Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 24, 2025, 6:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1 9.8 緊急
Network 		HGiga OAKlouds-organization-2.0
OAKlouds-organization-3.0
OAKlouds-webbase-3.0
OAKlouds-webbase-2.0 		複数の HGiga 製品におけるパストラバーサルの脆弱性 New CWE-22
パス・トラバーサル 		CVE-2024-26261 2025-01-24 17:53 2024-02-15 Show GitHub Exploit DB Packet Storm
2 8.8 重要
Network 		MHA Sistemas arMHAzena MHA Sistemas の arMHAzena における SQL インジェクションの脆弱性 New CWE-89
SQLインジェクション 		CVE-2024-2480 2025-01-24 17:48 2024-03-15 Show GitHub Exploit DB Packet Storm
3 6.5 警告
Network 		ZyXEL NWA210AX ファームウェア
nwa50ax ファームウェア
WAX650S ファームウェア
NWA110AX ファームウェア
wax640s-6e ファームウェア
WAX510D ファームウェア
wac500h ファームウェア
wax620d-6e ファームウェア 		複数の ZyXEL 製品における脆弱性 New CWE-269
CWE-noinfo
CVE-2024-1575 2025-01-24 17:36 2024-07-23 Show GitHub Exploit DB Packet Storm
4 8.8 重要
Network 		E-WEBInformationCo. FS-EZViewer(Web) E-WEBInformationCo. の FS-EZViewer(Web) における SQL インジェクションの脆弱性 New CWE-89
SQLインジェクション 		CVE-2024-1523 2025-01-24 17:32 2024-02-15 Show GitHub Exploit DB Packet Storm
5 7.8 重要
Local 		インテル Intel GPA Framework インテルの Intel GPA Framework における脆弱性 New CWE-284
CWE-noinfo
CVE-2023-43748 2025-01-24 17:31 2023-10-12 Show GitHub Exploit DB Packet Storm
6 9.8 緊急
Network 		DELL EMC (旧 EMC Corporation) RecoverPoint for Virtual Machines デルの RecoverPoint for Virtual Machines における OS コマンドインジェクションの脆弱性 New CWE-434
CWE-78
CVE-2024-22426 2025-01-24 17:30 2024-02-16 Show GitHub Exploit DB Packet Storm
7 7.8 重要
Local 		Ivanti Ivanti Application Control Ivanti の Ivanti Application Control における不適切なデフォルトパーミッションに関する脆弱性 New CWE-276
CWE-276
CVE-2024-11598 2025-01-24 17:18 2024-12-11 Show GitHub Exploit DB Packet Storm
8 8.8 重要
Network 		Open-Xchange
Debian
Mozilla Foundation		 Debian GNU/Linux
Open-Xchange AppSuite frontend
Mozilla Thunderbird
Mozilla Firefox 		Mozilla Foundation の Mozilla Firefox 等複数ベンダの製品における脆弱性 New CWE-noinfo
情報不足 		CVE-2024-4367 2025-01-24 17:14 2024-04-29 Show GitHub Exploit DB Packet Storm
9 9.8 緊急
Network 		Pos Tahsil Online Payment System Pos Tahsil の Online Payment System における SQL インジェクションの脆弱性 New CWE-89
SQLインジェクション 		CVE-2023-7081 2025-01-24 17:13 2023-12-22 Show GitHub Exploit DB Packet Storm
10 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性 New CWE-476
NULL ポインタデリファレンス 		CVE-2024-57944 2025-01-24 17:03 2024-12-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 25, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
278411 - gunnar_ritter osh Buffer overflows in osh before 1.7-11 allow local users to execute arbitrary code and bypass shell restrictions via (1) long environment variables or (2) long "file redirections." NVD-CWE-Other
CVE-2003-0452 2008-09-6 05:34 2003-08-7 Show GitHub Exploit DB Packet Storm
278412 - joe_rumsey xgalaga Multiple buffer overflows in xgalaga 2.0.34 and earlier allow local users to gain privileges via a long HOME environment variable. NVD-CWE-Other
CVE-2003-0454 2008-09-6 05:34 2003-08-7 Show GitHub Exploit DB Packet Storm
278413 - hp nonstop_seeview_server_gateway Unknown vulnerability in HP NonStop Server D40.00 through D48.03, and G01.00 through G06.20, allows local users to gain additional privileges. NVD-CWE-Other
CVE-2003-0458 2008-09-6 05:34 2003-08-18 Show GitHub Exploit DB Packet Storm
278414 - michael_c._toren tcptraceroute tcptraceroute 1.4 and earlier does not fully drop privileges after obtaining a file descriptor for capturing packets, which may allow local users to gain access to the descriptor via a separate vulne… NVD-CWE-Other
CVE-2003-0489 2008-09-6 05:34 2003-08-7 Show GitHub Exploit DB Packet Storm
278415 - proftpd_project proftpd SQL injection vulnerability in the PostgreSQL authentication module (mod_sql_postgres) for ProFTPD before 1.2.9rc1 allows remote attackers to execute arbitrary SQL and gain privileges by bypassing au… NVD-CWE-Other
CVE-2003-0500 2008-09-6 05:34 2003-08-7 Show GitHub Exploit DB Packet Storm
278416 - apple safari Apple Safari allows remote attackers to bypass intended cookie access restrictions on a web application via "%2e%2e" (encoded dot dot) directory traversal sequences in a URL, which causes Safari to s… NVD-CWE-Other
CVE-2003-0514 2008-09-6 05:34 2004-04-15 Show GitHub Exploit DB Packet Storm
278417 - daiki_ueno liece_emacs_irc_client The liece Emacs IRC client 2.0+0.20030527 and earlier creates temporary files insecurely, which could allow local users to overwrite arbitrary files as other users. NVD-CWE-Other
CVE-2003-0537 2008-09-6 05:34 2003-08-18 Show GitHub Exploit DB Packet Storm
278418 - sgi irix The DNS callbacks in nsd in SGI IRIX 6.5.x through 6.5.20f, and possibly earlier versions, do not perform sufficient sanity checking, with unknown impact. NVD-CWE-Other
CVE-2003-0573 2008-09-6 05:34 2003-08-18 Show GitHub Exploit DB Packet Storm
278419 - phpgroupware phpgroupware Unknown vulnerability in the Virtual File System (VFS) capability for phpGroupWare 0.9.16preRC and versions before 0.9.14.004 with unknown implications, related to the VFS path being under the web do… NVD-CWE-Other
CVE-2003-0599 2008-09-6 05:34 2003-08-27 Show GitHub Exploit DB Packet Storm
278420 - mozilla bugzilla Multiple cross-site scripting vulnerabilities (XSS) in Bugzilla 2.16.x before 2.16.3 and 2.17.x before 2.17.4 allow remote attackers to insert arbitrary HTML or web script via (1) multiple default Ge… NVD-CWE-Other
CVE-2003-0602 2008-09-6 05:34 2003-08-27 Show GitHub Exploit DB Packet Storm