Vulnerability Reports VU
2023
- 2023/06/02 JVNVU#97809354:
- Multiple vulnerabilities in FUJI ELECTRIC FRENIC RHC Loader
- 2023/05/31 JVNVU#93372935:
- Multiple vulnerabilities in Contec CONPROSYS HMI System (CHS)
- 2023/05/24 JVNVU#94777298:
- Multiple vulnerabilities in Canon Office/Small Office Multifunction Printers, Laser Printers and Inkjet Printers
- 2023/05/18 JVNVU#97891206:
- Android App "Brother iPrint&Scan" vulnerable to improper access control
- 2023/05/16 JVNVU#98968780:
- OS command injection vulnerability in Inaba Denki Sangyo Wi-Fi AP UNIT
- 2023/05/08 JVNVU#92106300:
- Multiple vulnerabilities in SolarView Compact
- 2023/04/24 JVNVU#97372625:
- Heap-based buffer overflow vulnerability in OMRON CX-Drive
- 2023/04/11 JVNVU#98434809:
- Multiple mobile printing apps for Android vulnerable to improper intent handling
- 2023/04/05 JVNVU#98775218:
- Yokogawa Electric CENTUM series vulnerable to cleartext storage of sensitive information
- 2023/03/31 JVNVU#92145493:
- CONPROSYS HMI System(CHS) vulnerable to SQL injection
- 2023/03/31 JVNVU#99710864:
- JTEKT ELECTRONIC Screen Creator Advance 2 vulnerable to improper restriction of operations within the bounds of a memory buffer
- 2023/03/17 JVNVU#96198617:
- Multiple vulnerabilities in Contec CONPROSYS IoT Gateway products
- 2023/03/07 JVNVU#96824262:
- Multiple vulnerabilities in Buffalo network devices
- 2023/03/03 JVNVU#94966432:
- Multiple vulnerabilities in JTEKT ELECTRONICS Kostac PLC Programming Software
- 2023/03/02 JVNVU#96890975:
- Multiple vulnerabilities in Edgecross Basic Software for Windows
- 2023/03/01 JVNVU#96882769:
- Multiple vulnerabilities in Trend Micro Maximum Security
- 2023/03/01 JVNVU#96221942:
- Multiple vulnerabilities in Trend Micro Apex One and Apex One as a Service
- 2023/02/17 JVNVU#91848962:
- Multiple vulnerabilities in Trend Micro Worry-Free Business Security and Worry-Free Business Security Services
- 2023/02/10 JVNVU#99551468:
- Zuken Elmic KASAGO uses insufficient random values for TCP Initial Sequence Numbers
- 2023/02/03 JVNVU#98917488:
- Multiple vulnerabilities in JTEKT ELECTRONICS Screen Creator Advance 2
- 2023/01/24 JVNVU#94200979:
- Improper restriction of XML external entity reference (XXE) vulnerability in OMRON CX-Motion Pro
- 2023/01/23 JVNVU#97195023:
- Contec CONPROSYS HMI System (CHS) vulnerable to multiple SQL injections
- 2023/01/11 JVNVU#93704047:
- Multiple vulnerabilities in EXPRESSCLUSTER X
- 2023/01/11 JVNVU#91744508:
- Access of uninitialized pointer vulnerability in OMRON CX-Motion-MCH
- 2023/01/11 JVNVU#97575890:
- Active debug code vulnerability in OMRON CP1L-EL20DR-D
- 2023/01/10 JVNVU#91740661:
- OpenAM Web Policy Agent (OpenAM Consortium Edition) vulnerable to path traversal
2022
- 2022/12/28 JVNVU#90679513:
- Multiple vulnerabilities in Fuji Electric V-SFT and TELLUS
- 2022/12/28 JVNVU#92811888:
- Multiple vulnerabilities in Fuji Electric V-Server
- 2022/12/23 JVNVU#96679793:
- Multiple vulnerabilities in Trend Micro Apex One and Apex One as a Service
- 2022/12/19 JVNVU#92689335:
- Use-after-free vulnerability in Omron CX-Drive
- 2022/12/15 JVNVU#96195138:
- Command injection vulnerability in SHARP Multifunctional Products (MFP)
- 2022/12/14 JVNVU#96873821:
- Multiple vulnerabilities in Contec CONPROSYS HMI System (CHS)
- 2022/12/09 JVNVU#97099584:
- Multiple vulnerabilities in Buffalo network devices
- 2022/12/05 JVNVU#93526386:
- Contec SolarView Compact vulnerable to cross-site scripting
- 2022/12/01 JVNVU#94514762:
- Multiple vulnerabilities in UNIMO Technology digital video recorders
- 2022/11/25 JVNVU#92877622:
- Multiple vulnerabilities in OMRON CX-Programmer
- 2022/11/18 JVNVU#90082799:
- Multiple vulnerabilities in Trend Micro Apex One and Apex One as a Service
- 2022/11/15 JVNVU#98082029:
- Realtek chip deadlock vulnerability (CVE-2022-34326) in Mitsubishi Electric consumer electronics products
- 2022/11/14 JVNVU#97968855:
- Multiple vulnerabilities in Hitachi Kokusai Network products for monitoring system(Camera, Encoder, Decoder)
- 2022/10/19 JVNVU#97131578:
- Multiple vulnerabilities in Trend Micro Apex One and Apex One as a Service
- 2022/10/18 JVNVU#99955870:
- Stack-based buffer overflow vulnerability in Yokogawa Test & Measurement WTViewerE
- 2022/10/12 JVNVU#93424017:
- Multiple vulnerabilities in SVMPC1 and SVMPC2
- 2022/10/07 JVNVU#99960963:
- Multiple vulnerabilities in Trend Micro Deep Security and Cloud One - Workload Security agents for Windows
- 2022/10/04 JVNVU#92805279:
- Multiple vulnerabilities in Buffalo network devices
- 2022/09/15 JVNVU#99326969:
- OpenAM (OpenAM Consortium Edition) vulnerable to open redirect
- 2022/09/01 JVNVU#98305100:
- Multiple vulnerabilities in Contec FLEXLAN FX3000 and FX2000 series
- 2022/08/31 JVNVU#90766406:
- Multiple vulnerabilities in PLANEX Network camera products
- 2022/08/23 JVNVU#96002401:
- Multiple vulnerabilities in PukiWiki
- 2022/08/22 JVNVU#90821877:
- UNIMO Technology digital video recorders vulnerable to missing authentication for critical functions
- 2022/08/22 JVNVU#98291763:
- PLANEX MZK-DP150N contains hidden administrative functionality
- 2022/08/17 JVNVU#93109244:
- Multiple vulnerabilities in Trend Micro Security
- 2022/08/17 JVNVU#96643038:
- Trend Micro Endpoint security products for enterprises vulnerable to Link Following Local Privilege Escalation
- 2022/07/27 JVNVU#93696585:
- CONTEC SolarView Compact vulnerable to insufficient verification in uploading files
- 2022/07/12 JVNVU#97846460:
- U-Boot squashfs filesystem implementation vulnerable to heap-based buffer overflow
- 2022/07/01 JVNVU#97050784:
- Multiple vulnerabilities in OMRON products
- 2022/06/14 JVNVU#96438711:
- Growi vulnerable to weak password requirements
- 2022/06/02 JVNVU#90675050:
- Multiple vulnerabilities in Trend Micro Apex One and Apex One as a Service
- 2022/05/26 JVNVU#93134398:
- Multiple vulnerabilities in Fuji Electric V-SFT, V-Server and V-Server Lite
- 2022/05/26 JVNVU#99188133:
- Multiple vulnerabilities in Fuji Electric V-SFT
- 2022/05/26 JVNVU#92327282:
- Multiple vulnerabilities in CONTEC SolarView Compact
- 2022/05/23 JVNVU#92641706:
- Trend Micro Password Manager vulnerable to privilege escalation
- 2022/05/12 JVNVU#93434935:
- Installer of Trend Micro HouseCall for Home Networks may insecurely load Dynamic Link Libraries
- 2022/05/11 JVNVU#95992089:
- Command injection vulnerability in QNAP VioStar series NVR
- 2022/04/06 JVNVU#97833256:
- Trend Micro Antivirus for Mac vulnerable to privilege escalation
- 2022/03/30 JVNVU#99107357:[Critical]
- Trend Micro Apex Central and Trend Micro Apex Central as a Service vulnerable to improper check for file contents
- 2022/03/22 JVNVU#94900322:
- Netcommunity OG410X and OG810X VoIP gateway/Hikari VoIP adapter for business offices vulnerable to OS command injection
- 2022/03/11 JVNVU#99391968:
- Installer of Trend Micro Portable Security may insecurely load Dynamic Link Libraries
- 2022/03/10 JVNVU#96777901:
- Installer of Trend Micro Password Manager may insecurely load Dynamic Link Libraries
- 2022/03/08 JVNVU#90673830:
- Installer of WPS Office for Windows misconfigures the ACL for the installation directory
- 2022/03/04 JVNVU#90121984:
- Multiple vulnerabilities in OMRON CX-Programmer
- 2022/03/02 JVNVU#92972528:
- Multiple vulnerabilities in Trend Micro ServerProtect
- 2022/03/01 JVNVU#96994445:
- Multiples security updates for Trend Micro Endpoint security products for enterprises (March 2022)
- 2022/02/17 JVNVU#95075478:
- Trend Micro Antivirus for MAC vulnerable to privilege escalation
- 2022/01/24 JVNVU#95024141:
- Multiple vulnerabilities in Trend Micro Deep Security and Cloud One - Workload Security Agent for Linux
- 2022/01/21 JVNVU#94151526:
- GROWI vulnerable to authorization bypass through user-controlled key
2021
- 2021/12/24 JVNVU#95192472:
- Multiple vulnerabilities in KONICA MINOLTA MFPs and printing systems
- 2021/12/24 JVNVU#92279973:
- Multiple vulnerabilities in IDEC PLCs
- 2021/12/23 JVNVU#94883311:
- TP-Link TL-WR802N V4(JP) vulnerable to OS command injection
- 2021/12/22 JVNVU#95429813:
- Multiple vulnerabilities in QNAP VioStar NVR
- 2021/12/08 JVNVU#98117192:
- Multiple vulnerabilities in Trend Micro Security 2021 family (Consumer)
- 2021/11/30 JVNVU#94527926:
- Multiple vulnerabilities in multiple ELECOM routers
- 2021/11/26 JVNVU#95400836:
- Trend Micro Antivirus for MAC vulnerable to improper access controls
- 2021/11/09 JVNVU#91161784:
- Multiple vulnerabilities in multiple Yamaha routers
- 2021/10/25 JVNVU#92842857:
- Trend Micro Endpoint security products for enterprises vulnerable to privilege escalation
- 2021/10/15 JVNVU#90041391:
- OMRON CX-Supervisor vulnerable to out-of-bounds read
- 2021/09/30 JVNVU#99520559:
- Trend Micro ServerProtect family vulnerable to authentication bypass
- 2021/09/29 JVNVU#99718667:
- Trend Micro HouseCall for Home Networks vulnerable to privilege escalation
- 2021/09/02 JVNVU#94699053:
- Trend Micro Security family vulnerable to improper handling of Directory Junction
- 2021/08/19 JVNVU#95261759:
- Multiple vulnerabilities in Navigate CMS
- 2021/08/18 JVNVU#90091573:
- Incorrect permission assignment vulnerability in multiple Trend Micro Endpoint security products for enterprises
- 2021/08/16 JVNVU#92088210:
- Multiple vulnerabilities in D-Link router DSL-2750U
- 2021/07/29 JVNVU#93876919:[Critical]
- Multiple vulnerabilities in multiple Trend Micro Endpoint security products for enterprises
- 2021/07/16 JVNVU#94115268:
- Trend Micro InterScan Web Security Virtual Appliance (IWSVA) vulnerable to cross-site scripting
- 2021/07/06 JVNVU#94260088:
- Multiple vulnerabilities in Elecom routers
- 2021/07/05 JVNVU#93149000:
- Multiple vulnerabilities in Trend Micro Password Manager
- 2021/06/09 JVNVU#92417259:
- Multiple vulnerabilities in Trend Micro Home Network Security
- 2021/06/07 JVNVU#92413403:
- urllib3 vulnerable to Regular expression Denial-of-Service (ReDoS)
- 2021/05/31 JVNVU#92862829:
- Multiple vulnerabilities in Buffalo WSR-1166DHP3 and WSR-1166DHP4 routers
- 2021/05/31 JVNVU#93332929:
- Multiple security updates for multiple Trend Micro products (May 2021)
- 2021/05/10 JVNVU#97581596:
- Multiple vulnerabilities in Trend Micro Apex One, OfficeScan, and Worry-Free Business Security series
- 2021/04/27 JVNVU#99235714:
- Multiple vulnerabilities in Buffalo broadband routers
- 2021/04/27 JVNVU#90274525:
- Multiple Buffalo network devices contain hidden functionality
- 2021/04/21 JVNVU#93491927:[Critical]
- Multiple vulnerabilities in Apex One, Apex One as a Service and OfficeScan
- 2021/04/20 JVNVU#93009588:
- Memory Exhaustion Denial-of-Service (DoS) vulnerability in Trend Micro Scan Engine
- 2021/04/20 JVNVU#92208501:
- Multiple vulnerabilities in Worry-Free Business Security
- 2021/04/20 JVNVU#97680506:
- Multiple vulnerabilities in Worry-Free Business Security Services
- 2021/04/19 JVNVU#98074915:
- Trend Micro Password Manager may insecurely load Dynamic Link Libraries
- 2021/04/09 JVNVU#92898656:
- D-Link DAP-1880AC contains multiple vulnerabilities
- 2021/03/08 JVNVU#94889258:
- Multiple vulnerabilities in GROWI
- 2021/03/05 JVNVU#99545969:
- Trend Micro Security (Consumer) vulnerable to code injection
- 2021/02/03 JVNVU#98209799:
- Trend Micro HouseCall for Home Networks (Windows Edition) may insecurely load Dynamic Link Libraries
- 2021/02/01 JVNVU#99814910:
- Multiple vulnerabilities in the installer of Trend Micro Security 2020 (Consumer)
- 2021/01/22 JVNVU#92444096:
- TP-Link TL-WR841N V13 (JP) vulnerable to OS command injection
- 2021/01/14 JVNVU#99904867:
- Multiple vulnerabilities in Worry-Free Business Security (WFBS)
- 2021/01/14 JVNVU#92683420:
- Multiple vulnerabilities in Trend Micro Apex One and OfficeScan
- 2021/01/05 JVNVU#98351146:
- Multiple vulnerabilities in InterScan Web Security Virtual Appliance (IWSVA)
2020
- 2020/12/07 JVNVU#97704455:
- ServerProtect for Linux vulnerable to heap-based buffer overflow
- 2020/11/27 JVNVU#98890246:
- Multiple vulnerabilities in Trend Micro InterScan Messaging Virtual Appliance (IMSVA)
- 2020/11/24 JVNVU#94694991:
- Multiple vulnerabilities in Trend Micro Antivirus for Mac
- 2020/11/18 JVNVU#96249940:
- Trend Micro Security 2020 (Consumer) is vulnerable to arbitrary file deletion
- 2020/11/17 JVNVU#99880454:
- Multiple vulnerabilities in KonaWiki3
- 2020/11/06 JVNVU#92053563:
- Multiple vulnerabilities in XOOPS module "XooNIps"
- 2020/10/20 JVNVU#99467898:
- Local File Inclusion vulnerability in OneThird CMS
- 2020/10/06 JVNVU#95014999:
- Trend Micro Antivirus for Mac vulnerable to a privilege escalation
- 2020/09/25 JVNVU#93741515:
- CMONOS.JP vulnerable to cross-site scripting
- 2020/09/23 JVNVU#91216654:
- ServerProtect for Linux vulnerable to OS command injection
- 2020/08/31 JVNVU#90813748:
- Multiple vulnerabilities in Trend Micro Deep Security Manager and Vulnerability Protection
- 2020/08/25 JVNVU#98542645:
- Multiple vulnerabilities in InterScan Web Security Virtual Appliance (IWSVA)
- 2020/08/06 JVNVU#98423028:
- Installer of Trend Micro Security 2020 (Consumer) may insecurely load Dynamic Link Libraries
- 2020/08/06 JVNVU#94105662:
- Trend Micro Security (Consumer) Driver vulnerable to Out-of-bounds Read
- 2020/08/05 JVNVU#99160193:
- Trend Micro anti-rootkit driver improperly validates inputs
- 2020/07/03 JVNVU#95413676:
- Multiple vulnerabilities in TCP/IP function on Mitsubishi Electric GOT2000 series
- 2020/06/30 JVNVU#90307594:
- Multiple vulnerabilities in Mitsubishi Electoric FA Engineering Software
- 2020/06/23 JVNVU#91424496:
- Mitsubishi Electric MELSEC iQ-R, iQ-F, Q, L, and FX series vulnerable to cleartext transmission of sensitive information
- 2020/04/10 JVNVU#99911229:
- Installers of Multiple Trend Micro Products may insecurely load Dynamic Link Libraries
- 2020/04/06 JVNVU#93266623:
- Trend Micro Password Manager may insecurely load Dynamic Link Libraries
- 2020/03/30 JVNVU#91553662:
- Denial-of-service (DoS) vulnerability in Mitsubishi Electric MELSOFT transmission port
- 2020/03/30 JVNVU#99396686:
- A vulnerability in TOYOTA MOTOR's DCU (Display Control Unit)
- 2020/03/18 JVNVU#98100897:[Critical]
- Multiple vulnerabilities in Trend Micro Worry-Free Business Security
- 2020/03/18 JVNVU#91632701:[Critical]
- Multiple vulnerabilities in Trend Micro Apex One and OfficeScan
- 2020/03/12 JVNVU#99239584:
- Rowhammer attacks for TRR equipped DDR4 memory systems
2019
- 2019/11/26 JVNVU#94282488:
- Multiple vulnerabilities in multiple Trend Micro products
- 2019/11/11 JVNVU#91935870:
- Multiple vulnerabilities in Trend Micro Anti-Threat Toolkit (ATTK)
- 2019/11/08 JVNVU#91743132:
- Multiple Trend Micro products vulnerable to directory traversal
- 2019/11/05 JVNVU#90577675:
- Trend Micro Apex One vulnerable to command injection
- 2019/10/29 JVNVU#96213168:
- Trend Micro OfficeScan vulnerable to directory traversal
- 2019/10/25 JVNVU#99059651:
- Multiple Trend Micro products vulnerable to XML external entity injection (XXE)
- 2019/10/01 JVNVU#94678942:
- FON routers may behave as an open resolver
- 2019/09/10 JVNVU#94051551:
- Multiple Trend Micro products vulnerable to directory traversal
- 2019/08/07 JVNVU#97511331:
- Multiple vulnerabilities in multiple Canon digital cameras
- 2019/08/07 JVNVU#93628467:
- WonderCMS vulnerable to directory traversal
- 2019/03/01 JVNVU#95147316:
- Multiple vulnerabilities in Trend Micro ScanMail for Exchange
- 2019/03/01 JVNVU#97891221:
- Multiple vulnerabilities in Trend Micro Mobile Security
- 2019/03/01 JVNVU#99357827:
- Smart Protection Server vulnerable to OS command injection
- 2019/03/01 JVNVU#91054129:
- Multiple vulnerabilities in Trend Micro OfficeScan
2018
- 2018/11/16 JVNVU#91640357:
- みずほ銀行 みずほダイレクトアプリ for Android fails to verify SSL server certificates
- 2018/11/07 JVNVU#98026636:
- Multiple vulnerabilities in LogonTracer
- 2018/01/30 JVNVU#95587881:
- Deep Discovery Email Inspector vulnerable to arbitrary code execution
- 2018/01/16 JVNVU#95303354:
- Multiple vulnerabilities in Deep Discovery Email Inspector
- 2018/01/16 JVNVU#91290407:
- Trend Micro Control Manager vulnerable to SQL injection
2017
- 2017/12/26 JVNVU#98736894:
- Multiple vulnerabilities in InterScan Messaging Security Virtual Appliance
- 2017/12/08 JVNVU#95124098:
- Fluentd vulenrable to escape sequence injection
- 2017/11/27 JVNVU#94198685:
- QND Advance/Standard vulnerable to directory traversal
- 2017/11/14 JVNVU#94371484:
- Packetbeat vulnerable to denial-of-service (DoS)
- 2017/11/01 JVNVU#94207433:
- Multiple vulnerabilities in Trend Micro Control Manager
- 2017/10/24 JVNVU#93703434:
- Memory corruption vulnerability in Rakuraku Hagaki and Rakuraku Hagaki Select for Ichitaro
- 2017/10/16 JVNVU#91625548:
- AssetView and AssetView PLATINUM contain multiple vulnerabilities
- 2017/09/25 JVNVU#90916766:
- jwt-scala fails to verify token signatures
- 2017/09/20 JVNVU#90447827:
- InterScan Web Security Virtual Appliance vulnerable to code injection
- 2017/09/20 JVNVU#93240386:
- Multiple vulnerabilities in ServerProtect for Linux
- 2017/08/01 JVNVU#91587298:
- Multiple vulnerabilities in MaLion
- 2017/07/20 JVNVU#98807587:
- gSOAP vulnerable to stack-based buffer overflow
- 2017/07/14 JVNVU#93377948:
- Multiple vulnerabilities in "File Transfer Web Service" of AssetView for MacOS
- 2017/02/27 JVNVU#98045645:
- Ichitaro series vulnerable to heap-based buffer overflow
- 2017/01/19 JVNVU#91417143:
- Multiple vulnerabilities in GigaCC OFFICE
2016
- 2016/12/06 JVNVU#92900492:
- 三菱東京UFJ銀行 for Android vulnerable to SSL/TLS downgrade attack
- 2016/11/29 JVNVU#96435227:
- Multiple SONY network cameras vulnerable to sensitive information disclosure
- 2016/07/01 JVNVU#95113461:
- ManageEngine Password Manager Pro vulnerable to cross-site request forgery
- 2016/05/19 JVNVU#97339542:
- SaAT Netizen fails to properly verify downloaded installation and update files
- 2016/05/16 JVNVU#90405898:
- ManageEngine Password Manager Pro fails to restrict access permissions
- 2016/05/16 JVNVU#92116866:[Critical]
- Keitai Kit for Movable Type vulnerable to OS command injection