Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 24, 2025, 6:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
91 5.3 警告
Network 		Moodle
Fedora Project		 Moodle
Fedora 		Moodle の Moodle 等複数ベンダの製品における脆弱性 New CWE-284
CWE-noinfo
CVE-2024-25980 2025-01-24 11:54 2024-02-19 Show GitHub Exploit DB Packet Storm
92 7.8 重要
Local 		PHOENIX CONTACT charx sec-3150 ファームウェア
charx sec-3100 ファームウェア
charx sec-3000 ファームウェア
charx sec-3050 ファームウェア 		複数の PHOENIX CONTACT 製品における入力確認に関する脆弱性 New CWE-20
不適切な入力確認 		CVE-2024-25999 2025-01-24 11:54 2024-03-12 Show GitHub Exploit DB Packet Storm
93 7.5 重要
Network 		PHOENIX CONTACT charx sec-3150 ファームウェア
charx sec-3100 ファームウェア
charx sec-3000 ファームウェア
charx sec-3050 ファームウェア 		複数の PHOENIX CONTACT 製品における初期化されていないポインタのアクセスに関する脆弱性 New CWE-824
初期化されていないポインタのアクセス 		CVE-2024-26004 2025-01-24 11:54 2024-03-12 Show GitHub Exploit DB Packet Storm
94 8.5 重要
Network 		Pterodactyl Wings Pterodactyl の Wings におけるパストラバーサルの脆弱性 New CWE-22
CWE-22
CWE-362
CWE-362
CWE-363
CVE-2024-27102 2025-01-24 11:54 2024-03-13 Show GitHub Exploit DB Packet Storm
95 7 重要
Network 		PHOENIX CONTACT charx sec-3150 ファームウェア
charx sec-3100 ファームウェア
charx sec-3000 ファームウェア
charx sec-3050 ファームウェア 		複数の PHOENIX CONTACT 製品における重要な情報の平文での送信に関する脆弱性 New CWE-319
重要な情報の平文での送信 		CVE-2024-28134 2025-01-24 11:54 2024-05-14 Show GitHub Exploit DB Packet Storm
96 7.8 重要
Local 		PHOENIX CONTACT charx sec-3150 ファームウェア
charx sec-3100 ファームウェア
charx sec-3000 ファームウェア
charx sec-3050 ファームウェア 		複数の PHOENIX CONTACT 製品における Time-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 New CWE-367
Time-of-check Time-of-use (TOCTOU) 競合状態 		CVE-2024-28137 2025-01-24 11:54 2024-05-14 Show GitHub Exploit DB Packet Storm
97 5.4 警告
Network 		themelooks enter addons themelooks の WordPress 用 enter addons におけるクロスサイトスクリプティングの脆弱性 New CWE-79
CWE-79
CVE-2024-47625 2025-01-24 11:54 2024-10-5 Show GitHub Exploit DB Packet Storm
98 7.2 重要
Network 		GLPI-PROJECT.ORG GLPI GLPI-PROJECT.ORG の GLPI における認証に関する脆弱性 New CWE-287
不適切な認証 		CVE-2024-47761 2025-01-24 11:54 2024-12-11 Show GitHub Exploit DB Packet Storm
99 9.8 緊急
Network 		Aviatrix Controller Aviatrix の Controller における OS コマンドインジェクションの脆弱性 New CWE-78
CWE-78
CVE-2024-50603 2025-01-24 11:54 2024-10-27 Show GitHub Exploit DB Packet Storm
100 9.8 緊急
Network 		ZyXEL NAS 326 ファームウェア
NAS 542 ファームウェア 		ZyXEL の NAS 326 ファームウェアおよび NAS 542 ファームウェアにおける OS コマンドインジェクションの脆弱性 New CWE-78
OSコマンド・インジェクション 		CVE-2024-6342 2025-01-24 11:54 2024-09-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 25, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
721 - - - In the Linux kernel, the following vulnerability has been resolved: exfat: fix the new buffer was not zeroed before writing Before writing, if a buffer_head marked as new, its data must be zeroed, … - CVE-2024-57943 2025-01-21 22:15 2025-01-21 Show GitHub Exploit DB Packet Storm
722 - - - In the Linux kernel, the following vulnerability has been resolved: net: stmmac: dwmac-tegra: Read iommu stream id from device tree Nvidia's Tegra MGBE controllers require the IOMMU "Stream ID" (SI… - CVE-2025-21663 2025-01-21 22:15 2025-01-21 Show GitHub Exploit DB Packet Storm
723 - - - In the Linux kernel, the following vulnerability has been resolved: sched_ext: Replace rq_lock() to raw_spin_rq_lock() in scx_ops_bypass() scx_ops_bypass() iterates all CPUs to re-enqueue all the s… - CVE-2025-21657 2025-01-21 22:15 2025-01-21 Show GitHub Exploit DB Packet Storm
724 - - - In the Linux kernel, the following vulnerability has been resolved: virtio-blk: don't keep queue frozen during system suspend Commit 4ce6e2db00de ("virtio-blk: Ensure no requests in virtqueues befo… - CVE-2024-57946 2025-01-21 22:15 2025-01-21 Show GitHub Exploit DB Packet Storm
725 - - - In the Linux kernel, the following vulnerability has been resolved: riscv: mm: Fix the out of bound issue of vmemmap address In sparse vmemmap model, the virtual address of vmemmap is calculated as… - CVE-2024-57945 2025-01-21 22:15 2025-01-21 Show GitHub Exploit DB Packet Storm
726 - - - In the Linux kernel, the following vulnerability has been resolved: netfs: Fix ceph copy to cache on write-begin At the end of netfs_unlock_read_folio() in which folios are marked appropriately for… - CVE-2024-57942 2025-01-21 22:15 2025-01-21 Show GitHub Exploit DB Packet Storm
727 - - - In the Linux kernel, the following vulnerability has been resolved: netfs: Fix the (non-)cancellation of copy when cache is temporarily disabled When the caching for a cookie is temporarily disable… - CVE-2024-57941 2025-01-21 22:15 2025-01-21 Show GitHub Exploit DB Packet Storm
728 - - - Input validation vulnerability in Qualifio's Wheel of Fortune. This vulnerability allows an attacker to modify an email to contain the ‘+’ symbol to access the application and win prizes as many time… CWE-22
Path Traversal 		CVE-2025-0615 2025-01-21 21:15 2025-01-21 Show GitHub Exploit DB Packet Storm
729 - - - Input validation vulnerability in Qualifio's Wheel of Fortune. This vulnerability could allow an attacker to modify a single email to contain upper and lower case characters in order to access the ap… CWE-22
Path Traversal 		CVE-2025-0614 2025-01-21 21:15 2025-01-21 Show GitHub Exploit DB Packet Storm
730 - - - In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt_re: Fix max SGEs for the Work Request Gen P7 supports up to 13 SGEs for now. WQE software structure can hold only 6 now… - CVE-2024-57936 2025-01-21 21:15 2025-01-21 Show GitHub Exploit DB Packet Storm