Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Oct. 31, 2024, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
202891 6.8 警告 マイクロソフト - Microsoft Windows の kernel における権限を取得される脆弱性 CWE-20
不適切な入力確認
CVE-2009-1127 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
202892 10 危険 マイクロソフト - Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2009-2523 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
202893 9.3 危険 マイクロソフト - Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2009-2512 2010-01-4 15:23 2009-11-10 Show GitHub Exploit DB Packet Storm
202894 10 危険 アップル
VMware
サン・マイクロシステムズ
- Sun Java SE の Provider クラスにおける詳細不明な脆弱性 CWE-noinfo
情報不足
CVE-2009-2722 2010-01-4 14:56 2009-08-10 Show GitHub Exploit DB Packet Storm
202895 10 危険 アップル
VMware
サン・マイクロシステムズ
- Sun Java SE の Provider クラスにおける詳細不明な脆弱性 CWE-noinfo
情報不足
CVE-2009-2723 2010-01-4 14:55 2009-08-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Oct. 31, 2024, 8:16 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
171 5.5 MEDIUM
Local
apple macos The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS Sequoia 15, macOS Sonoma 14.7.1. A sandboxed app may be able to access sensitive user data. New NVD-CWE-noinfo
CVE-2024-40855 2024-10-31 04:35 2024-10-29 Show GitHub Exploit DB Packet Storm
172 - - - CycloneDX cdxgen through 10.10.7, when run against an untrusted codebase, may execute code contained within build-related files such as build.gradle.kts, a similar issue to CVE-2022-24441. cdxgen is … Update - CVE-2024-50611 2024-10-31 04:35 2024-10-28 Show GitHub Exploit DB Packet Storm
173 - - - GSL (GNU Scientific Library) through 2.8 has an integer signedness error in gsl_siman_solve_many in siman/siman.c. When params.n_tries is negative, incorrect memory allocation occurs. Update - CVE-2024-50610 2024-10-31 04:35 2024-10-28 Show GitHub Exploit DB Packet Storm
174 - - - mipjz 5.0.5 is vulnerable to Cross Site Scripting (XSS) in \app\setting\controller\ApiAdminSetting.php via the ICP parameter. Update - CVE-2024-48233 2024-10-31 04:35 2024-10-26 Show GitHub Exploit DB Packet Storm
175 - - - An issue was found in mipjz 5.0.5. In the mipPost method of \app\setting\controller\ApiAdminTool.php, the value of the postAddress parameter is not processed and is directly passed into curl_exec exe… Update - CVE-2024-48232 2024-10-31 04:35 2024-10-26 Show GitHub Exploit DB Packet Storm
176 7.5 HIGH
Network
emqx nanomq An invalid read size in Nanomq v0.21.9 allows attackers to cause a Denial of Service (DoS). Update NVD-CWE-noinfo
CVE-2024-44460 2024-10-31 04:35 2024-09-13 Show GitHub Exploit DB Packet Storm
177 - - - Marinus Pfund, member of the AXIS OS Bug Bounty Program, has found the VAPIX API ledlimit.cgi was vulnerable for path traversal attacks allowing to list folder/file names on the local file system of… Update - CVE-2024-0067 2024-10-31 04:35 2024-09-10 Show GitHub Exploit DB Packet Storm
178 5.3 MEDIUM
Network
hyperledger fabric Hyperledger Fabric through 2.5.9 does not verify that a request has a timestamp within the expected time window. Update NVD-CWE-noinfo
CVE-2024-45244 2024-10-31 04:35 2024-08-25 Show GitHub Exploit DB Packet Storm
179 - - - In Spring Framework versions 5.3.0 - 5.3.38 and older unsupported versions, it is possible for a user to provide a specially crafted Spring Expression Language (SpEL) expression that may cause a deni… Update - CVE-2024-38808 2024-10-31 04:35 2024-08-20 Show GitHub Exploit DB Packet Storm
180 - - - Incomplete system memory cleanup in SEV firmware could allow a privileged attacker to corrupt guest private memory, potentially resulting in a loss of data integrity. New - CVE-2023-31356 2024-10-31 04:35 2024-08-14 Show GitHub Exploit DB Packet Storm