Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Oct. 3, 2024, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
200061	3.6	注意	サン・マイクロシステムズオラクル	-	Oracle Sun Product Suite の Solaris コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0895	2010-05-14 18:42	2010-04-13	Show	GitHub Exploit DB Packet Storm

200062	4.3	警告	オラクル	-	Oracle Sun Product Suite の Sun Convergence コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0893	2010-05-14 18:42	2010-04-13	Show	GitHub Exploit DB Packet Storm

200063	4.9	警告	サン・マイクロシステムズオラクル	-	Oracle Sun Product Suite の Solaris コンポーネントにおける脆弱性	CWE-20 不適切な入力確認	CVE-2010-0453	2010-05-14 18:42	2010-02-3	Show	GitHub Exploit DB Packet Storm

200064	4.9	警告	サン・マイクロシステムズオラクル	-	Oracle Sun Product Suite の Solaris コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0889	2010-05-14 18:41	2010-04-13	Show	GitHub Exploit DB Packet Storm

200065	5.8	警告	オラクル	-	Oracle Sun Product Suite の Sun Management Center コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0891	2010-05-14 18:41	2010-04-13	Show	GitHub Exploit DB Packet Storm

200066	5.8	警告	オラクル	-	Oracle Sun Product Suite の Sun Java System Access Manager コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0894	2010-05-14 18:41	2010-04-13	Show	GitHub Exploit DB Packet Storm

200067	6.8	警告	オラクル	-	Oracle Sun Product Suite の Sun Java System Communications Express コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0885	2010-05-14 18:41	2010-04-13	Show	GitHub Exploit DB Packet Storm

200068	7.1	危険	オラクル	-	Oracle Sun Product Suite の Sun Convergence コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0896	2010-05-14 18:41	2010-04-13	Show	GitHub Exploit DB Packet Storm

200069	7.2	危険	サン・マイクロシステムズオラクル	-	Oracle Sun Product Suite の Solaris コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0882	2010-05-14 18:40	2010-04-13	Show	GitHub Exploit DB Packet Storm

200070	7.5	危険	オラクル	-	Oracle Sun Product Suite の Sun Java System Directory Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0897	2010-05-14 18:40	2010-04-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Oct. 3, 2024, 12:13 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1771	6.1	MEDIUM Network	likebtn	like_button_rating	Cross-Site Request Forgery (CSRF) vulnerability in LikeBtn Like Button Rating allows Cross-Site Scripting (XSS).This issue affects Like Button Rating: from n/a through 2.6.54.	CWE-352 Origin Validation Error	CVE-2024-44064	2024-09-25 03:15	2024-09-18	Show	GitHub Exploit DB Packet Storm

1772	9.8	CRITICAL Network	tenda	ac15_firmware	Command Injection vulnerability in goform/SetIPTVCfg interface of Tenda AC15 V15.03.05.20 allows remote attackers to run arbitrary commands via crafted POST request.	CWE-77 Command Injection	CVE-2023-36103	2024-09-25 03:10	2024-09-11	Show	GitHub Exploit DB Packet Storm

1773	4.3	MEDIUM Network	jetbrains	youtrack	In JetBrains YouTrack before 2024.3.44799 user without appropriate permissions could restore workflows attached to a project	CWE-863 Incorrect Authorization	CVE-2024-47159	2024-09-25 03:09	2024-09-20	Show	GitHub Exploit DB Packet Storm

1774	7.8	HIGH Local	samsung	exynos_1480_firmware exynos_2400_firmware	An issue was discovered in Samsung Mobile Processor Exynos 1480, Exynos 2400. The xclipse amdgpu driver has a reference count bug. This can lead to a use after free.	CWE-416 Use After Free	CVE-2024-31960	2024-09-25 03:08	2024-09-11	Show	GitHub Exploit DB Packet Storm

1775	5.3	MEDIUM Network	jetbrains	youtrack	In JetBrains YouTrack before 2024.3.44799 access to global app config data without appropriate permissions was possible	CWE-863 Incorrect Authorization	CVE-2024-47160	2024-09-25 03:03	2024-09-20	Show	GitHub Exploit DB Packet Storm

1776	5.5	MEDIUM Local	apple	macos	An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15. An app may be able to access protected user data.	NVD-CWE-noinfo	CVE-2024-44186	2024-09-25 03:03	2024-09-17	Show	GitHub Exploit DB Packet Storm

1777	5.5	MEDIUM Local	apple	macos	A path handling issue was addressed with improved validation. This issue is fixed in macOS Ventura 13.7, macOS Sonoma 14.7, macOS Sequoia 15. An app may be able to read arbitrary files.	CWE-22 Path Traversal	CVE-2024-44190	2024-09-25 03:02	2024-09-17	Show	GitHub Exploit DB Packet Storm

1778	5.3	MEDIUM Network	jetbrains	youtrack	In JetBrains YouTrack before 2024.3.44799 token could be revealed on Imports page	CWE-522 Insufficiently Protected Credentials	CVE-2024-47162	2024-09-25 02:57	2024-09-20	Show	GitHub Exploit DB Packet Storm

1779	8.8	HIGH Adjacent	sonos	era_100_firmware	Sonos Era 100 SMB2 Message Handling Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Son…	CWE-416 Use After Free	CVE-2024-5269	2024-09-25 02:50	2024-06-7	Show	GitHub Exploit DB Packet Storm

1780	8.2	HIGH Local	dell	xps_8960_firmware xps_8950_firmware inspiron_3502_firmware inspiron_15_3521_firmware inspiron_15_3510_firmware aurora_r16_firmware alienware_x17_r2_firmware alienware_x17_r1_firm…	Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally developed component. A high privileged attacker with local access could potentially exploit this vulnera…	NVD-CWE-noinfo	CVE-2024-32858	2024-09-25 02:45	2024-06-13	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed