Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 16, 2025, 6:05 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における脆弱性 New CWE-noinfo
情報不足 		CVE-2024-56786 2025-01-16 18:00 2024-11-1 Show GitHub Exploit DB Packet Storm
2 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における脆弱性 New CWE-noinfo
情報不足 		CVE-2024-56771 2025-01-16 17:58 2024-10-21 Show GitHub Exploit DB Packet Storm
3 5.5 警告
Local 		マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows 10
Microsoft Windows Server&… 		Windows Remote Access Connection Manager の情報漏えいの脆弱性 New CWE-125
CWE-126
CVE-2024-28900 2025-01-16 17:57 2024-04-9 Show GitHub Exploit DB Packet Storm
4 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における脆弱性 New CWE-noinfo
情報不足 		CVE-2024-56770 2025-01-16 17:57 2024-12-11 Show GitHub Exploit DB Packet Storm
5 6.8 警告
Physics 		マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2008
Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Window… 		Windows rndismp6.sys のリモートでコードが実行される脆弱性 New CWE-822
CWE-noinfo
CVE-2024-26252 2025-01-16 17:55 2024-04-9 Show GitHub Exploit DB Packet Storm
6 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における脆弱性 New CWE-noinfo
情報不足 		CVE-2024-56718 2025-01-16 17:54 2024-12-15 Show GitHub Exploit DB Packet Storm
7 7.5 重要
Network 		マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2008
Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Window… 		Windows Kerberos の特権の昇格の脆弱性 New CWE-303
CWE-noinfo
CVE-2024-26248 2025-01-16 17:53 2024-04-9 Show GitHub Exploit DB Packet Storm
8 7.8 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における二重解放に関する脆弱性 New CWE-415
二重解放 		CVE-2024-53213 2025-01-16 17:52 2024-11-24 Show GitHub Exploit DB Packet Storm
9 7.8 重要
Local 		マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2008
Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Window… 		Win32k の特権の昇格の脆弱性 New CWE-416
CWE-noinfo
CVE-2024-26241 2025-01-16 17:51 2024-04-9 Show GitHub Exploit DB Packet Storm
10 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel におけるリソースのロックに関する脆弱性 New CWE-667
不適切なロック 		CVE-2024-38589 2025-01-16 17:50 2024-05-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 16, 2025, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
421 - - - Cross-Site Request Forgery (CSRF), Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation Mediawiki - DataTransfer Extension… New - CVE-2025-23081 2025-01-15 02:15 2025-01-15 Show GitHub Exploit DB Packet Storm
422 - - - A vulnerability was found in SourceCodester Task Reminder System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Maintenance Sect… New CWE-79
CWE-94
Cross-site Scripting
Code Injection 		CVE-2025-0464 2025-01-15 02:15 2025-01-15 Show GitHub Exploit DB Packet Storm
423 - - - A vulnerability was found in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6.0.0. It has been classified as critical. Affected is an unknown function of the file /crm/weixinmp/index.p… New CWE-284
CWE-434
Improper Access Control
 Unrestricted Upload of File with Dangerous Type  		CVE-2025-0463 2025-01-15 02:15 2025-01-15 Show GitHub Exploit DB Packet Storm
424 - - - A vulnerability was found in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6.0.0 and classified as critical. This issue affects some unknown processing of the file /crm/weixinmp/index… New CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-0462 2025-01-15 02:15 2025-01-15 Show GitHub Exploit DB Packet Storm
425 - - - A stored cross-site scripting (XSS) vulnerability in Arcadyan Meteor 2 CPE FG360 Firmware ETV2.10 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload. New - CVE-2024-53563 2025-01-15 02:15 2025-01-15 Show GitHub Exploit DB Packet Storm
426 - - - A remote code execution (RCE) vulnerability in Arcadyan Meteor 2 CPE FG360 Firmware ETV2.10 allows attackers to execute arbitrary code via a crafted request. New - CVE-2024-53561 2025-01-15 02:15 2025-01-15 Show GitHub Exploit DB Packet Storm
427 6.2 MEDIUM
Local 		- - IBM MQ 9.3 LTS, 9.3 CD, 9.4 LTS, and 9.4 CD web console could allow a local user to obtain sensitive information when a detailed technical error message is returned. New CWE-209
Information Exposure Through an Error Message 		CVE-2024-52898 2025-01-15 02:15 2025-01-15 Show GitHub Exploit DB Packet Storm
428 - - - Path Traversal in Ivanti Avalanche before version 6.4.7 allows a remote unauthenticated attacker to bypass authentication. This CVE addresses incomplete fixes from CVE-2024-47010. New CWE-22
CWE-288
Path Traversal
Authentication Bypass Using an Alternate Path or Channel 		CVE-2024-13181 2025-01-15 02:15 2025-01-15 Show GitHub Exploit DB Packet Storm
429 - - - Path Traversal in Ivanti Avalanche before version 6.4.7 allows a remote unauthenticated attacker to leak sensitive information. This CVE addresses incomplete fixes from CVE-2024-47011. New CWE-22
Path Traversal 		CVE-2024-13180 2025-01-15 02:15 2025-01-15 Show GitHub Exploit DB Packet Storm
430 - - - Path Traversal in Ivanti Avalanche before version 6.4.7 allows a remote unauthenticated attacker to bypass authentication. New CWE-22
CWE-288
Path Traversal
Authentication Bypass Using an Alternate Path or Channel 		CVE-2024-13179 2025-01-15 02:15 2025-01-15 Show GitHub Exploit DB Packet Storm