Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Nov. 19, 2024, 12:03 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
204201 6.9 警告 マイクロソフト - Microsoft Windows の Active Directory フェデレーションサービスのシングルサインオン実装における認証情報を取得される脆弱性 CWE-255
証明書・パスワード管理
CVE-2009-2508 2010-01-22 10:27 2009-12-8 Show GitHub Exploit DB Packet Storm
204202 6.8 警告 マイクロソフト - Microsoft Windows の LSASS におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2009-3675 2010-01-22 10:27 2009-12-8 Show GitHub Exploit DB Packet Storm
204203 9.3 危険 マイクロソフト - Microsoft Project における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2009-0102 2010-01-22 10:26 2009-12-8 Show GitHub Exploit DB Packet Storm
204204 9.3 危険 マイクロソフト - Microsoft Internet Explorer におけるメモリ破損の脆弱性 CWE-94
コード・インジェクション
CVE-2009-3673 2010-01-22 10:26 2009-12-8 Show GitHub Exploit DB Packet Storm
204205 9.3 危険 マイクロソフト - Microsoft Internet Explorer におけるメモリ破損の脆弱性 CWE-399
リソース管理の問題
CVE-2009-3671 2010-01-22 10:26 2009-12-8 Show GitHub Exploit DB Packet Storm
204206 10 危険 マイクロソフト - Microsoft Windows のインターネット認証サービスにおけるネットワークリソースにアクセスされる脆弱性 CWE-255
CWE-94
CVE-2009-3677 2010-01-22 10:24 2009-12-8 Show GitHub Exploit DB Packet Storm
204207 10 危険 マイクロソフト - Microsoft Windows のインターネット認証サービスにおける任意のコードを実行される脆弱性 CWE-287
不適切な認証
CVE-2009-2505 2010-01-22 10:24 2009-12-8 Show GitHub Exploit DB Packet Storm
204208 6.9 警告 acpid - acpid の umask におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2009-4235 2010-01-21 11:44 2009-12-7 Show GitHub Exploit DB Packet Storm
204209 6.9 警告 サイバートラスト株式会社
レッドハット
acpid
- acpid のレッドハットパッチにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2009-4033 2010-01-21 11:43 2009-12-7 Show GitHub Exploit DB Packet Storm
204210 10 危険 アドビシステムズ - Adobe Illustrator における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2009-3952 2010-01-21 11:43 2010-01-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Nov. 19, 2024, 1:08 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2641 5.4 MEDIUM
Network
kibokolabs namaste\!_lms Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Kiboko Labs Namaste! LMS allows Stored XSS.This issue affects Namaste! LMS: from n/a throu… CWE-79
Cross-site Scripting
CVE-2024-50410 2024-11-8 05:29 2024-10-29 Show GitHub Exploit DB Packet Storm
2642 5.4 MEDIUM
Network
kibokolabs namaste\!_lms Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Kiboko Labs Namaste! LMS allows Stored XSS.This issue affects Namaste! LMS: from n/a throu… CWE-79
Cross-site Scripting
CVE-2024-50409 2024-11-8 05:28 2024-10-29 Show GitHub Exploit DB Packet Storm
2643 6.1 MEDIUM
Network
kibokolabs namaste\!_lms Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Kiboko Labs Namaste! LMS allows Reflected XSS.This issue affects Namaste! LMS: from n/a th… CWE-79
Cross-site Scripting
CVE-2024-50407 2024-11-8 05:28 2024-10-29 Show GitHub Exploit DB Packet Storm
2644 8.2 HIGH
Local
intel thunderbolt_dch_driver Improper access control in the Intel(R) Thunderbolt(TM) DCH drivers for Windows may allow an authenticated user to potentially enable escalation of privilege via local access. NVD-CWE-noinfo
CVE-2023-22293 2024-11-8 05:27 2024-02-14 Show GitHub Exploit DB Packet Storm
2645 6.5 MEDIUM
Network
qualcomm wsa8845h_firmware
wsa8845_firmware
wsa8840_firmware
wsa8835_firmware
wsa8832_firmware
wsa8830_firmware
wcn7881_firmware
wcn7880_firmware
wcn7861_firmware
wcn7860_firmware
Transient DOS while parsing fragments of MBSSID IE from beacon frame. CWE-416
 Use After Free
CVE-2024-33068 2024-11-8 05:07 2024-11-4 Show GitHub Exploit DB Packet Storm
2646 6.5 MEDIUM
Network
qualcomm wsa8845h_firmware
wsa8845_firmware
wsa8840_firmware
wsa8835_firmware
wsa8832_firmware
wsa8830_firmware
wcn7881_firmware
wcn7880_firmware
wcn7861_firmware
wcn7860_firmware
Transient DOS while processing the CU information from RNR IE. CWE-125
Out-of-bounds Read
CVE-2024-38405 2024-11-8 05:06 2024-11-4 Show GitHub Exploit DB Packet Storm
2647 6.5 MEDIUM
Network
qualcomm wsa8845h_firmware
wsa8845_firmware
wsa8840_firmware
wsa8835_firmware
wsa8832_firmware
wsa8830_firmware
wcn7881_firmware
wcn7880_firmware
wcn7861_firmware
wcn7860_firmware
Transient DOS while parsing BTM ML IE when per STA profile is not included. CWE-125
Out-of-bounds Read
CVE-2024-38403 2024-11-8 05:06 2024-11-4 Show GitHub Exploit DB Packet Storm
2648 6.5 MEDIUM
Network
qualcomm wsa8845h_firmware
wsa8845_firmware
wsa8840_firmware
wsa8835_firmware
wsa8832_firmware
wsa8830_firmware
wsa8815_firmware
wsa8810_firmware
wcn6755_firmware
wcn3988_firmware
Transient DOS as modem reset occurs when an unexpected MAC RAR (with invalid PDU length) is seen at UE. CWE-617
 Reachable Assertion
CVE-2024-23385 2024-11-8 05:05 2024-11-4 Show GitHub Exploit DB Packet Storm
2649 6.7 MEDIUM
Local
qualcomm wsa8835_firmware
wsa8830_firmware
wcd9380_firmware
wcd9340_firmware
snapdragon_x75_5g_modem-rf_system_firmware
snapdragon_x72_5g_modem-rf_system_firmware
snapdragon_auto_5g_modem-rf…
Memory corruption while parsing IPC frequency table parameters for LPLH that has size greater than expected size. CWE-120
Classic Buffer Overflow
CVE-2024-33030 2024-11-8 05:04 2024-11-4 Show GitHub Exploit DB Packet Storm
2650 7.5 HIGH
Network
huawei harmonyos Information management vulnerability in the Gallery module Impact: Successful exploitation of this vulnerability may affect service confidentiality. NVD-CWE-noinfo
CVE-2024-51523 2024-11-8 05:03 2024-11-5 Show GitHub Exploit DB Packet Storm