Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Nov. 14, 2024, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
202261	9.3	危険	マイクロソフト	-	Microsoft Office における権限昇格の脆弱性	CWE-Other その他	CVE-2010-3337	2010-12-6 15:44	2010-08-23	Show	GitHub Exploit DB Packet Storm

202262	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-3335	2010-12-6 15:36	2010-11-9	Show	GitHub Exploit DB Packet Storm

202263	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-3334	2010-12-6 15:30	2010-11-9	Show	GitHub Exploit DB Packet Storm

202264	4.3	警告	Zope Foundation	-	Zope Object Database の ZEO/StorageServer.py におけるサービス運用妨害 (DoS) の脆弱性	CWE-362 競合状態	CVE-2010-3495	2010-12-6 15:20	2010-10-19	Show	GitHub Exploit DB Packet Storm

202265	4.3	警告	マイクロソフト	-	複数の Microsoft 製品の toStaticHTML 関数および SafeHTML 関数におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3324	2010-12-3 14:05	2010-10-12	Show	GitHub Exploit DB Packet Storm

202266	6.8	警告	アップル	-	Apple Mac OS X の xar におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3798	2010-12-3 13:13	2010-11-16	Show	GitHub Exploit DB Packet Storm

202267	3.5	注意	アップル	-	Apple Mac OS X の Wiki サーバにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3797	2010-12-3 13:12	2010-11-16	Show	GitHub Exploit DB Packet Storm

202268	4.3	警告	アップル	-	Apple Mac OS X の Safari RSS における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-3796	2010-12-3 13:10	2010-11-16	Show	GitHub Exploit DB Packet Storm

202269	6	警告	PostgreSQL.org サイバートラスト株式会社ターボリナックスレッドハット	-	PostgreSQL の PL/perl および PL/Tcl 実装における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3433	2010-12-2 17:11	2010-10-4	Show	GitHub Exploit DB Packet Storm

202270	6.8	警告	アップルサイバートラスト株式会社ターボリナックス FreeType Project オラクルレッドハット	-	FreeType の Mac_Read_POST_Resource 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2808	2010-12-2 17:08	2010-08-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Nov. 14, 2024, 5:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1231	4.5	MEDIUM Adjacent	-	-	A buffer overflow vulnerability in the CGI program in the Zyxel GS1900-48 switch firmware version V2.80(AAHN.1)C0 and earlier could allow an authenticated, LAN-based attacker with administrator privi… New	CWE-120 Classic Buffer Overflow	CVE-2024-8882	2024-11-12 11:15	2024-11-12	Show	GitHub Exploit DB Packet Storm

1232	6.8	MEDIUM Adjacent	-	-	A post-authentication command injection vulnerability in the CGI program in the Zyxel GS1900-48 switch firmware version V2.80(AAHN.1)C0 and earlier could allow an authenticated, LAN-based attacker wi… New	-	CVE-2024-8881	2024-11-12 11:15	2024-11-12	Show	GitHub Exploit DB Packet Storm

1233	7.4	HIGH Network	-	-	In neomutt and mutt, the To and Cc email headers are not validated by cryptographic signing which allows an attacker that intercepts a message to change their value and include himself as a one of th… New	CWE-347 Improper Verification of Cryptographic Signature	CVE-2024-49393	2024-11-12 11:15	2024-11-12	Show	GitHub Exploit DB Packet Storm

1234	-		-	-	A vulnerability was found in code-projects Job Recruitment 1.0 and classified as critical. This issue affects some unknown processing of the file /login.php. The manipulation of the argument email le… New	CWE-89 CWE-74 SQL Injection Injection	CVE-2024-11099	2024-11-12 11:15	2024-11-12	Show	GitHub Exploit DB Packet Storm

1235	-		-	-	A vulnerability has been found in SourceCodester Student Record Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the component Main Menu. The manipulati… New	CWE-404 CWE-835 Improper Resource Shutdown or Release Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2024-11097	2024-11-12 11:15	2024-11-12	Show	GitHub Exploit DB Packet Storm

1236	-		-	-	An attacker who gains local membership to sapsys group could replace local files usually protected by privileged access. On successful exploitation the attacker could cause high impact on confidentia… New	CWE-266 Incorrect Privilege Assignment	CVE-2024-47595	2024-11-12 10:15	2024-11-12	Show	GitHub Exploit DB Packet Storm

1237	-		-	-	SAP NetWeaver Application Server ABAP allows an unauthenticated attacker with network access to read files from the server, which otherwise would be restricted.This attack is possible only if a Web D… New	-	CVE-2024-47593	2024-11-12 10:15	2024-11-12	Show	GitHub Exploit DB Packet Storm

1238	-		-	-	SAP NetWeaver AS Java allows an unauthenticated attacker to brute force the login functionality in order to identify the legitimate user IDs. This has an impact on confidentiality but not on integrit… New	-	CVE-2024-47592	2024-11-12 10:15	2024-11-12	Show	GitHub Exploit DB Packet Storm

1239	-		-	-	An unauthenticated attacker can create a malicious link which they can make publicly available. When an authenticated victim clicks on this malicious link, input data will be used by the web site pag… New	-	CVE-2024-47590	2024-11-12 10:15	2024-11-12	Show	GitHub Exploit DB Packet Storm

1240	-		-	-	In SAP NetWeaver Java (Software Update Manager 1.1), under certain conditions when a software upgrade encounters errors, credentials are written in plaintext to a log file. An attacker with local acc… New	CWE-522 Insufficiently Protected Credentials	CVE-2024-47588	2024-11-12 10:15	2024-11-12	Show	GitHub Exploit DB Packet Storm