Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 2, 2025, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
203481 1.7 注意 オラクル - Oracle Solaris における Zone の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3539 2011-10-27 09:52 2011-10-18 Show GitHub Exploit DB Packet Storm
203482 7.8 危険 オラクル - Oracle Solaris における Kernel/Filesystem の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3537 2011-10-27 09:52 2011-10-18 Show GitHub Exploit DB Packet Storm
203483 2.1 注意 オラクル - Oracle Solaris における DTrace Software Library の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3536 2011-10-27 09:51 2011-10-18 Show GitHub Exploit DB Packet Storm
203484 5 警告 オラクル - Oracle Solaris における Network Status Monitor の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3534 2011-10-27 09:50 2011-10-18 Show GitHub Exploit DB Packet Storm
203485 1.7 注意 オラクル - Oracle Solaris における ZFS の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-2312 2011-10-27 09:50 2011-10-18 Show GitHub Exploit DB Packet Storm
203486 1.7 注意 オラクル - Oracle Solaris における ZFS の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-2311 2011-10-27 09:49 2011-10-18 Show GitHub Exploit DB Packet Storm
203487 4.3 警告 オラクル - Oracle Solaris における libnsl の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-2304 2011-10-27 09:49 2011-10-18 Show GitHub Exploit DB Packet Storm
203488 2.4 注意 オラクル - Oracle Solaris における xscreensaver の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-2292 2011-10-27 09:48 2011-10-18 Show GitHub Exploit DB Packet Storm
203489 2.1 注意 オラクル - Oracle Solaris における ZFS の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-2286 2011-10-27 09:47 2011-10-18 Show GitHub Exploit DB Packet Storm
203490 7.8 危険 オラクル - Oracle Sun Products Suite の複数の製品における Web Container の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3559 2011-10-26 16:43 2011-10-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 3, 2025, 4:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2341 7.8 HIGH
Local 		- - Windows Common Log File System Driver Elevation of Privilege Vulnerability CWE-122
Heap-based Buffer Overflow 		CVE-2024-49138 2024-12-13 11:00 2024-12-12 Show GitHub Exploit DB Packet Storm
2342 5.4 MEDIUM
Network 		adobe experience_manager Adobe Experience Manager versions 6.5.21 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable … CWE-79
Cross-site Scripting 		CVE-2024-52854 2024-12-13 10:50 2024-12-11 Show GitHub Exploit DB Packet Storm
2343 5.4 MEDIUM
Network 		adobe experience_manager Adobe Experience Manager versions 6.5.21 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable … CWE-79
Cross-site Scripting 		CVE-2024-52853 2024-12-13 10:47 2024-12-11 Show GitHub Exploit DB Packet Storm
2344 - - - Horner Automation Cscape contains a memory corruption vulnerability, which could allow an attacker to disclose information and execute arbitrary code. CWE-125
Out-of-bounds Read 		CVE-2024-9508 2024-12-13 10:15 2024-12-13 Show GitHub Exploit DB Packet Storm
2345 - - - The vulnerability occurs in the parsing of CSP files. The issues result from the lack of proper validation of user-supplied data, which could allow reading past the end of allocated data structures… CWE-125
Out-of-bounds Read 		CVE-2024-12212 2024-12-13 10:15 2024-12-13 Show GitHub Exploit DB Packet Storm
2346 - - - Boundary Community Edition and Boundary Enterprise (“Boundary”) incorrectly handle HTTP requests during the initialization of the Boundary controller, which may cause the Boundary server to terminate… - CVE-2024-12289 2024-12-13 08:15 2024-12-13 Show GitHub Exploit DB Packet Storm
2347 - - - Hush Line is an open-source whistleblower management system. Starting in version 0.1.0 and prior to version 0.3.5, the productions server appeared to have been misconfigured and missed providing any … CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2024-55888 2024-12-13 05:15 2024-12-13 Show GitHub Exploit DB Packet Storm
2348 - - - OpenSearch Data Prepper is a component of the OpenSearch project that accepts, filters, transforms, enriches, and routes data at scale. A vulnerability exists in the OpenTelemetry Logs source in Data… CWE-287
Improper Authentication 		CVE-2024-55886 2024-12-13 05:15 2024-12-13 Show GitHub Exploit DB Packet Storm
2349 - - - beego is an open-source web framework for the Go programming language. Versions of beego prior to 2.3.4 use MD5 as a hashing algorithm. MD5 is no longer considered secure against well-funded opponent… CWE-327
CWE-328
 Use of a Broken or Risky Cryptographic Algorithm
 Use of Weak Hash 		CVE-2024-55885 2024-12-13 05:15 2024-12-13 Show GitHub Exploit DB Packet Storm
2350 - - - SimpleXLSX is software for parsing and retrieving data from Excel XLSx files. Starting in version 1.0.12 and prior to version 1.1.12, when calling the extended toHTMLEx method, it is possible to exec… CWE-79
Cross-site Scripting 		CVE-2024-55878 2024-12-13 05:15 2024-12-13 Show GitHub Exploit DB Packet Storm