Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 10, 2025, 6:04 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
206951	9	危険	マイクロソフト	-	Microsoft Windows の LSASS におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0820	2010-10-6 16:55	2010-09-14	Show	GitHub Exploit DB Packet Storm

206952	9.3	危険	マイクロソフト	-	Microsoft Windows の WordPad Text Converters における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-2563	2010-10-6 16:55	2010-09-14	Show	GitHub Exploit DB Packet Storm

206953	9.3	危険	マイクロソフト	-	Microsoft Windows の RPC クライアント実装における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-2567	2010-10-6 16:55	2010-09-14	Show	GitHub Exploit DB Packet Storm

206954	6.8	警告	マイクロソフト	-	Windows 上で稼働する Microsoft Internet Information Services におけるアクセス制限を回避される脆弱性	CWE-287 不適切な認証	CVE-2010-2731	2010-10-6 16:54	2010-09-14	Show	GitHub Exploit DB Packet Storm

206955	9.3	危険	マイクロソフト	-	Microsoft Internet Information Services におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2730	2010-10-5 19:00	2010-09-14	Show	GitHub Exploit DB Packet Storm

206956	4.3	警告	マイクロソフト	-	Microsoft Internet Information Services の ASP 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2010-1899	2010-10-5 18:59	2010-09-14	Show	GitHub Exploit DB Packet Storm

206957	9.3	危険	マイクロソフト	-	Microsoft Outlook におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2728	2010-10-5 18:59	2010-09-14	Show	GitHub Exploit DB Packet Storm

206958	9.3	危険	マイクロソフト	-	Microsoft Windows の USP10.DLL 内の Uniscribe 実装における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-2738	2010-10-5 18:58	2010-09-14	Show	GitHub Exploit DB Packet Storm

206959	9.3	危険	マイクロソフト	-	Microsoft Windows の MPEG-4 コーデックにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0818	2010-10-5 18:58	2010-09-14	Show	GitHub Exploit DB Packet Storm

206960	9.3	危険	マイクロソフト	-	Microsoft Windows の Print Spooler サービスにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-2729	2010-10-5 18:57	2010-09-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 11, 2025, 5:03 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1011	7.8	HIGH Local	ashlar	cobalt	Ashlar-Vellum Cobalt XE File Parsing Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellu…	CWE-843 Type Confusion	CVE-2024-13049	2025-01-4 02:39	2024-12-31	Show	GitHub Exploit DB Packet Storm

1012	7.8	HIGH Local	ashlar	cobalt	Ashlar-Vellum Cobalt XE File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-…	CWE-787 Out-of-bounds Write	CVE-2024-13048	2025-01-4 02:39	2024-12-31	Show	GitHub Exploit DB Packet Storm

1013	7.8	HIGH Local	ashlar	cobalt	Ashlar-Vellum Cobalt CO File Parsing Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellu…	CWE-843 Type Confusion	CVE-2024-13047	2025-01-4 02:39	2024-12-31	Show	GitHub Exploit DB Packet Storm

1014	7.8	HIGH Local	ashlar	cobalt	Ashlar-Vellum Cobalt CO File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-…	CWE-787 Out-of-bounds Write	CVE-2024-13046	2025-01-4 02:38	2024-12-31	Show	GitHub Exploit DB Packet Storm

1015	7.8	HIGH Local	ashlar	cobalt	Ashlar-Vellum Cobalt AR File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of…	CWE-787 Out-of-bounds Write	CVE-2024-13045	2025-01-4 02:38	2024-12-31	Show	GitHub Exploit DB Packet Storm

1016	7.8	HIGH Local	ashlar	cobalt	Ashlar-Vellum Cobalt AR File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-…	CWE-787 Out-of-bounds Write	CVE-2024-13044	2025-01-4 02:38	2024-12-31	Show	GitHub Exploit DB Packet Storm

1017	-		-	-	Trix is a what-you-see-is-what-you-get rich text editor for everyday writing. Versions prior to 2.1.12 are vulnerable to cross-site scripting when pasting malicious code in the link field. An attacke…	CWE-79 Cross-site Scripting	CVE-2025-21610	2025-01-4 02:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

1018	-		-	-	SiYuan is self-hosted, open source personal knowledge management software. SiYuan Note version 3.1.18 has an arbitrary file deletion vulnerability. The vulnerability exists in the `POST /api/history/…	CWE-552 CWE-459 Files or Directories Accessible to External Parties Incomplete Cleanup	CVE-2025-21609	2025-01-4 02:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

1019	-		-	-	Karmada is a Kubernetes management system that allows users to run cloud-native applications across multiple Kubernetes clusters and clouds. Prior to version 1.12.0, both in karmadactl and karmada-op…	CWE-22 Path Traversal	CVE-2024-56514	2025-01-4 02:15	2025-01-4	Show	GitHub Exploit DB Packet Storm

1020	-		-	-	Karmada is a Kubernetes management system that allows users to run cloud-native applications across multiple Kubernetes clusters and clouds. Prior to version 1.12.0, the PULL mode clusters registered…	CWE-266 Incorrect Privilege Assignment	CVE-2024-56513	2025-01-4 02:15	2025-01-4	Show	GitHub Exploit DB Packet Storm