Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 1, 2025, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
203191	5	警告	Google	-	Google Chrome における同一生成元ポリシーを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1187	2011-11-17 10:28	2011-03-8	Show	GitHub Exploit DB Packet Storm

203192	5	警告	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-1186	2011-11-17 10:27	2011-03-8	Show	GitHub Exploit DB Packet Storm

203193	7.5	危険	Google	-	Google Chrome における脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1185	2011-11-17 10:26	2011-03-8	Show	GitHub Exploit DB Packet Storm

203194	10	危険	Google	-	Google Chrome の Scratchpad application における脆弱性	CWE-noinfo 情報不足	CVE-2011-1306	2011-11-17 10:25	2011-03-3	Show	GitHub Exploit DB Packet Storm

203195	7.5	危険	Google	-	Google Chrome のレイアウト処理におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-1125	2011-11-17 10:25	2011-02-28	Show	GitHub Exploit DB Packet Storm

203196	7.5	危険	Google	-	Google Chrome の plug-in におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1124	2011-11-17 10:24	2011-02-28	Show	GitHub Exploit DB Packet Storm

203197	7.5	危険	Google	-	Google Chrome における詳細不明な脆弱性	CWE-20 不適切な入力確認	CVE-2011-1123	2011-11-17 10:23	2011-02-28	Show	GitHub Exploit DB Packet Storm

203198	5	警告	Google	-	Google Chrome の WebGL 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2011-1122	2011-11-17 10:23	2011-02-28	Show	GitHub Exploit DB Packet Storm

203199	5	警告	Google	-	Google Chrome の WebGL 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2011-1120	2011-11-17 10:21	2011-02-28	Show	GitHub Exploit DB Packet Storm

203200	7.5	危険	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2011-1119	2011-11-17 10:20	2011-02-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 1, 2025, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2391	7.8	HIGH Local	openatom	openharmony	in OpenHarmony v4.1.1 and prior versions allow a local attacker cause the common permission is upgraded to root through use after free.	-	CVE-2024-10074	2024-12-11 12:51	2024-12-3	Show	GitHub Exploit DB Packet Storm

2392	5.9	MEDIUM Network	ibm	cognos_controller	IBM Cognos Controller 11.0.0 and 11.0.1 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could explo…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2021-29892	2024-12-11 12:40	2024-12-4	Show	GitHub Exploit DB Packet Storm

2393	9.8	CRITICAL Network	ibm	cognos_controller	IBM Cognos Controller 11.0.0 and 11.0.1 could be vulnerable to malicious file upload by not validating the type of file uploaded to Journal entry attachments. Attackers can make use of this weaknes…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-25019	2024-12-11 12:39	2024-12-4	Show	GitHub Exploit DB Packet Storm

2394	5.3	MEDIUM Network	ibm	cognos_controller	IBM Cognos Controller 11.0.0 and 11.0.1 exposes server details that could allow an attacker to obtain information of the application environment to conduct further attacks.	CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere	CVE-2024-25035	2024-12-11 12:36	2024-12-4	Show	GitHub Exploit DB Packet Storm

2395	3.3	LOW Local	ibm	cognos_controller	IBM Cognos Controller 11.0.0 and 11.0.1 could allow an authenticated user with local access to bypass security allowing users to circumvent restrictions imposed on input fields.	CWE-288 Authentication Bypass Using an Alternate Path or Channel	CVE-2024-25036	2024-12-11 12:35	2024-12-4	Show	GitHub Exploit DB Packet Storm

2396	9.8	CRITICAL Network	ibm	cognos_controller	IBM Cognos Controller 11.0.0 and 11.0.1 could be vulnerable to malicious file upload by not validating the content of the file uploaded to the web interface. Attackers can make use of this weakness…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-40691	2024-12-11 12:29	2024-12-4	Show	GitHub Exploit DB Packet Storm

2397	9.8	CRITICAL Network	ibm	cognos_controller	IBM Cognos Controller 11.0.0 and 11.0.1 is vulnerable to malicious file upload by allowing unrestricted filetype attachments in the Journal entry page. Attackers can make use of this we…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-25020	2024-12-11 12:28	2024-12-4	Show	GitHub Exploit DB Packet Storm

2398	7.5	HIGH Network	ibm	cognos_controller	IBM Cognos Controller 11.0.0 and 11.0.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2024-41775	2024-12-11 12:25	2024-12-4	Show	GitHub Exploit DB Packet Storm

2399	6.5	MEDIUM Network	ibm	cognos_controller	IBM Cognos Controller 11.0.0 and 11.0.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user tha…	CWE-352 Origin Validation Error	CVE-2024-41776	2024-12-11 12:24	2024-12-4	Show	GitHub Exploit DB Packet Storm

2400	7.5	HIGH Network	ibm	cognos_controller	IBM Cognos Controller 11.0.0 and 11.0.1 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to…	CWE-798 Use of Hard-coded Credentials	CVE-2024-41777	2024-12-11 12:22	2024-12-4	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed