Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 5, 2024, 11:32 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1 7 重要
Local 		Canonical
Linux		 Ubuntu
Linux Kernel 		Linux の Linux Kernel 等複数ベンダの製品における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2022-2602 2024-02-5 11:24 2022-10-19 Show GitHub Exploit DB Packet Storm
2 7.8 重要
Local 		Canonical
Linux		 Ubuntu
Linux Kernel 		Linux の Linux Kernel 等複数ベンダの製品における二重解放に関する脆弱性 CWE-415
二重解放 		CVE-2022-2588 2024-02-5 11:09 2022-08-9 Show GitHub Exploit DB Packet Storm
3 7.8 重要
Local 		Canonical
Linux		 Ubuntu
Linux Kernel 		Linux の Linux Kernel 等複数ベンダの製品における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2022-2586 2024-02-5 11:02 2022-08-9 Show GitHub Exploit DB Packet Storm
4 5.5 警告
Local 		fortanix confidential computing manager fortanix の Intel Software Guard Extensions 用 confidential computing manager における脆弱性 CWE-noinfo
情報不足 		CVE-2023-38021 2024-02-2 17:01 2023-12-30 Show GitHub Exploit DB Packet Storm
5 5.5 警告
Local 		fortanix confidential computing manager fortanix の Intel Software Guard Extensions 用 confidential computing manager における脆弱性 CWE-noinfo
情報不足 		CVE-2023-38022 2024-02-2 17:01 2023-12-30 Show GitHub Exploit DB Packet Storm
6 5.5 警告
Local 		scontain scone scontain の scone における脆弱性 CWE-noinfo
情報不足 		CVE-2023-38023 2024-02-2 17:01 2023-12-30 Show GitHub Exploit DB Packet Storm
7 7.2 重要
Network 		oretnom23 house rental management system oretnom23 の house rental management system における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-0502 2024-02-2 17:01 2024-01-13 Show GitHub Exploit DB Packet Storm
8 7.5 重要
Network 		newtonsoft json.net newtonsoft の json.net における例外的な状態の処理に関する脆弱性 CWE-755
例外的な状態における不適切な処理 		CVE-2024-21907 2024-02-2 17:01 2024-01-3 Show GitHub Exploit DB Packet Storm
9 5.5 警告
Local 		アップル iPadOS
iOS 		複数のアップル製品における脆弱性 CWE-noinfo
情報不足 		CVE-2022-46710 2024-02-2 16:58 2022-12-13 Show GitHub Exploit DB Packet Storm
10 7.8 重要
Local 		- アップルの macOS における脆弱性 CWE-noinfo
情報不足 		CVE-2022-46721 2024-02-2 16:58 2022-10-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2024, 4:37 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
252141 - apple mac_os_x
mac_os_x_server 		AFP Server in Mac OS X before 10.3.8 uses insecure permissions for "Drop Boxes," which allows local users to read the contents of a Drop Box. NVD-CWE-Other
CVE-2005-0715 2008-09-6 05:47 2005-03-21 Show GitHub Exploit DB Packet Storm
252142 - apple mac_os_x
mac_os_x_server 		Stack-based buffer overflow in the Core Foundation Library in Mac OS X 10.3.5 and 10.3.6, and possibly earlier versions, allows local users to execute arbitrary code via a long CF_CHARSET_PATH enviro… NVD-CWE-Other
CVE-2005-0716 2008-09-6 05:47 2005-03-21 Show GitHub Exploit DB Packet Storm
252143 - yahoo messenger Buffer overflow in Yahoo! Messenger allows remote attackers to execute arbitrary code via the offline mode. NVD-CWE-Other
CVE-2005-0737 2008-09-6 05:47 2005-05-2 Show GitHub Exploit DB Packet Storm
252144 - openbsd openbsd The TCP stack (tcp_input.c) in OpenBSD 3.5 and 3.6 allows remote attackers to cause a denial of service (system panic) via crafted values in the TCP timestamp option, which causes invalid arguments t… NVD-CWE-Other
CVE-2005-0740 2008-09-6 05:47 2005-01-13 Show GitHub Exploit DB Packet Storm
252145 - yabb yabb Cross-site scripting (XSS) vulnerability in YaBB.pl for YaBB 2.0 RC1 allows remote attackers to inject arbitrary web script or HTML via the username parameter in a usersrecentposts action. NVD-CWE-Other
CVE-2005-0741 2008-09-6 05:47 2005-03-8 Show GitHub Exploit DB Packet Storm
252146 - utstarcom ian-02ex_voip_ata UTStarcom iAN-02EX VoIP Analog Terminal Adaptor (ATA) allows local users to bypass ATA access restrictions by dialing "*#26845#" and causing a device reset. NVD-CWE-Other
CVE-2005-0745 2008-09-6 05:47 2005-03-9 Show GitHub Exploit DB Packet Storm
252147 - applyyourself i-class ApplyYourself i-Class allows remote attackers to obtain sensitive information about their own applications by reusing the hidden ID field, as demonstrated using the id parameter to ApplicantDecision.… NVD-CWE-Other
CVE-2005-0747 2008-09-6 05:47 2005-03-8 Show GitHub Exploit DB Packet Storm
252148 - midnight_commander midnight_commander Buffer overflow in Midnight Commander (mc) 4.5.55 and earlier may allow attackers to execute arbitrary code. NVD-CWE-Other
CVE-2005-0763 2008-09-6 05:47 2005-05-2 Show GitHub Exploit DB Packet Storm
252149 - marc_lehmann rxvt-unicode Buffer overflow in command.C for rxvt-unicode before 5.3 allows remote attackers to execute arbitrary code via a crafted file containing long escape sequences. NVD-CWE-Other
CVE-2005-0764 2008-09-6 05:47 2005-05-2 Show GitHub Exploit DB Packet Storm
252150 - notify_technology notifylink NotifyLink, when configured for client key retrieval, allows remote attackers to obtain AES keys via a direct request to /hwp/get.asp, then uses a weak encryption scheme (fixed byte reordering) to pr… NVD-CWE-Other
CVE-2005-0809 2008-09-6 05:47 2005-05-2 Show GitHub Exploit DB Packet Storm