Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Sept. 28, 2024, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
200251	6.8	警告	アップルサイバートラスト株式会社サン・マイクロシステムズターボリナックスヒューレット・パッカード OpenSSL Project レッドハット	-	OpenSSL の SSL_get_shared_ciphers() 関数における一つずれエラーの脆弱性	CWE-189 数値処理の問題	CVE-2007-5135	2010-01-5 13:31	2007-10-12	Show	GitHub Exploit DB Packet Storm

200252	7.8	危険	マイクロソフト	-	Microsoft Windows で稼働している Active Directory の LDAP サービスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-1928	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

200253	9.3	危険	マイクロソフト	-	Microsoft Windows の kernel における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2514	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

200254	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-2513	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

200255	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

200256	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

200257	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

200258	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

200259	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Sept. 29, 2024, 5:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1991	8.8	HIGH Network	adobe suse opensuse redhat	flash_player adobe_air_sdk adobe_air linux_enterprise_desktop opensuse enterprise_linux_server enterprise_linux_workstation enterprise_linux_server_aus enterprise_linux_deskto…	Double free vulnerability in Adobe Flash Player before 11.7.700.269 and 11.8.x through 12.0.x before 12.0.0.70 on Windows and Mac OS X and before 11.2.202.341 on Linux, Adobe AIR before 4.0.0.1628 on…	CWE-415 Double Free	CVE-2014-0502	2024-09-20 04:53	2014-02-21	Show	GitHub Exploit DB Packet Storm

1992	8.8	HIGH Network	adobe suse opensuse redhat	flash_player linux_enterprise_desktop opensuse enterprise_linux_server_aus enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux_eus	Unspecified vulnerability in the ExternalInterface ActionScript functionality in Adobe Flash Player before 10.3.183.67 and 11.x before 11.6.602.171 on Windows and Mac OS X, and before 10.3.183.67 and…	NVD-CWE-noinfo	CVE-2013-0648	2024-09-20 04:51	2013-02-27	Show	GitHub Exploit DB Packet Storm

1993	8.8	HIGH Network	adobe redhat suse opensuse	flash_player enterprise_linux_server_aus enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux_eus linux_enterprise_desktop opensuse	The Firefox sandbox in Adobe Flash Player before 10.3.183.67 and 11.x before 11.6.602.171 on Windows and Mac OS X, and before 10.3.183.67 and 11.x before 11.2.202.273 on Linux, does not properly rest…	NVD-CWE-noinfo	CVE-2013-0643	2024-09-20 04:48	2013-02-27	Show	GitHub Exploit DB Packet Storm

1994	4.3	MEDIUM Network	lunary	lunary	A broken access control vulnerability exists in the latest version of lunary-ai/lunary. The `saml.ts` file allows a user from one organization to update the Identity Provider (IDP) settings and view …	CWE-306 Missing Authentication for Critical Function	CVE-2024-6582	2024-09-20 04:45	2024-09-14	Show	GitHub Exploit DB Packet Storm

1995	8.8	HIGH Network	thingsboard	thingsboard	ThingsBoard before 3.5 allows Server-Side Template Injection if users are allowed to modify an email template, because Apache FreeMarker supports freemarker.template.utility.Execute (for content sent…	CWE-74 Injection	CVE-2023-45303	2024-09-20 04:35	2023-10-7	Show	GitHub Exploit DB Packet Storm

1996	7.5	HIGH Network	nasa	openmct	In NASA Open MCT (aka openmct) before 3.1.0, prototype pollution can occur via an import action.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2023-45282	2024-09-20 04:35	2023-10-7	Show	GitHub Exploit DB Packet Storm

1997	9.8	CRITICAL Network	presto-changeo	attribute_grid	Presto Changeo attributegrid up to 2.0.3 was discovered to contain a SQL injection vulnerability via the component disable_json.php.	CWE-89 SQL Injection	CVE-2023-43983	2024-09-20 04:35	2023-10-6	Show	GitHub Exploit DB Packet Storm

1998	7.5	HIGH Network	dlink	dir-823g_firmware	D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the Password parameter in the SetWanSettings function. This vulnerability allows attackers to cause a Denial of Service (Do…	CWE-120 Classic Buffer Overflow	CVE-2023-44837	2024-09-20 04:35	2023-10-6	Show	GitHub Exploit DB Packet Storm

1999	7.5	HIGH Network	dlink	dir-823g_firmware	D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the SSID parameter in the SetWLanRadioSettings function. This vulnerability allows attackers to cause a Denial of Service (…	CWE-120 Classic Buffer Overflow	CVE-2023-44836	2024-09-20 04:35	2023-10-6	Show	GitHub Exploit DB Packet Storm

2000	7.5	HIGH Network	dlink	dir-823g_firmware	D-Link DIR-823G A1V1.0.2B05 was discovered to contain a buffer overflow via the Mac parameter in the SetParentsControlInfo function. This vulnerability allows attackers to cause a Denial of Service (…	CWE-120 Classic Buffer Overflow	CVE-2023-44835	2024-09-20 04:35	2023-10-6	Show	GitHub Exploit DB Packet Storm