Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Sept. 23, 2024, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
199431 3.6 注意 オラクル - Oracle Database の RDBMS コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3410 2010-02-12 12:21 2010-01-12 Show GitHub Exploit DB Packet Storm
199432 4 警告 オラクル - Oracle Database の Logical Standby コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-1996 2010-02-12 12:21 2010-01-12 Show GitHub Exploit DB Packet Storm
199433 4.9 警告 オラクル - Oracle Database の Oracle Spatial コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3414 2010-02-12 12:21 2010-01-12 Show GitHub Exploit DB Packet Storm
199434 4.9 警告 オラクル - Oracle Database の Oracle Data Pump コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3411 2010-02-12 12:21 2010-01-12 Show GitHub Exploit DB Packet Storm
199435 6 警告 オラクル - Oracle Database の Application Express Application Builder コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0076 2010-02-12 12:21 2010-01-12 Show GitHub Exploit DB Packet Storm
199436 9 危険 オラクル - Oracle Database の Oracle OLAP コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3415 2010-02-12 12:20 2010-01-12 Show GitHub Exploit DB Packet Storm
199437 10 危険 オラクル - Oracle Database の Listener コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0071 2010-02-12 12:20 2010-01-12 Show GitHub Exploit DB Packet Storm
199438 5 警告 Pidgin
Adium
レッドハット		 - Pidgin および Adium の MSN プロトコルプラグインにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-0013 2010-02-10 13:39 2010-01-8 Show GitHub Exploit DB Packet Storm
199439 10 危険 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat の U3D 実装における任意のコードを実行される脆弱性 CWE-189
数値処理の問題 		CVE-2009-3959 2010-02-10 13:39 2010-01-12 Show GitHub Exploit DB Packet Storm
199440 10 危険 アドビシステムズ - Adobe Reader および Acrobat のダウンロードマネージャーにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-3958 2010-02-10 13:39 2010-01-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Sept. 23, 2024, 4:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2341 7.8 HIGH
Local 		intel nuc_x15_laptop_kit_lapac71h
nuc_x15_laptop_kit_lapac71g
nuc_x15_laptop_kit_lapkc71f
nuc_x15_laptop_kit_lapkc71e
nuc_x15_laptop_kit_lapkc51e
nuc_m15_laptop_kit_lapbc710
nuc_m15_lapto… 		Insecure inherited permissions in some Intel(R) HID Event Filter software installers before version 2.2.2.1 may allow an authenticated user to potentially enable escalation of privilege via local acc… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2024-25561 2024-09-13 03:50 2024-08-14 Show GitHub Exploit DB Packet Storm
2342 7.8 HIGH
Local 		intel license_manager_for_flexim Uncontrolled search path for some Intel(R) License Manager for FLEXlm product software before version 11.19.5.0 may allow an authenticated user to potentially enable escalation of privilege via local… CWE-427
 Uncontrolled Search Path Element 		CVE-2024-24977 2024-09-13 03:45 2024-08-14 Show GitHub Exploit DB Packet Storm
2343 7.8 HIGH
Local 		intel flexlm_license_daemons_for_intel_fpga Insecure inherited permissions in some Flexlm License Daemons for Intel(R) FPGA software before version v11.19.5.0 may allow an authenticated user to potentially enable escalation of privilege via lo… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2024-23908 2024-09-13 03:43 2024-08-14 Show GitHub Exploit DB Packet Storm
2344 5.5 MEDIUM
Local 		swftools swftools A heap-use-after-free was found in SWFTools v0.9.2, in the function input at lex.swf5.c:2620. It allows an attacker to cause denial of service. CWE-416
 Use After Free 		CVE-2024-22914 2024-09-13 03:35 2024-01-20 Show GitHub Exploit DB Packet Storm
2345 5.5 MEDIUM
Local 		gpac gpac GPAC 2.3-DEV-rev605-gfc9e29089-master contains a heap-buffer-overflow in gf_isom_use_compact_size gpac/src/isomedia/isom_write.c:3403:3 in gpac/MP4Box. CWE-787
 Out-of-bounds Write 		CVE-2023-46927 2024-09-13 03:35 2023-11-2 Show GitHub Exploit DB Packet Storm
2346 9.8 CRITICAL
Network 		totolink x6000r_firmware TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE) vulnerability via the sub_422BD4 function. CWE-77
Command Injection 		CVE-2023-46424 2024-09-13 03:35 2023-10-26 Show GitHub Exploit DB Packet Storm
2347 7.5 HIGH
Network 		zanllp stable_diffusion_webui_infinite_image_browsing The zanllp sd-webui-infinite-image-browsing (aka Infinite Image Browsing) extension before 977815a for stable-diffusion-webui (aka Stable Diffusion web UI), if Gradio authentication is enabled withou… NVD-CWE-Other
CVE-2023-46315 2024-09-13 03:35 2023-10-23 Show GitHub Exploit DB Packet Storm
2348 9.8 CRITICAL
Network 		openedx openedx This openedx-translations repository contains translation files from Open edX repositories to be kept in sync with Transifex. Before moving to pulling translations from the openedx-translations repos… CWE-74
Injection 		CVE-2024-43782 2024-09-13 03:29 2024-08-24 Show GitHub Exploit DB Packet Storm
2349 7.8 HIGH
Local 		steveklabnik request_store RequestStore provides per-request global storage for Rack. The files published as part of request_store 1.3.2 have 0666 permissions, meaning that they are world-writable, which allows local users to … CWE-276
Incorrect Default Permissions  		CVE-2024-43791 2024-09-13 03:26 2024-08-24 Show GitHub Exploit DB Packet Storm
2350 8.8 HIGH
Local 		intel ethernet_800_series_controllers_driver Out-of-bounds write in Linux kernel mode driver for some Intel(R) Ethernet Network Controllers and Adapters before version 28.3 may allow an authenticated user to potentially enable escalation of pri… CWE-787
 Out-of-bounds Write 		CVE-2024-23497 2024-09-13 03:26 2024-08-14 Show GitHub Exploit DB Packet Storm