Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Sept. 24, 2024, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
199601	7.8	危険	サイバートラスト株式会社 Linux レッドハット	-	Linux kernel の e1000_clean_rx_irq 関数における整数アンダーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-1385	2010-02-15 11:03	2009-06-4	Show	GitHub Exploit DB Packet Storm

199602	4.6	警告	サイバートラスト株式会社 Todd C. Miller	-	sudo の Perl スクリプト実行時における権限昇格の脆弱性	-	CVE-2005-4158	2010-02-15 11:03	2005-11-8	Show	GitHub Exploit DB Packet Storm

199603	1	注意	オラクル	-	Oracle Database および Oracle Application Server の Unzip コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3412	2010-02-12 12:22	2010-01-12	Show	GitHub Exploit DB Packet Storm

199604	3.2	注意	オラクル	-	Oracle Database の Oracle Spatial コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3413	2010-02-12 12:22	2010-01-12	Show	GitHub Exploit DB Packet Storm

199605	3.6	注意	オラクル	-	Oracle Database の RDBMS コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3410	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

199606	4	警告	オラクル	-	Oracle Database の Logical Standby コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-1996	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

199607	4.9	警告	オラクル	-	Oracle Database の Oracle Spatial コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3414	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

199608	4.9	警告	オラクル	-	Oracle Database の Oracle Data Pump コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3411	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

199609	6	警告	オラクル	-	Oracle Database の Application Express Application Builder コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0076	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

199610	9	危険	オラクル	-	Oracle Database の Oracle OLAP コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3415	2010-02-12 12:20	2010-01-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Sept. 24, 2024, 12:15 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
121	8.8	HIGH Network	microsoft	sql_2016_azure_connect_feature_pack sql_server_2016 sql_server_2017 sql_server_2019 sql_server_2022	Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability Update	NVD-CWE-noinfo	CVE-2024-26186	2024-09-24 01:48	2024-09-11	Show	GitHub Exploit DB Packet Storm

122	4.4	MEDIUM Local	codesys	oscat_basic_library	Out-of-Bounds read vulnerability in OSCAT Basic Library allows an local, unprivileged attacker to access limited internal data of the PLC which may lead to a crash of the affected service. Update	CWE-125 Out-of-bounds Read	CVE-2024-6876	2024-09-24 01:45	2024-09-11	Show	GitHub Exploit DB Packet Storm

123	9.8	CRITICAL Network	microsoft	sql_server_2016 sql_server_2017 sql_server_2019 sql_server_2022 sql_2016_azure_connect_feature_pack	Microsoft SQL Server Elevation of Privilege Vulnerability Update	NVD-CWE-noinfo	CVE-2024-37341	2024-09-24 01:38	2024-09-11	Show	GitHub Exploit DB Packet Storm

124	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/imagination: Free pvr_vm_gpuva after unlink This caused a measurable memory leak. Although the individual allocations are sma… Update	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2024-46779	2024-09-24 01:37	2024-09-18	Show	GitHub Exploit DB Packet Storm

125	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix missing cleanup on rollforward recovery error In an error injection test of a routine for mount-time recovery, KASAN … Update	CWE-416 Use After Free	CVE-2024-46781	2024-09-24 01:37	2024-09-18	Show	GitHub Exploit DB Packet Storm

126	-		-	-	An issue was discovered in vesoft NebulaGraph through 3.8.0. It allows shell command injection. New	-	CVE-2024-47219	2024-09-24 01:35	2024-09-22	Show	GitHub Exploit DB Packet Storm

127	-		-	-	An issue was discovered in vesoft NebulaGraph through 3.8.0. It allows bypassing authentication. New	-	CVE-2024-47218	2024-09-24 01:35	2024-09-22	Show	GitHub Exploit DB Packet Storm

128	-		-	-	Gladys Assistant before 4.45.1 allows Privilege Escalation (a user changing their own role) because req.body.role can be used in updateMySelf in server/api/controllers/user.controller.js. New	-	CVE-2024-47210	2024-09-24 01:35	2024-09-22	Show	GitHub Exploit DB Packet Storm

129	-		-	-	SnakeYaml Deser Load Malicious xml rce vulnerability in Apache HertzBeat (incubating). This vulnerability can only be exploited by authorized attackers. This issue affects Apache HertzBeat (incubat… New	CWE-502 Deserialization of Untrusted Data	CVE-2024-42323	2024-09-24 01:35	2024-09-21	Show	GitHub Exploit DB Packet Storm

130	-		-	-	SeaCMS 13.2 has a remote code execution vulnerability located in the file sql.class.chp. Although the system has a check function, the check function is not executed during execution, allowing remote… Update	-	CVE-2024-46640	2024-09-24 01:35	2024-09-21	Show	GitHub Exploit DB Packet Storm