脆弱性速報

• CVE-2023-7024緊急EPSS 3%KEV

  Google Chromium WebRTC, an open-source project providing web browsers with real-time communication, contains a heap buffer overflow vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could impact web browsers using WebRTC, including but not limited to Google Chrome.

  KEV掲載: 2024-01-02公式(NVD) →
• CVE-2023-47565緊急EPSS 87%KEV

  QNAP VioStar NVR contains an OS command injection vulnerability that allows authenticated users to execute commands via a network.

  KEV掲載: 2023-12-21公式(NVD) →
• CVE-2023-49897緊急EPSS 24%KEV

  FXC AE1021 and AE1021PE contain an OS command injection vulnerability that allows authenticated users to execute commands via a network.

  KEV掲載: 2023-12-21公式(NVD) →
• CVE-2023-6448緊急EPSS 13%KEV

  Unitronics Vision Series PLCs and HMIs ship with an insecure default password, which if left unchanged, can allow attackers to execute remote commands.

  KEV掲載: 2023-12-11公式(NVD) →
• CVE-2023-41266緊急EPSS 94%KEVランサム

  Qlik Sense contains a path traversal vulnerability that allows a remote, unauthenticated attacker to create an anonymous session by sending maliciously crafted HTTP requests. This anonymous session could allow the attacker to send further requests to unauthorized endpoints.

  KEV掲載: 2023-12-07公式(NVD) →
• CVE-2023-41265緊急EPSS 92%KEVランサム

  Qlik Sense contains an HTTP tunneling vulnerability that allows an attacker to escalate privileges and execute HTTP requests on the backend server hosting the software.

  KEV掲載: 2023-12-07公式(NVD) →
• CVE-2022-22071緊急EPSS 1%KEV

  Multiple Qualcomm chipsets contain a use-after-free vulnerability when process shell memory is freed using IOCTL munmap call and process initialization is in progress.

  KEV掲載: 2023-12-05公式(NVD) →
• CVE-2023-33107緊急EPSS 0%KEV

  Multiple Qualcomm chipsets contain an integer overflow vulnerability due to memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.

  KEV掲載: 2023-12-05公式(NVD) →
• CVE-2023-33063緊急EPSS 0%KEV

  Multiple Qualcomm chipsets contain a use-after-free vulnerability due to memory corruption in DSP Services during a remote call from HLOS to DSP.

  KEV掲載: 2023-12-05公式(NVD) →
• CVE-2023-33106緊急EPSS 0%KEV

  Multiple Qualcomm chipsets contain a use of out-of-range pointer offset vulnerability due to memory corruption in Graphics while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.

  KEV掲載: 2023-12-05公式(NVD) →
• CVE-2023-42917緊急EPSS 0%KEV

  Apple iOS, iPadOS, macOS, and Safari WebKit contain a memory corruption vulnerability that leads to code execution when processing maliciously crafted web content. This vulnerability could impact HTML parsers that use WebKit, including but not limited to Apple Safari and non-Apple products which rely on WebKit for HTML processing.

  KEV掲載: 2023-12-04公式(NVD) →
• CVE-2023-42916緊急EPSS 0%KEV

  Apple iOS, iPadOS, macOS, and Safari WebKit contain an out-of-bounds read vulnerability that may disclose sensitive information when processing maliciously crafted web content. This vulnerability could impact HTML parsers that use WebKit, including but not limited to Apple Safari and non-Apple products which rely on WebKit for HTML processing.

  KEV掲載: 2023-12-04公式(NVD) →
• CVE-2023-49103緊急EPSS 94%KEV

  ownCloud graphapi contains an information disclosure vulnerability that can reveal sensitive data stored in phpinfo() via GetPhpInfo.php, including administrative credentials.

  KEV掲載: 2023-11-30公式(NVD) →
• CVE-2023-6345緊急EPSS 2%KEV

  Google Chromium Skia contains an integer overflow vulnerability that allows a remote attacker, who has compromised the renderer process, to potentially perform a sandbox escape via a malicious file. This vulnerability affects Google Chrome and ChromeOS, Android, Flutter, and possibly other products.

  KEV掲載: 2023-11-30公式(NVD) →
• CVE-2023-4911緊急EPSS 62%KEV

  GNU C Library's dynamic loader ld.so contains a buffer overflow vulnerability when processing the GLIBC_TUNABLES environment variable, allowing a local attacker to execute code with elevated privileges.

  KEV掲載: 2023-11-21公式(NVD) →
• CVE-2020-2551緊急EPSS 94%KEV

  Oracle Fusion Middleware contains an unspecified vulnerability in the WLS Core Components that allows an unauthenticated attacker with network access via IIOP to compromise the WebLogic Server.

  KEV掲載: 2023-11-16公式(NVD) →
• CVE-2023-1671緊急EPSS 94%KEV

  Sophos Web Appliance contains a command injection vulnerability in the warn-proceed handler that allows for remote code execution.

  KEV掲載: 2023-11-16公式(NVD) →
• CVE-2023-36584緊急EPSS 15%KEV

  Microsoft Windows Mark of the Web (MOTW) contains a security feature bypass vulnerability resulting in a limited loss of integrity and availability of security features.

  KEV掲載: 2023-11-16公式(NVD) →
• CVE-2023-36025緊急EPSS 90%KEV

  Microsoft Windows SmartScreen contains a security feature bypass vulnerability that could allow an attacker to bypass Windows Defender SmartScreen checks and their associated prompts.

  KEV掲載: 2023-11-14公式(NVD) →
• CVE-2023-36036緊急EPSS 2%KEV

  Microsoft Windows Cloud Files Mini Filter Driver contains a privilege escalation vulnerability that could allow an attacker to gain SYSTEM privileges.

  KEV掲載: 2023-11-14公式(NVD) →
• CVE-2023-36033緊急EPSS 1%KEV

  Microsoft Windows Desktop Window Manager (DWM) Core Library contains an unspecified vulnerability that allows for privilege escalation.

  KEV掲載: 2023-11-14公式(NVD) →
• CVE-2023-36845緊急EPSS 94%KEV

  Juniper Junos OS on EX Series and SRX Series contains a PHP external variable modification vulnerability that allows an unauthenticated, network-based attacker to control an important environment variable. Using a crafted request, which sets the variable PHPRC, an attacker is able to modify the PHP execution environment allowing the injection und execution of code.

  KEV掲載: 2023-11-13公式(NVD) →
• CVE-2023-36846緊急EPSS 94%KEV

  Juniper Junos OS on SRX Series contains a missing authentication for critical function vulnerability that allows an unauthenticated, network-based attacker to cause limited impact to the file system integrity. With a specific request to user.php that doesn't require authentication, an attacker is able to upload arbitrary files via J-Web, leading to a loss of integrity for a certain part of the file system, which may allow chaining to other vulnerabilities.

  KEV掲載: 2023-11-13公式(NVD) →
• CVE-2023-36844緊急EPSS 94%KEV

  Juniper Junos OS on EX Series contains a PHP external variable modification vulnerability that allows an unauthenticated, network-based attacker to control certain, important environment variables. Using a crafted request an attacker is able to modify certain PHP environment variables, leading to partial loss of integrity, which may allow chaining to other vulnerabilities.

  KEV掲載: 2023-11-13公式(NVD) →
• CVE-2023-36847緊急EPSS 94%KEV

  Juniper Junos OS on EX Series contains a missing authentication for critical function vulnerability that allows an unauthenticated, network-based attacker to cause limited impact to the file system integrity. With a specific request to installAppPackage.php that doesn't require authentication, an attacker is able to upload arbitrary files via J-Web, leading to a loss of integrity for a certain part of the file system, which may allow chaining to other vulnerabilities.

  KEV掲載: 2023-11-13公式(NVD) →
• CVE-2023-47246緊急EPSS 94%KEVランサム

  SysAid Server (on-premises version) contains a path traversal vulnerability that leads to code execution.

  KEV掲載: 2023-11-13公式(NVD) →
• CVE-2023-36851緊急EPSS 15%KEV

  Juniper Junos OS on SRX Series contains a missing authentication for critical function vulnerability that allows an unauthenticated, network-based attacker to cause limited impact to the file system integrity. With a specific request to webauth_operation.php that doesn't require authentication, an attacker is able to upload arbitrary files via J-Web, leading to a loss of integrity for a certain part of the file system, which may allow chaining to other vulnerabilities.

  KEV掲載: 2023-11-13公式(NVD) →
• CVE-2023-29552緊急EPSS 92%KEV

  The Service Location Protocol (SLP) contains a denial-of-service (DoS) vulnerability that could allow an unauthenticated, remote attacker to register services and use spoofed UDP traffic to conduct a denial-of-service (DoS) attack with a significant amplification factor.

  KEV掲載: 2023-11-08公式(NVD) →
• CVE-2023-22518緊急EPSS 94%KEVランサム

  Atlassian Confluence Data Center and Server contain an improper authorization vulnerability that can result in significant data loss when exploited by an unauthenticated attacker. There is no impact on confidentiality since the attacker cannot exfiltrate any data.

  KEV掲載: 2023-11-07公式(NVD) →
• CVE-2023-46604緊急EPSS 94%KEVランサム

  Apache ActiveMQ contains a deserialization of untrusted data vulnerability that may allow a remote attacker with network access to a broker to run shell commands by manipulating serialized class types in the OpenWire protocol to cause the broker to instantiate any class on the classpath.

  KEV掲載: 2023-11-02公式(NVD) →
• CVE-2023-46747緊急EPSS 94%KEVランサム

  F5 BIG-IP Configuration utility contains an authentication bypass using an alternate path or channel vulnerability due to undisclosed requests that may allow an unauthenticated attacker with network access to the BIG-IP system through the management port and/or self IP addresses to execute system commands. This vulnerability can be used in conjunction with CVE-2023-46748.

  KEV掲載: 2023-10-31公式(NVD) →
• CVE-2023-46748緊急EPSS 4%KEV

  F5 BIG-IP Configuration utility contains an SQL injection vulnerability that may allow an authenticated attacker with network access through the BIG-IP management port and/or self IP addresses to execute system commands. This vulnerability can be used in conjunction with CVE-2023-46747.

  KEV掲載: 2023-10-31公式(NVD) →
• CVE-2023-5631緊急EPSS 83%KEV

  Roundcube Webmail contains a persistent cross-site scripting (XSS) vulnerability that allows a remote attacker to run malicious JavaScript code.

  KEV掲載: 2023-10-26公式(NVD) →
• CVE-2023-20273緊急EPSS 93%KEV

  Cisco IOS XE contains a command injection vulnerability in the web user interface. When chained with CVE-2023-20198, the attacker can leverage the new local user to elevate privilege to root and write the implant to the file system. Cisco identified CVE-2023-20273 as the vulnerability exploited to deploy the implant. CVE-2021-1435, previously associated with the exploitation events, is no longer believed to be related to this activity.

  KEV掲載: 2023-10-23公式(NVD) →
• CVE-2023-4966緊急EPSS 94%KEVランサム

  Citrix NetScaler ADC and NetScaler Gateway contain a buffer overflow vulnerability that allows for sensitive information disclosure when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server.

  KEV掲載: 2023-10-18公式(NVD) →
• CVE-2023-20198緊急EPSS 94%KEV

  Cisco IOS XE Web UI contains a privilege escalation vulnerability in the web user interface that could allow a remote, unauthenticated attacker to create an account with privilege level 15 access. The attacker can then use that account to gain control of the affected device.

  KEV掲載: 2023-10-16公式(NVD) →
• CVE-2023-44487緊急EPSS 94%KEV

  HTTP/2 contains a rapid reset vulnerability that allows for a distributed denial-of-service attack (DDoS).

  KEV掲載: 2023-10-10公式(NVD) →
• CVE-2023-21608緊急EPSS 77%KEV

  Adobe Acrobat and Reader contains a use-after-free vulnerability that allows for code execution in the context of the current user.

  KEV掲載: 2023-10-10公式(NVD) →
• CVE-2023-41763緊急EPSS 16%KEV

  Microsoft Skype for Business contains an unspecified vulnerability that allows for privilege escalation.

  KEV掲載: 2023-10-10公式(NVD) →
• CVE-2023-36563緊急EPSS 3%KEV

  Microsoft WordPad contains an unspecified vulnerability that allows for information disclosure.

  KEV掲載: 2023-10-10公式(NVD) →

優先度 = KEV(実際に悪用中) ＋ EPSS(30日内に悪用される確率) ＋ CVSS(深刻度) の合成。防御目的のフィードで、攻撃コードやPoCは扱いません。各CVEの詳細は公式(NVD)へリンクします。