Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
207501	7.8	危険	シスコシステムズ	-	Cisco Unified Communications Manager におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2009-2053	2011-06-15 09:49	2009-08-26	Show	GitHub Exploit DB Packet Storm

207502	7.8	危険	シスコシステムズ	-	Cisco Unified Communications Manager および Cisco Unified Presence におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2009-2052	2011-06-14 10:09	2009-08-26	Show	GitHub Exploit DB Packet Storm

207503	7.8	危険	シスコシステムズ	-	Cisco Unified Communications Manager におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2009-2050	2011-06-14 10:06	2009-08-26	Show	GitHub Exploit DB Packet Storm

207504	3.5	注意	シスコシステムズ	-	Cisco Unified CCX サーバの CRS 内にある管理インターフェイスにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2048	2011-06-14 10:02	2009-07-15	Show	GitHub Exploit DB Packet Storm

207505	6.8	警告	The GIMP Team レッドハット	-	GIMP の PCX プラグインにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-1178	2011-06-14 09:55	2011-05-31	Show	GitHub Exploit DB Packet Storm

207506	3.3	注意	サイバートラスト株式会社レッドハット	-	libvirt の libvirtd におけるサービス運用妨害 (クラッシュ) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1486	2011-06-14 09:55	2011-05-2	Show	GitHub Exploit DB Packet Storm

207507	6.9	警告	レッドハット	-	PolicyKit の pkexec ユーティリティおよび polkitd デーモンにおける権限を取得される脆弱性	CWE-362 競合状態	CVE-2011-1485	2011-06-14 09:54	2011-04-19	Show	GitHub Exploit DB Packet Storm

207508	9	危険	シスコシステムズ	-	Cisco Unified CCX サーバの CRS 内にある管理インターフェイスにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-2047	2011-06-13 14:51	2009-07-15	Show	GitHub Exploit DB Packet Storm

207509	6.8	警告	シスコシステムズ	-	Cisco Video Surveillance 2500 Series IP Camera 上の組込み Web サーバにおける任意のファイルを読まれる脆弱性	CWE-200 情報漏えい	CVE-2009-2046	2011-06-13 14:49	2009-06-24	Show	GitHub Exploit DB Packet Storm

207510	7.8	危険	シスコシステムズ	-	Cisco Video Surveillance Stream Manager におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-2045	2011-06-13 14:47	2009-06-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 8, 2025, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
3811	-		-	-	HCL MyXalytics is affected by broken authentication. It allows attackers to compromise keys, passwords, and session tokens, potentially leading to identity theft and system control. This vulnerabil…	-	CVE-2024-42172	2025-01-11 16:15	2025-01-11	Show	GitHub Exploit DB Packet Storm

3812	-		-	-	HCL MyXalytics is affected by a session fixation vulnerability. Cyber-criminals can exploit this by sending crafted URLs with a session token to access the victim's login session.	-	CVE-2024-42171	2025-01-11 16:15	2025-01-11	Show	GitHub Exploit DB Packet Storm

3813	-		-	-	HCL MyXalytics is affected by a session fixation vulnerability. Cyber-criminals can exploit this by sending crafted URLs with a session token to access the victim's login session.	-	CVE-2024-42170	2025-01-11 16:15	2025-01-11	Show	GitHub Exploit DB Packet Storm

3814	6.4	MEDIUM Network	-	-	The Gutenberg Blocks with AI by Kadence WP – Page Builder Features plugin for WordPress is vulnerable to Stored Cross-Site Scripting via button block link in all versions up to, and including, 3.4.2 …	CWE-79 Cross-site Scripting	CVE-2024-12304	2025-01-11 13:15	2025-01-11	Show	GitHub Exploit DB Packet Storm

3815	-		-	-	A wildcard expansion vulnerability in Palo Alto Networks Expedition allows an unauthenticated attacker to enumerate files on the host filesystem.	-	CVE-2025-0106	2025-01-11 12:15	2025-01-11	Show	GitHub Exploit DB Packet Storm

3816	-		-	-	An arbitrary file deletion vulnerability in Palo Alto Networks Expedition enables an unauthenticated attacker to delete arbitrary files accessible to the www-data user on the host filesystem.	-	CVE-2025-0105	2025-01-11 12:15	2025-01-11	Show	GitHub Exploit DB Packet Storm

3817	-		-	-	A reflected cross-site scripting (XSS) vulnerability in Palo Alto Networks Expedition enables attackers to execute malicious JavaScript code in the context of an authenticated Expedition user’s brows…	-	CVE-2025-0104	2025-01-11 12:15	2025-01-11	Show	GitHub Exploit DB Packet Storm

3818	-		-	-	An SQL injection vulnerability in Palo Alto Networks Expedition enables an authenticated attacker to reveal Expedition database contents, such as password hashes, usernames, device configurations, an…	-	CVE-2025-0103	2025-01-11 12:15	2025-01-11	Show	GitHub Exploit DB Packet Storm

3819	-		-	-	HCL MyXalytics is affected by insecure direct object references. It occurs due to missing access control checks, which fail to verify whether a user should be allowed to access specific data.	-	CVE-2024-42169	2025-01-11 12:15	2025-01-11	Show	GitHub Exploit DB Packet Storm

3820	-		-	-	HCL MyXalytics is affected by out-of-band resource load (HTTP) vulnerability. An attacker can deploy a web server that returns malicious content, and then induce the application to retrieve and proc…	-	CVE-2024-42168	2025-01-11 12:15	2025-01-11	Show	GitHub Exploit DB Packet Storm