脆弱性一覧
CVE / GHSA / KEV / OSV を統合監視。タグ・カテゴリで絞り込み可能。
| ID | タイトル | |
|---|---|---|
| CVE-2026-57278 |
|
GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud)...
GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud)...
|
| CVE-2026-57277 |
|
GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud)...
GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud)...
|
| CVE-2026-57276 |
|
GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud)...
GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud)...
|
| CVE-2026-57275 |
|
GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud)...
GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud)...
|
| CVE-2026-57274 |
|
GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud)...
GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud)...
|
| CVE-2026-57273 |
|
GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud)...
GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud)...
|
| CVE-2026-13539 |
|
A vulnerability was identified in Wavlink WL-NU516U1-A M16U1_V240425. The impacted element is the...
A vulnerability was identified in Wavlink WL-NU516U1-A M16U1_V240425. The impacted element is the...
|
| CVE-2026-13519 |
|
A vulnerability was found in Tenda JD12L 16.03.53.23. This impacts the function...
A vulnerability was found in Tenda JD12L 16.03.53.23. This impacts the function...
|
| CVE-2026-13518 |
|
A vulnerability has been found in Tenda JD12L 16.03.53.23. This affects the function...
A vulnerability has been found in Tenda JD12L 16.03.53.23. This affects the function...
|
| CVE-2026-13517 |
|
A flaw has been found in Tenda JD12L 16.03.53.23. The impacted element is the function...
A flaw has been found in Tenda JD12L 16.03.53.23. The impacted element is the function...
|
| CVE-2026-47749 |
|
stable-diffusion.cpp is a pure C/C++ library for running diffusion model (Stable Diffusion, Flux, Wan, Qwen Image, Z-Image, and more) inference. Versions prior to master-584-0a7ae07 are vulnerable to...
stable-diffusion.cpp is a pure C/C++ library for running diffusion model (Stable Diffusion, Flux, Wan, Qwen Image, Z-Image, and more) inference. Versions prior to master-584-0a7ae07 are vulnerable to heap buffer overflow in SHORT_BINUNICODE parsing for PyTorch checkpoint files. The pickle .ckpt pars...
|
| CVE-2026-52720 |
|
CVE-2026-52720 の脆弱性 (CVE-2026-52720)
CVE-2026-52720 に 脆弱性 (CVE-2026-52720) が存在。悪用されるとシステム全体を乗っ取られる可能性があります。
|
| CVE-2026-34710 |
|
Substance3D - Sampler versions 6.0.0 and earlier are affected by an out-of-bounds write...
Substance3D - Sampler versions 6.0.0 and earlier are affected by an out-of-bounds write...
|
| CVE-2026-11824 |
|
SQLite before 3.53.2 Heap Buffer Overflow via FTS5 fts5ChunkIterate
SQLite before 3.53.2 Heap Buffer Overflow via FTS5 fts5ChunkIterate
|
| CVE-2026-11822 |
|
SQLite before 3.53.2 Memory Corruption in FTS5 Extension
SQLite before 3.53.2 Memory Corruption in FTS5 Extension
|
| CVE-2026-11503 |
|
A security vulnerability has been detected in Tenda CX12L 16.03.53.12. The affected element is...
A security vulnerability has been detected in Tenda CX12L 16.03.53.12. The affected element is...
|
| CVE-2021-4478 |
|
Dräger CC-Vision Basic before 7.5.3 and Dräger CC-Vision E-Cal before 7.2.5.0 contain an out-of...
Dräger CC-Vision Basic before 7.5.3 and Dräger CC-Vision E-Cal before 7.2.5.0 contain an out-of...
|
| CVE-2026-10192 |
|
A vulnerability was identified in Tenda W12 3.0.0.7(4763). The affected element is the function...
A vulnerability was identified in Tenda W12 3.0.0.7(4763). The affected element is the function...
|
| CVE-2026-10189 |
|
A vulnerability has been found in Tenda W12 3.0.0.7(4763). This vulnerability affects the...
A vulnerability has been found in Tenda W12 3.0.0.7(4763). This vulnerability affects the...
|
| CVE-2026-10191 |
|
A vulnerability was determined in Tenda W12 3.0.0.7(4763). Impacted is the function...
A vulnerability was determined in Tenda W12 3.0.0.7(4763). Impacted is the function...
|
| CVE-2026-44420 |
|
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.26.0, a malicious RDP client can trigger a heap-buffer-overflow write in FreeRDP's server-side clipboard (cliprdr) channel b...
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.26.0, a malicious RDP client can trigger a heap-buffer-overflow write in FreeRDP's server-side clipboard (cliprdr) channel by sending a CB_CLIP_CAPS PDU with a too-small capabilitySetLength. This can crash the server process...
|
| CVE-2026-42217 |
|
openexr の脆弱性 (CVE-2026-42217)
openexr に 脆弱性 (CVE-2026-42217) が存在。悪用されるとシステム全体を乗っ取られる可能性があります。``ImfIDManifest.cpp`` 経由で攻撃可能。
|
| CVE-2026-43208 |
|
linux の脆弱性 (CVE-2026-43208)
linux に 脆弱性 (CVE-2026-43208) が存在。悪用されるとシステム全体を乗っ取られる可能性があります。
|
| CVE-2026-43197 |
|
linux の脆弱性 (CVE-2026-43197)
linux に 脆弱性 (CVE-2026-43197) が存在。機密情報が外部に流出する可能性があります。
|
| CVE-2026-43186 |
|
c の脆弱性 (CVE-2026-43186)
c に 脆弱性 (CVE-2026-43186) が存在。悪用されるとシステム全体を乗っ取られる可能性があります。
|
| CVE-2026-43185 |
|
linux の脆弱性 (CVE-2026-43185)
linux に 脆弱性 (CVE-2026-43185) が存在。悪用されるとシステム全体を乗っ取られる可能性があります。
|
| CVE-2026-43125 |
|
linux に 境界外書き込み (CVE-2026-43125)
linux に 境界外書き込み (CVE-2026-43125) が存在。悪用されるとシステム全体を乗っ取られる可能性があります。
|
| CVE-2026-43114 |
|
c の脆弱性 (CVE-2026-43114)
c に 脆弱性 (CVE-2026-43114) が存在。機密情報が外部に流出する可能性があります。
|
| CVE-2026-43083 |
|
linux の脆弱性 (CVE-2026-43083)
linux に 脆弱性 (CVE-2026-43083) が存在。機密情報が外部に流出する可能性があります。
|
| CVE-2026-43067 |
|
linux の脆弱性 (CVE-2026-43067)
linux に 脆弱性 (CVE-2026-43067) が存在。悪用されるとシステム全体を乗っ取られる可能性があります。
|
| CVE-2026-24781 |
|
vm2-project に コードインジェクション (CVE-2026-24781)
vm2-project に コードインジェクション (CVE-2026-24781) が存在。悪用されるとシステム全体を乗っ取られる可能性があります。``inspect`` 経由で攻撃可能。
|
| CVE-2026-43038 |
|
linux の脆弱性 (CVE-2026-43038)
linux に 脆弱性 (CVE-2026-43038) が存在。悪用されるとシステム全体を乗っ取られる可能性があります。
|
| CVE-2026-31780 |
|
In the Linux kernel, the following vulnerability has been resolved:
wifi: wilc1000: fix u8...
In the Linux kernel, the following vulnerability has been resolved:
wifi: wilc1000: fix u8...
|
| CVE-2026-31772 |
|
In the Linux kernel, the following vulnerability has been resolved:
Bluetooth: hci_sync: fix...
In the Linux kernel, the following vulnerability has been resolved:
Bluetooth: hci_sync: fix...
|
| CVE-2026-33317 |
|
OP-TEE is a Trusted Execution Environment (TEE) designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. In versions 3.13.0 through 4.10.0, mis...
OP-TEE is a Trusted Execution Environment (TEE) designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. In versions 3.13.0 through 4.10.0, missing checks in `entry_get_attribute_value()` in `ta/pkcs11/src/object.c` can lead to out-of-bounds...
|
| CVE-2026-40170 |
|
ngtcp2 is a C implementation of the IETF QUIC protocol. In versions prior to 1.22.1, ngtcp2_qlog_parameters_set_transport_params() serializes peer transport parameters into a fixed 1024-byte stack buf...
ngtcp2 is a C implementation of the IETF QUIC protocol. In versions prior to 1.22.1, ngtcp2_qlog_parameters_set_transport_params() serializes peer transport parameters into a fixed 1024-byte stack buffer without bounds checking. When qlog is enabled, a remote peer can send sufficiently large transpo...
|
| CVE-2023-36424 KEV |
|
【KEV】Microsoft windows に 境界外読み取り (CVE-2023-36424)
Microsoft windows に 脆弱性 (CVE-2023-36424) が存在。不正な操作・情報露出のリスクがあります。CISA KEV登録済 — 実環境で悪用が確認されている。
|
| CVE-2025-53521 KEV |
|
【KEV】F5 big-ip の脆弱性 (CVE-2025-53521)
F5 big-ip に 脆弱性 (CVE-2025-53521) が存在。不正な操作・情報露出のリスクがあります。CISA KEV登録済 — 実環境で悪用が確認されている。
|
| CVE-2020-37208 |
|
SpotFTP 3.0.0.0 contains a buffer overflow vulnerability in the registration key input field that allows attackers to crash the application. Attackers can generate a 1000-character payload and paste i...
SpotFTP 3.0.0.0 contains a buffer overflow vulnerability in the registration key input field that allows attackers to crash the application. Attackers can generate a 1000-character payload and paste it into the 'Key' field to trigger an application crash and denial of service.
|
| CVE-2021-43619 |
|
Trusted Firmware M 1.4.x through 1.4.1 has a buffer overflow issue in the Firmware Update partition. In the IPC model, a psa_fwu_write caller from SPE or NSPE can overwrite stack memory locations.
Trusted Firmware M 1.4.x through 1.4.1 has a buffer overflow issue in the Firmware Update partition. In the IPC model, a psa_fwu_write caller from SPE or NSPE can overwrite stack memory locations.
|
| CVE-2021-4019 |
|
vim is vulnerable to Heap-based Buffer Overflow
vim is vulnerable to Heap-based Buffer Overflow
|
| CVE-2020-7564 |
|
schneider-electric の脆弱性 (CVE-2020-7564)
schneider-electric に 脆弱性 (CVE-2020-7564) が存在。悪用されるとシステム全体を乗っ取られる可能性があります。
|