Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
205341	5.8	警告	Kay Framework OpenID レッドハット	-	OpenID4Java の message/ax/AxMessage.java における AX 情報を変更される脆弱性	CWE-20 不適切な入力確認	CVE-2011-4314	2012-02-1 16:26	2011-05-5	Show	GitHub Exploit DB Packet Storm

205342	9.3	危険	Google	-	Android におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-3874	2012-02-1 16:24	2011-11-9	Show	GitHub Exploit DB Packet Storm

205343	7.5	危険	Kerry Thompson drusus	-	Logsurfer および Logsurfer+ におけるメモリ二重解放の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3626	2012-02-1 16:24	2012-01-27	Show	GitHub Exploit DB Packet Storm

205344	5	警告	The Support Incident Tracker Project	-	Support Incident Tracker の translate.php における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2011-5075	2012-02-1 16:20	2011-11-13	Show	GitHub Exploit DB Packet Storm

205345	6.8	警告	The Support Incident Tracker Project	-	Support Incident Tracker におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-5074	2012-02-1 16:18	2012-01-29	Show	GitHub Exploit DB Packet Storm

205346	5.8	警告	The Support Incident Tracker Project	-	Support Incident Tracker におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5073	2012-02-1 16:18	2012-01-29	Show	GitHub Exploit DB Packet Storm

205347	7.5	危険	The Support Incident Tracker Project	-	Support Incident Tracker における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5072	2012-02-1 16:17	2012-01-29	Show	GitHub Exploit DB Packet Storm

205348	7.5	危険	The Support Incident Tracker Project	-	Support Incident Tracker における任意の PHP コードを実行可能な言語ファイルに挿入される脆弱性	CWE-94 コード・インジェクション	CVE-2011-4337	2012-02-1 16:17	2011-11-13	Show	GitHub Exploit DB Packet Storm

205349	7.5	危険	The Support Incident Tracker Project	-	Support Incident Tracker における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5071	2012-02-1 16:16	2012-01-29	Show	GitHub Exploit DB Packet Storm

205350	4.3	警告	The Support Incident Tracker Project	-	Support Incident Tracker におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5070	2012-02-1 16:16	2012-01-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 8, 2025, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
351	7.8	HIGH Local	qualcomm	fastconnect_6700_firmware fastconnect_6900_firmware fastconnect_7800_firmware qam8255p_firmware qam8650p_firmware qam8775p_firmware qamsrv1h_firmware qamsrv1m_firmware qca6595…	Memory corruption can occur in the camera when an invalid CID is used. New	CWE-129 Improper Validation of Array Index	CVE-2024-49833	2025-02-6 01:01	2025-02-4	Show	GitHub Exploit DB Packet Storm

352	7.8	HIGH Local	qualcomm	fastconnect_6900_firmware fastconnect_7800_firmware qcs6490_firmware video_collaboration_vc3_platform_firmware sdm429w_firmware sm8750_firmware sm8750p_firmware snapdragon_429_mo…	Memory corruption in Camera due to unusually high number of nodes passed to AXI port. New	CWE-129 Improper Validation of Array Index	CVE-2024-49832	2025-02-6 01:01	2025-02-4	Show	GitHub Exploit DB Packet Storm

353	7.8	HIGH Local	qualcomm	ar8035_firmware fastconnect_6200_firmware fastconnect_6900_firmware fastconnect_7800_firmware qam8255p_firmware qam8295p_firmware qam8620p_firmware qam8650p_firmware qam8775p_…	Memory corruption can occur when a compat IOCTL call is followed by a normal IOCTL call from userspace. New	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2024-45584	2025-02-6 01:01	2025-02-4	Show	GitHub Exploit DB Packet Storm

354	7.8	HIGH Local	qualcomm	fastconnect_6900_firmware fastconnect_7800_firmware qcm8550_firmware qcs6490_firmware video_collaboration_vc3_platform_firmware sm6650_firmware sm7635_firmware sm7675_firmware	Memory corruption while validating number of devices in Camera kernel . New	CWE-129 Improper Validation of Array Index	CVE-2024-45582	2025-02-6 01:01	2025-02-4	Show	GitHub Exploit DB Packet Storm

355	7.8	HIGH Local	qualcomm	fastconnect_6700_firmware fastconnect_6900_firmware fastconnect_7800_firmware qcm5430_firmware qcm6490_firmware qcs5430_firmware qcs6490_firmware video_collaboration_vc3_platform…	Memory corruption may occour while generating test pattern due to negative indexing of display ID. New	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2024-45573	2025-02-6 01:01	2025-02-4	Show	GitHub Exploit DB Packet Storm

356	7.8	HIGH Local	qualcomm	ar8035_firmware csr8811_firmware fastconnect_6700_firmware fastconnect_6900_firmware fastconnect_7800_firmware immersive_home_214_firmware immersive_home_216_firmware immersive_h…	Memory corruption may occour occur when stopping the WLAN interface after processing a WMI command from the interface. New	CWE-416 Use After Free	CVE-2024-45571	2025-02-6 01:01	2025-02-4	Show	GitHub Exploit DB Packet Storm

357	-		-	-	A vulnerability was discovered in the firmware builds up to 8.2.1.0820 in Poly Edge E devices. The firmware flaw does not properly prevent path traversal and could lead to information disclosure. New	-	CVE-2025-0858	2025-02-6 00:15	2025-02-6	Show	GitHub Exploit DB Packet Storm

358	-		-	-	libcurl would wrongly close the same eventfd file descriptor twice when taking down a connection channel after having completed a threaded name resolve. New	-	CVE-2025-0665	2025-02-6 00:15	2025-02-5	Show	GitHub Exploit DB Packet Storm

359	-		-	-	Omnissa Horizon Client for macOS contains a Local privilege escalation (LPE) Vulnerability due to a logic flaw. Successful exploitation of this issue may allow attackers with user privileges to escal… New	-	CVE-2024-11467	2025-02-6 00:15	2025-02-5	Show	GitHub Exploit DB Packet Storm

360	5.4	MEDIUM Network	hasthemes	ht_mega	The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'block_css' and 'inner_css' parameters in all versions up to, and including, 2.7.… New	CWE-79 Cross-site Scripting	CVE-2024-12597	2025-02-5 23:58	2025-02-4	Show	GitHub Exploit DB Packet Storm