Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Dec. 27, 2024, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
203011 10 危険 シスコシステムズ - Cisco TelePresence エンドポイントデバイスにおける任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2011-0372 2011-11-29 09:49 2011-02-23 Show GitHub Exploit DB Packet Storm
203012 10 危険 シスコシステムズ - Cisco Security Agent の Management Console における任意のファイルを作られる脆弱性 CWE-94
コード・インジェクション 		CVE-2011-0364 2011-11-29 09:48 2011-02-16 Show GitHub Exploit DB Packet Storm
203013 7.8 危険 VMware
シスコシステムズ		 - Cisco Nexus 1000V Virtual Ethernet Module におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-0355 2011-11-29 09:46 2011-02-7 Show GitHub Exploit DB Packet Storm
203014 7.5 危険 日本電気
アップル
アライドテレシス
サン・マイクロシステムズ
BEAシステムズ
レッドハット		 - Java Web Start において許可されていないシステムクラスが実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-2435 2011-11-28 16:52 2007-04-30 Show GitHub Exploit DB Packet Storm
203015 4 警告 サイボウズ - サイボウズ Office におけるアクセス制限不備の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2677 2011-11-28 16:45 2011-10-7 Show GitHub Exploit DB Packet Storm
203016 6.8 警告 Zenprise Inc. - Zenprise Device Manager にクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2011-4498 2011-11-28 14:56 2011-11-21 Show GitHub Exploit DB Packet Storm
203017 7.5 危険 アップル - Apple iTunes における脆弱性に対するアップデート CWE-94
コード・インジェクション 		CVE-2008-3434 2011-11-28 14:56 2011-11-15 Show GitHub Exploit DB Packet Storm
203018 7.5 危険 アップル - Apple Time Capsule および AirPort Base Station (802.11n) における複数の脆弱性に対するアップデート CWE-20
不適切な入力確認 		CVE-2011-0997 2011-11-28 14:52 2011-11-11 Show GitHub Exploit DB Packet Storm
203019 9.3 危険 Aviosoft - Aviosoft DTV Player にバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-4496 2011-11-28 14:49 2011-10-11 Show GitHub Exploit DB Packet Storm
203020 5 警告 デル - Dell KACE K2000 System Deployment Appliance に不正ログイン可能な脆弱性 CWE-310
暗号の問題 		CVE-2011-4046 2011-11-28 14:49 2011-11-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Dec. 27, 2024, 4:04 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1921 - - - In Splunk Enterprise versions below 9.3.2, 9.2.4, and 9.1.7 and Splunk Cloud Platform versions below 9.2.2406.107, 9.2.2403.109, and 9.1.2312.206, a low-privileged user that does not hold the “admin“… - CVE-2024-53244 2024-12-11 03:15 2024-12-11 Show GitHub Exploit DB Packet Storm
1922 - - - In Splunk Enterprise versions below 9.3.2, 9.2.4, and 9.1.7 and versions below 3.2.462, 3.7.18, and 3.8.5 of the Splunk Secure Gateway app on Splunk Cloud Platform, a low-privileged user that does no… - CVE-2024-53243 2024-12-11 03:15 2024-12-11 Show GitHub Exploit DB Packet Storm
1923 - - - MOBATIME Network Master Clock - DTS 4801 allows attackers to use SSH to gain initial access using default credentials. CWE-1392
 Use of Default Credentials 		CVE-2024-12286 2024-12-11 03:15 2024-12-11 Show GitHub Exploit DB Packet Storm
1924 - - - PwnDoc is a penetration test report generator. Prior to commit 1d4219c596f4f518798492e48386a20c6e9a2fe6, an authenticated user who is able to update and download templates can inject path traversal (… - CVE-2024-55602 2024-12-11 03:15 2024-12-11 Show GitHub Exploit DB Packet Storm
1925 - - - Directus is a real-time API and App dashboard for managing SQL database content. Starting in version 11.0.0 and prior to version 11.3.0, when setting `WEBSOCKETS_GRAPHQL_AUTH` or `WEBSOCKETS_REST_AUT… - CVE-2024-54151 2024-12-11 03:15 2024-12-10 Show GitHub Exploit DB Packet Storm
1926 - - - A stored cross-site scripting (XSS) vulnerability in the Device Settings section of LibreNMS v24.9.0 to v24.10.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload inject… - CVE-2024-53457 2024-12-11 03:15 2024-12-6 Show GitHub Exploit DB Packet Storm
1927 5.4 MEDIUM
Network 		dedecms dedecms A vulnerability classified as problematic has been found in DedeCMS 5.7.116. Affected is an unknown function of the file /member/article_add.php. The manipulation of the argument body leads to cross … CWE-79
Cross-site Scripting 		CVE-2024-12180 2024-12-11 01:34 2024-12-5 Show GitHub Exploit DB Packet Storm
1928 5.4 MEDIUM
Network 		dedecms dedecms A vulnerability classified as problematic was found in DedeCMS 5.7.116. Affected by this vulnerability is an unknown functionality of the file /member/uploads_add.php of the component SWF File Handle… CWE-79
Cross-site Scripting 		CVE-2024-12181 2024-12-11 01:29 2024-12-5 Show GitHub Exploit DB Packet Storm
1929 5.4 MEDIUM
Network 		dedecms dedecms A vulnerability, which was classified as problematic, has been found in DedeCMS 5.7.116. Affected by this issue is some unknown functionality of the file /member/soft_add.php. The manipulation of the… CWE-79
Cross-site Scripting 		CVE-2024-12182 2024-12-11 01:18 2024-12-5 Show GitHub Exploit DB Packet Storm
1930 - - - Missing input validation in the ORing IAP-420 web-interface allows stored Cross-Site Scripting (XSS).This issue affects IAP-420 version 2.01e and below. - CVE-2024-55544 2024-12-11 01:15 2024-12-11 Show GitHub Exploit DB Packet Storm