Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 16, 2024, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
202131 9.3 危険 マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2010-3950 2011-01-18 14:24 2010-12-14 Show GitHub Exploit DB Packet Storm
202132 9.3 危険 マイクロソフト - Microsoft Windows XP および Office Converter Pack におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2010-3949 2011-01-18 14:22 2010-12-14 Show GitHub Exploit DB Packet Storm
202133 9.3 危険 マイクロソフト - 複数の Microsoft 製品におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2010-3947 2011-01-18 14:20 2010-12-14 Show GitHub Exploit DB Packet Storm
202134 9.3 危険 マイクロソフト - 複数の Microsoft 製品における整数オーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2010-3946 2011-01-18 14:18 2010-12-14 Show GitHub Exploit DB Packet Storm
202135 9.3 危険 マイクロソフト - 複数の Microsoft 製品におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2010-3945 2011-01-18 14:15 2010-12-14 Show GitHub Exploit DB Packet Storm
202136 7.5 危険 マイクロソフト - Microsoft Office SharePoint Server 2007 における任意のコードを実行される脆弱性 CWE-Other
その他
CVE-2010-3964 2011-01-18 14:12 2010-12-14 Show GitHub Exploit DB Packet Storm
202137 9.3 危険 マイクロソフト - Microsoft Publisher の pubconv.dll における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2010-3955 2011-01-18 14:09 2010-12-14 Show GitHub Exploit DB Packet Storm
202138 9.3 危険 マイクロソフト - Microsoft Publisher における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2010-3954 2011-01-18 14:06 2010-12-14 Show GitHub Exploit DB Packet Storm
202139 9.3 危険 マイクロソフト - Microsoft Publisher の pubconv.dll における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2010-2571 2011-01-18 14:04 2010-12-14 Show GitHub Exploit DB Packet Storm
202140 5 警告 Rocomotion - 複数の Rocomotion 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-3931 2011-01-18 12:02 2011-01-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 16, 2024, 4:17 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1291 - - - The fetch(3) library uses environment variables for passing certain information, including the revocation file pathname. The environment variable name used by fetch(1) to pass the filename to the li… Update - CVE-2024-45289 2024-11-14 00:35 2024-11-13 Show GitHub Exploit DB Packet Storm
1292 - - - File Upload vulnerability in Laravel CMS v.1.4.7 and before allows a remote attacker to execute arbitrary code via the shell.php a component. Update - CVE-2024-51152 2024-11-14 00:35 2024-11-9 Show GitHub Exploit DB Packet Storm
1293 - - - An incorrect access control issue in Life: Personal Diary, Journal android app 17.5.0 allows a physically proximate attacker to escalate privileges via the fingerprint authentication function. Update - CVE-2024-40239 2024-11-14 00:35 2024-11-9 Show GitHub Exploit DB Packet Storm
1294 5.5 MEDIUM
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: be2net: fix potential memory leak in be_xmit() The be_xmit() returns NETDEV_TX_OK without freeing skb in case of be_xmit_enqueue(… Update CWE-401
 Missing Release of Memory after Effective Lifetime
CVE-2024-50167 2024-11-14 00:29 2024-11-7 Show GitHub Exploit DB Packet Storm
1295 5.5 MEDIUM
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k_htc: Use __skb_set_length() for resetting urb before resubmit Syzbot points out that skb_trim() has a sanity check on… Update CWE-824
 Access of Uninitialized Pointer
CVE-2024-49938 2024-11-14 00:25 2024-10-22 Show GitHub Exploit DB Packet Storm
1296 6.1 MEDIUM
Network
veritas data_insight An XSS vulnerability was discovered in Veritas Data Insight before 7.1. It allows a remote attacker to inject an arbitrary web script into an HTTP request that could reflect back to an authenticated … Update CWE-79
Cross-site Scripting
CVE-2024-47854 2024-11-14 00:25 2024-10-4 Show GitHub Exploit DB Packet Storm
1297 6.5 MEDIUM
Adjacent
zephyrproject zephyr No proper validation of the length of user input in olcp_ind_handler in zephyr/subsys/bluetooth/services/ots/ots_client.c. Update CWE-787
 Out-of-bounds Write
CVE-2024-6444 2024-11-14 00:24 2024-10-4 Show GitHub Exploit DB Packet Storm
1298 5.5 MEDIUM
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: scsi: target: core: Fix null-ptr-deref in target_alloc_device() There is a null-ptr-deref issue reported by KASAN: BUG: KASAN: n… Update CWE-476
 NULL Pointer Dereference
CVE-2024-50153 2024-11-14 00:23 2024-11-7 Show GitHub Exploit DB Packet Storm
1299 5.5 MEDIUM
Local
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ACPI: PAD: fix crash in exit_round_robin() The kernel occasionally crashes in cpumask_clear_cpu(), which is called within exit_ro… Update NVD-CWE-noinfo
CVE-2024-49935 2024-11-14 00:21 2024-10-22 Show GitHub Exploit DB Packet Storm
1300 4.6 MEDIUM
Physics
linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: fs/inode: Prevent dump_mapping() accessing invalid dentry.d_name.name It's observed that a crash occurs during hot-remove a memor… Update NVD-CWE-noinfo
CVE-2024-49934 2024-11-14 00:18 2024-10-22 Show GitHub Exploit DB Packet Storm