GitHub Exploit DB Packet Storm
199066 9 危険 シスコシステムズ - Cisco Digital Media Manager における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2012-0329 2012-01-24 15:22 2012-01-18 Show GitHub Exploit DB Packet Storm
199067 5.1 警告 Yahoo! - Yahoo! Messenger の YImage.dll の CYImage::LoadJPG メソッドにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2012-0268 2012-01-24 15:13 2012-01-19 Show GitHub Exploit DB Packet Storm
199068 5 警告 Certec EDV - Certec EDV atvise におけるサービス運用妨害 (デーモンクラッシュ) の脆弱性 CWE-noinfo
情報不足
CVE-2011-4873 2012-01-24 15:11 2012-01-19 Show GitHub Exploit DB Packet Storm
199069 10 危険 シスコシステムズ - Cisco TelePresence Software における設定を変更される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-4659 2012-01-24 15:09 2012-01-18 Show GitHub Exploit DB Packet Storm
199070 9.3 危険 IBM - IBM SPSS Dimensions および SPSS Data Collection における任意のコードを実行される脆弱性 CWE-noinfo
情報不足
CVE-2012-0188 2012-01-23 17:54 2012-01-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 17, 2024, 5:17 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
851 5.5 MEDIUM
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci: fix null-ptr-deref in hci_read_supported_codecs Fix __hci_cmd_sync_sk() to return not NULL for unknown opcodes. … Update CWE-476
 NULL Pointer Dereference
CVE-2024-50255 2024-11-15 03:10 2024-11-9 Show GitHub Exploit DB Packet Storm
852 5.5 MEDIUM
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: bpf: Free dynamically allocated bits in bpf_iter_bits_destroy() bpf_iter_bits_destroy() uses "kit->nr_bits <= 64" to check whethe… Update CWE-401
 Missing Release of Memory after Effective Lifetime
CVE-2024-50254 2024-11-15 03:09 2024-11-9 Show GitHub Exploit DB Packet Storm
853 5.5 MEDIUM
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: bpf: Check the validity of nr_words in bpf_iter_bits_new() Check the validity of nr_words in bpf_iter_bits_new(). Without this ch… Update NVD-CWE-noinfo
CVE-2024-50253 2024-11-15 03:09 2024-11-9 Show GitHub Exploit DB Packet Storm
854 5.5 MEDIUM
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrum_ipip: Fix memory leak when changing remote IPv6 address The device stores IPv6 addresses that are used for encaps… Update CWE-401
 Missing Release of Memory after Effective Lifetime
CVE-2024-50252 2024-11-15 03:08 2024-11-9 Show GitHub Exploit DB Packet Storm
855 6.5 MEDIUM
Network
lsquared l_squared_hub Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in L Squared Support L Squared Hub WP allows SQL Injection.This issue affects L Squared Hub WP: from… Update CWE-89
SQL Injection
CVE-2024-51820 2024-11-15 03:03 2024-11-11 Show GitHub Exploit DB Packet Storm
856 5.3 MEDIUM
Network
sap s\/4_hana Fields which are in 'read only' state in Bank Statement Draft in Manage Bank Statements application, could be modified by MERGE method. The property of an OData entity representing assumably immutabl… Update CWE-650
CVE-2024-45282 2024-11-15 02:56 2024-10-8 Show GitHub Exploit DB Packet Storm
857 9.8 CRITICAL
Network
webfulcreations computer_repair_shop Unrestricted Upload of File with Dangerous Type vulnerability in Webful Creations Computer Repair Shop allows Upload a Web Shell to a Web Server.This issue affects Computer Repair Shop: from n/a thro… Update CWE-434
 Unrestricted Upload of File with Dangerous Type 
CVE-2024-51793 2024-11-15 02:54 2024-11-11 Show GitHub Exploit DB Packet Storm
858 4.3 MEDIUM
Network
sap hana-client The SAP HANA Node.js client package versions from 2.0.0 before 2.21.31 is impacted by Prototype Pollution vulnerability allowing an attacker to add arbitrary properties to global object prototypes. T… Update CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
CVE-2024-45277 2024-11-15 02:54 2024-10-8 Show GitHub Exploit DB Packet Storm
859 5.4 MEDIUM
Network
wpgrids slicko Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in wpgrids Slicko allows DOM-Based XSS.This issue affects Slicko: from n/a through 1.2.0. Update CWE-79
Cross-site Scripting
CVE-2024-51591 2024-11-15 02:51 2024-11-10 Show GitHub Exploit DB Packet Storm
860 6.5 MEDIUM
Network
sap businessobjects_business_intelligence SAP BusinessObjects Business Intelligence Platform allows an authenticated user to send a specially crafted request to the Web Intelligence Reporting Server to download any file from the machine host… Update CWE-434
 Unrestricted Upload of File with Dangerous Type 
CVE-2024-37179 2024-11-15 02:35 2024-10-8 Show GitHub Exploit DB Packet Storm