NVD脆弱性情報トップ
検索メニュー表示
ベンダー名
プロダクト・サービス名
タイトル
CRITICAL
HIGH
MEDIUM
LOW
CVE
CWE
公表日降順
更新日降順
表示数

NVD(National Vulnerability Database)で管理されている脆弱性の一覧を検索することが出来ます。
JVN(Japan Vulnerability Note)より先に脆弱性情報が更新される事が多いため、JVNに未記載の脆弱性が更新されている場合があります。

JVN(Japan Vulnerability Note)に関連した脆弱性がある場合は詳細画面で情報を表示します。

CWEで検索する場合は、CWE概要を参照して、CWE番号を確認してください。

  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW

更新日:2024年11月18日5:14

No CVSS レベル
攻撃区分		 ベンダー名 プロダクト名 タイトル CWE CVE 更新日 公表日 影響表示 Exploit
PoC
検索
246051 10.0 HIGH
adobe air
flash_player
air_sdk
air_sdk_\&_compiler 		<a href="https://cwe.mitre.org/data/definitions/416.html">CWE-416: Use After Free</a> NVD-CWE-Other
CVE-2015-8452 2017-02-17 11:59 2015-12-10 表示 GitHub Exploit DB Packet Storm
246052 4.3 MEDIUM
adobe flash_player
air
air_sdk
air_sdk_\&_compiler 		Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe … CWE-200
情報漏えい 		CVE-2015-8453 2017-02-17 11:59 2015-12-10 表示 GitHub Exploit DB Packet Storm
246053 10.0 HIGH
adobe air
flash_player
air_sdk
air_sdk_\&_compiler 		<a href="https://cwe.mitre.org/data/definitions/416.html">CWE-416: Use After Free</a> NVD-CWE-Other
CVE-2015-8454 2017-02-17 11:59 2015-12-10 表示 GitHub Exploit DB Packet Storm
246054 10.0 HIGH
adobe flash_player
air_sdk
air_sdk_\&_compiler
air 		Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe … CWE-119
バッファエラー 		CVE-2015-8455 2017-02-17 11:59 2015-12-10 表示 GitHub Exploit DB Packet Storm
246055 9.3 HIGH
adobe flash_player
air
air_sdk
air_sdk_\&_compiler 		Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe … NVD-CWE-Other
CVE-2015-8456 2017-02-17 11:59 2015-12-10 表示 GitHub Exploit DB Packet Storm
246056 9.3 HIGH
adobe flash_player
air
air_sdk
air_sdk_\&_compiler 		<a href="https://cwe.mitre.org/data/definitions/843.html">CWE-843: Access of Resource Using Incompatible Type ('Type Confusion')</a> NVD-CWE-Other
CVE-2015-8456 2017-02-17 11:59 2015-12-10 表示 GitHub Exploit DB Packet Storm
246057 10.0 HIGH
adobe air
flash_player
air_sdk
air_sdk_\&_compiler 		Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR S… NVD-CWE-Other
CVE-2015-8454 2017-02-17 11:59 2015-12-10 表示 GitHub Exploit DB Packet Storm
246058 10.0 HIGH
adobe air_sdk
air_sdk_\&_compiler
flash_player
air 		Stack-based buffer overflow in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SD… CWE-119
バッファエラー 		CVE-2015-8457 2017-02-17 11:59 2015-12-10 表示 GitHub Exploit DB Packet Storm
246059 10.0 CRITICAL
ネットワーク 		adobe air_sdk
air_sdk_\&_compiler
air
flash_player 		Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR SDK before 20.0.0.233, and Adobe … CWE-119
バッファエラー 		CVE-2015-8459 2017-02-17 11:59 2015-12-29 表示 GitHub Exploit DB Packet Storm
246060 8.8 HIGH
ネットワーク 		adobe flash_player
air_sdk
air_sdk_\&_compiler
air 		Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR SDK before 20.0.0.233, and Adobe … CWE-119
バッファエラー 		CVE-2015-8460 2017-02-17 11:59 2015-12-29 表示 GitHub Exploit DB Packet Storm
246061 8.8 HIGH
ネットワーク 		adobe flash_player
air_sdk
air_sdk_\&_compiler
air 		<a href="http://cwe.mitre.org/data/definitions/416.html">CWE-416: Use After Free</a> NVD-CWE-Other
CVE-2015-8638 2017-02-17 11:59 2015-12-29 表示 GitHub Exploit DB Packet Storm
246062 8.8 HIGH
ネットワーク 		adobe flash_player
air
air_sdk
air_sdk_\&_compiler 		<a href="http://cwe.mitre.org/data/definitions/416.html">CWE-416: Use After Free</a> NVD-CWE-Other
CVE-2015-8639 2017-02-17 11:59 2015-12-29 表示 GitHub Exploit DB Packet Storm
246063 8.8 HIGH
ネットワーク 		adobe flash_player
air
air_sdk
air_sdk_\&_compiler 		<a href="http://cwe.mitre.org/data/definitions/416.html">CWE-416: Use After Free</a> NVD-CWE-Other
CVE-2015-8640 2017-02-17 11:59 2015-12-29 表示 GitHub Exploit DB Packet Storm
246064 8.8 HIGH
ネットワーク 		adobe air_sdk
air_sdk_\&_compiler
flash_player
air 		<a href="http://cwe.mitre.org/data/definitions/416.html">CWE-416: Use After Free</a> NVD-CWE-Other
CVE-2015-8641 2017-02-17 11:59 2015-12-29 表示 GitHub Exploit DB Packet Storm
246065 8.8 HIGH
ネットワーク 		adobe flash_player
air_sdk
air_sdk_\&_compiler
air 		<a href="http://cwe.mitre.org/data/definitions/416.html">CWE-416: Use After Free</a> NVD-CWE-Other
CVE-2015-8642 2017-02-17 11:59 2015-12-29 表示 GitHub Exploit DB Packet Storm
246066 8.8 HIGH
ネットワーク 		adobe flash_player
air_sdk
air_sdk_\&_compiler
air 		Use-after-free vulnerability in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR S… NVD-CWE-Other
CVE-2015-8638 2017-02-17 11:59 2015-12-29 表示 GitHub Exploit DB Packet Storm
246067 8.8 HIGH
ネットワーク 		adobe flash_player
air
air_sdk
air_sdk_\&_compiler 		Use-after-free vulnerability in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR S… NVD-CWE-Other
CVE-2015-8639 2017-02-17 11:59 2015-12-29 表示 GitHub Exploit DB Packet Storm
246068 8.8 HIGH
ネットワーク 		adobe flash_player
air
air_sdk
air_sdk_\&_compiler 		Use-after-free vulnerability in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR S… NVD-CWE-Other
CVE-2015-8640 2017-02-17 11:59 2015-12-29 表示 GitHub Exploit DB Packet Storm
246069 8.8 HIGH
ネットワーク 		adobe air_sdk
air_sdk_\&_compiler
flash_player
air 		Use-after-free vulnerability in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR S… NVD-CWE-Other
CVE-2015-8641 2017-02-17 11:59 2015-12-29 表示 GitHub Exploit DB Packet Storm
246070 8.8 HIGH
ネットワーク 		adobe flash_player
air_sdk
air_sdk_\&_compiler
air 		Use-after-free vulnerability in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR S… NVD-CWE-Other
CVE-2015-8642 2017-02-17 11:59 2015-12-29 表示 GitHub Exploit DB Packet Storm
246071 8.8 HIGH
ネットワーク 		adobe flash_player
air
air_sdk
air_sdk_\&_compiler 		Use-after-free vulnerability in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR S… NVD-CWE-Other
CVE-2015-8643 2017-02-17 11:59 2015-12-29 表示 GitHub Exploit DB Packet Storm
246072 8.8 HIGH
ネットワーク 		adobe flash_player
air
air_sdk
air_sdk_\&_compiler 		<a href="http://cwe.mitre.org/data/definitions/416.html">CWE-416: Use After Free</a> NVD-CWE-Other
CVE-2015-8643 2017-02-17 11:59 2015-12-29 表示 GitHub Exploit DB Packet Storm
246073 8.8 HIGH
ネットワーク 		adobe air
flash_player
air_sdk
air_sdk_\&_compiler 		Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR SDK before 20.0.0.233, and Adobe … CWE-119
バッファエラー 		CVE-2015-8645 2017-02-17 11:59 2015-12-29 表示 GitHub Exploit DB Packet Storm
246074 8.8 HIGH
ネットワーク 		adobe air
flash_player
air_sdk
air_sdk_\&_compiler 		Use-after-free vulnerability in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR S… NVD-CWE-Other
CVE-2015-8646 2017-02-17 11:59 2015-12-29 表示 GitHub Exploit DB Packet Storm
246075 8.8 HIGH
ネットワーク 		adobe air
flash_player
air_sdk
air_sdk_\&_compiler 		<a href="http://cwe.mitre.org/data/definitions/416.html">CWE-416: Use After Free</a> NVD-CWE-Other
CVE-2015-8646 2017-02-17 11:59 2015-12-29 表示 GitHub Exploit DB Packet Storm
246076 8.8 HIGH
ネットワーク 		adobe air
flash_player
air_sdk
air_sdk_\&_compiler 		Use-after-free vulnerability in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR S… NVD-CWE-Other
CVE-2015-8647 2017-02-17 11:59 2015-12-29 表示 GitHub Exploit DB Packet Storm
246077 8.8 HIGH
ネットワーク 		adobe air
flash_player
air_sdk
air_sdk_\&_compiler 		<a href="http://cwe.mitre.org/data/definitions/416.html">CWE-416: Use After Free</a> NVD-CWE-Other
CVE-2015-8647 2017-02-17 11:59 2015-12-29 表示 GitHub Exploit DB Packet Storm
246078 8.8 HIGH
ネットワーク 		adobe air
flash_player
air_sdk
air_sdk_\&_compiler 		Use-after-free vulnerability in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR S… NVD-CWE-Other
CVE-2015-8648 2017-02-17 11:59 2015-12-29 表示 GitHub Exploit DB Packet Storm
246079 8.8 HIGH
ネットワーク 		adobe air
flash_player
air_sdk
air_sdk_\&_compiler 		<a href="http://cwe.mitre.org/data/definitions/416.html">CWE-416: Use After Free</a> NVD-CWE-Other
CVE-2015-8648 2017-02-17 11:59 2015-12-29 表示 GitHub Exploit DB Packet Storm
246080 8.8 HIGH
ネットワーク 		adobe flash_player
air_sdk
air_sdk_\&_compiler
air 		Use-after-free vulnerability in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR S… NVD-CWE-Other
CVE-2015-8649 2017-02-17 11:59 2015-12-29 表示 GitHub Exploit DB Packet Storm
246081 8.8 HIGH
ネットワーク 		adobe flash_player
air_sdk
air_sdk_\&_compiler
air 		<a href="http://cwe.mitre.org/data/definitions/416.html">CWE-416: Use After Free</a> NVD-CWE-Other
CVE-2015-8649 2017-02-17 11:59 2015-12-29 表示 GitHub Exploit DB Packet Storm
246082 8.8 HIGH
ネットワーク 		adobe air_sdk
air_sdk_\&_compiler
flash_player
air 		<a href="http://cwe.mitre.org/data/definitions/416.html">CWE-416: Use After Free</a> NVD-CWE-Other
CVE-2015-8650 2017-02-17 11:59 2015-12-29 表示 GitHub Exploit DB Packet Storm
246083 8.8 HIGH
ネットワーク 		adobe air_sdk
air_sdk_\&_compiler
flash_player
air 		Use-after-free vulnerability in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR S… NVD-CWE-Other
CVE-2015-8650 2017-02-17 11:59 2015-12-29 表示 GitHub Exploit DB Packet Storm
246084 9.3 HIGH
gnu wget Absolute path traversal vulnerability in GNU Wget before 1.16, when recursion is enabled, allows remote FTP servers to write to arbitrary files, and consequently execute arbitrary code, via a LIST re… CWE-22
パス・トラバーサル 		CVE-2014-4877 2017-02-17 11:59 2014-10-29 表示 GitHub Exploit DB Packet Storm
246085 2.6 LOW
namazu namazu Cross-site scripting (XSS) vulnerability in Namazu before 2.0.21, when Internet Explorer 6 or 7 is used, allows remote attackers to inject arbitrary web script or HTML via a cookie. CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4345 2017-02-17 11:59 2011-11-30 表示 GitHub Exploit DB Packet Storm
246086 7.5 HIGH
namazu namazu Stack-based buffer overflow in Namazu before 2.0.20 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted request containing an empty ur… CWE-119
バッファエラー 		CVE-2009-5028 2017-02-17 11:59 2011-11-30 表示 GitHub Exploit DB Packet Storm
246087 8.6 HIGH
ネットワーク 		honeywell xl_web_ii_controller An issue was discovered in Honeywell XL Web II controller XL1000C500 XLWebExe-2-01-00 and prior, and XLWeb 500 XLWebExe-1-02-08 and prior. A user without authenticating can make a directory traversal… CWE-22
パス・トラバーサル 		CVE-2017-5143 2017-02-17 01:33 2017-02-14 表示 GitHub Exploit DB Packet Storm
246088 9.8 CRITICAL
ネットワーク 		binom3 universal_multifunctional_electric_power_quality_meter_firmware An issue was discovered in BINOM3 Universal Multifunctional Electric Power Quality Meter. An INFORMATION EXPOSURE flaw can be used to gain privileged access to the device. CWE-200
情報漏えい 		CVE-2017-5166 2017-02-17 01:13 2017-02-14 表示 GitHub Exploit DB Packet Storm
246089 7.6 HIGH
ネットワーク 		binom3 universal_multifunctional_electric_power_quality_meter_firmware An issue was discovered in BINOM3 Universal Multifunctional Electric Power Quality Meter. There is no CSRF Token generated per page and/or per (sensitive) function. Successful exploitation of this vu… CWE-352
同一生成元ポリシー違反 		CVE-2017-5165 2017-02-17 01:11 2017-02-14 表示 GitHub Exploit DB Packet Storm
246090 9.8 CRITICAL
ネットワーク 		binom3 universal_multifunctional_electric_power_quality_meter_firmware An issue was discovered in BINOM3 Universal Multifunctional Electric Power Quality Meter. Lack of authentication for remote service gives access to application set up and configuration. CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2017-5162 2017-02-17 01:09 2017-02-14 表示 GitHub Exploit DB Packet Storm
246091 6.1 MEDIUM
ネットワーク 		binom3 universal_multifunctional_electric_power_quality_meter_firmware An issue was discovered in BINOM3 Universal Multifunctional Electric Power Quality Meter. Input sent from a malicious client is not properly verified by the server. An attacker can execute arbitrary … CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-5164 2017-02-17 01:08 2017-02-14 表示 GitHub Exploit DB Packet Storm
246092 7.8 HIGH
ローカル 		freebsd freebsd Integer overflow in the bhyve hypervisor in FreeBSD 10.1, 10.2, 10.3, and 11.0 when configured with a large amount of guest memory, allows local users to gain privilege via a crafted device descripto… CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2016-1889 2017-02-16 23:58 2017-02-16 表示 GitHub Exploit DB Packet Storm
246093 5.9 MEDIUM
ネットワーク 		ibm tealeaf_customer_experience_on_cloud_network_capture_add-on IBM Tealeaf Customer Experience on Cloud Network Capture Add-On could allow a remote attacker to obtain sensitive information, caused by the failure to properly validate the TLS certificate. An attac… CWE-200
情報漏えい 		CVE-2016-5900 2017-02-16 23:45 2017-02-9 表示 GitHub Exploit DB Packet Storm
246094 7.0 HIGH
ローカル 		bubblewrap_project bubblewrap Bubblewrap before 0.1.3 sets the PR_SET_DUMPABLE flag, which might allow local users to gain privileges by attaching to the process, as demonstrated by sending commands to a PrivSep socket. CWE-264
認可・権限・アクセス制御 		CVE-2016-8659 2017-02-16 23:38 2017-02-14 表示 GitHub Exploit DB Packet Storm
246095 5.5 MEDIUM
ローカル 		zoneminder zoneminder A file disclosure and inclusion vulnerability exists in web/views/file.php in ZoneMinder 1.x through v1.30.0 because of unfiltered user-input being passed to readfile(), which allows an authenticated… CWE-200
情報漏えい 		CVE-2017-5595 2017-02-16 23:09 2017-02-7 表示 GitHub Exploit DB Packet Storm
246096 6.1 MEDIUM
ネットワーク 		kabona_ab webdatorcentral An issue was discovered in Kabona AB WebDatorCentral (WDC) application prior to Version 3.4.0. This non-validated redirect/non-validated forward (OPEN REDIRECT) allows chaining with authenticated vul… CWE-601
オープンリダイレクト 		CVE-2016-8376 2017-02-16 22:56 2017-02-14 表示 GitHub Exploit DB Packet Storm
246097 8.2 HIGH
ネットワーク 		kabona_ab webdatorcentral An issue was discovered in Kabona AB WebDatorCentral (WDC) application prior to Version 3.4.0. The web server URL inputs are not sanitized correctly, which may allow cross-site scripting vulnerabilit… CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-8356 2017-02-16 22:55 2017-02-14 表示 GitHub Exploit DB Packet Storm
246098 7.5 HIGH
ネットワーク 		samsung samsung_mobile Samsung devices with Android KK(4.4), L(5.0/5.1), or M(6.0) allow attackers to cause a denial of service (system crash) via a crafted system call to TvoutService_C. CWE-20
不適切な入力確認 		CVE-2016-4547 2017-02-16 22:40 2017-02-14 表示 GitHub Exploit DB Packet Storm
246099 5.5 MEDIUM
ローカル 		samsung samsung_mobile Samsung devices with Android KK(4.4) or L(5.0/5.1) allow local users to cause a denial of service (IAndroidShm service crash) via crafted data in a service call. CWE-20
不適切な入力確認 		CVE-2016-4546 2017-02-16 22:39 2017-02-14 表示 GitHub Exploit DB Packet Storm
246100 5.4 MEDIUM
ネットワーク 		bigtreecms bigtree_cms An issue was discovered in BigTree CMS before 4.2.15. The vulnerability exists due to insufficient filtration of user-supplied data in the "id" HTTP GET parameter passed to the "core/admin/adjax/dash… CWE-284
不適切なアクセス制御 		CVE-2016-10223 2017-02-16 22:34 2017-02-14 表示 GitHub Exploit DB Packet Storm