Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 5, 2024, 11:32 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1	7	重要 Local	Canonical Linux	Ubuntu Linux Kernel	Linux の Linux Kernel 等複数ベンダの製品における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2022-2602	2024-02-5 11:24	2022-10-19	Show	GitHub Exploit DB Packet Storm

2	7.8	重要 Local	Canonical Linux	Ubuntu Linux Kernel	Linux の Linux Kernel 等複数ベンダの製品における二重解放に関する脆弱性	CWE-415 二重解放	CVE-2022-2588	2024-02-5 11:09	2022-08-9	Show	GitHub Exploit DB Packet Storm

3	7.8	重要 Local	Canonical Linux	Ubuntu Linux Kernel	Linux の Linux Kernel 等複数ベンダの製品における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2022-2586	2024-02-5 11:02	2022-08-9	Show	GitHub Exploit DB Packet Storm

4	5.5	警告 Local	fortanix	confidential computing manager	fortanix の Intel Software Guard Extensions 用 confidential computing manager における脆弱性	CWE-noinfo 情報不足	CVE-2023-38021	2024-02-2 17:01	2023-12-30	Show	GitHub Exploit DB Packet Storm

5	5.5	警告 Local	fortanix	confidential computing manager	fortanix の Intel Software Guard Extensions 用 confidential computing manager における脆弱性	CWE-noinfo 情報不足	CVE-2023-38022	2024-02-2 17:01	2023-12-30	Show	GitHub Exploit DB Packet Storm

6	5.5	警告 Local	scontain	scone	scontain の scone における脆弱性	CWE-noinfo 情報不足	CVE-2023-38023	2024-02-2 17:01	2023-12-30	Show	GitHub Exploit DB Packet Storm

7	7.2	重要 Network	oretnom23	house rental management system	oretnom23 の house rental management system における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2024-0502	2024-02-2 17:01	2024-01-13	Show	GitHub Exploit DB Packet Storm

8	7.5	重要 Network	newtonsoft	json.net	newtonsoft の json.net における例外的な状態の処理に関する脆弱性	CWE-755 例外的な状態における不適切な処理	CVE-2024-21907	2024-02-2 17:01	2024-01-3	Show	GitHub Exploit DB Packet Storm

9	5.5	警告 Local	アップル	iPadOS iOS	複数のアップル製品における脆弱性	CWE-noinfo 情報不足	CVE-2022-46710	2024-02-2 16:58	2022-12-13	Show	GitHub Exploit DB Packet Storm

10	7.8	重要 Local		-	アップルの macOS における脆弱性	CWE-noinfo 情報不足	CVE-2022-46721	2024-02-2 16:58	2022-10-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2024, 4:37 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
11	-		-	-	aiosmptd is a reimplementation of the Python stdlib smtpd.py based on asyncio. Prior to version 1.4.6, servers based on aiosmtpd accept extra unencrypted commands after STARTTLS, treating them as if… New	-	CVE-2024-34083	2024-05-19 04:15	2024-05-19	Show	GitHub Exploit DB Packet Storm

12	-		-	-	IBM i 7.2, 7.3, and 7.4 could allow a remote attacker to execute arbitrary code leading to a denial of service of network ports on the system, caused by the deserialization of untrusted data. IBM X-… New	CWE-502 Deserialization of Untrusted Data	CVE-2024-31879	2024-05-19 01:15	2024-05-19	Show	GitHub Exploit DB Packet Storm

13	7.8	HIGH Local	-	-	MSI Afterburner v4.6.6.16381 Beta 3 is vulnerable to an ACL Bypass vulnerability in the RTCore64.sys driver, which leads to triggering vulnerabilities like CVE-2024-1443 and CVE-2024-1460 from a low … New	CWE-863 Incorrect Authorization	CVE-2024-3745	2024-05-18 22:15	2024-05-18	Show	GitHub Exploit DB Packet Storm

14	6.4	MEDIUM Network	-	-	The Happy Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘_id’ parameter in all versions up to, and including, 3.10.8 due to insufficient input sanitiz… New	-	CVE-2024-5088	2024-05-18 21:15	2024-05-18	Show	GitHub Exploit DB Packet Storm

15	6.4	MEDIUM Network	-	-	The Piotnet Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's widgets in all versions up to, and including, 2.4.26 due to insufficient input sani… New	-	CVE-2024-4432	2024-05-18 19:15	2024-05-18	Show	GitHub Exploit DB Packet Storm

16	9.8	CRITICAL Network	-	-	The Build App Online plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 1.0.21. This is due to missing authentication checking in the 'set_user_cart' functi… New	-	CVE-2024-3658	2024-05-18 19:15	2024-05-18	Show	GitHub Exploit DB Packet Storm

17	7.2	HIGH Network	-	-	The Contact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & Drop WP Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘subject’ parameter in versions up … New	-	CVE-2024-4709	2024-05-18 17:15	2024-05-18	Show	GitHub Exploit DB Packet Storm

18	6.4	MEDIUM Network	-	-	The Testimonial Carousel For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'show_line_text ' and 'slide_button_hover_animation' parameters in versions up to, and… New	-	CVE-2024-4698	2024-05-18 17:15	2024-05-18	Show	GitHub Exploit DB Packet Storm

19	7.5	HIGH Network	-	-	The Contact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & Drop WP Form Builder plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on … New	-	CVE-2024-2782	2024-05-18 17:15	2024-05-18	Show	GitHub Exploit DB Packet Storm

20	6.4	MEDIUM Network	-	-	The Contact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & Drop WP Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via form settings in all versions up to, an… New	-	CVE-2024-2772	2024-05-18 17:15	2024-05-18	Show	GitHub Exploit DB Packet Storm