Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1041 9.8 緊急
Network 		SolarWinds security event manager SolarWinds の security event manager における信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2024-0692 2025-01-22 15:07 2024-03-1 Show GitHub Exploit DB Packet Storm
1042 5.4 警告
Network 		bdthemes element pack bdthemes の WordPress 用 element pack におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1426 2025-01-22 15:07 2024-04-18 Show GitHub Exploit DB Packet Storm
1043 5.4 警告
Network 		exclusiveaddons exclusive addons for elementor exclusiveaddons の WordPress 用 exclusive addons for elementor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-3489 2025-01-22 14:42 2024-05-2 Show GitHub Exploit DB Packet Storm
1044 5.4 警告
Network 		Themeisle otter blocks ThemeIsle の WordPress 用 otter blocks におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-3725 2025-01-22 14:42 2024-05-2 Show GitHub Exploit DB Packet Storm
1045 7.1 重要
Network 		cvat computer vision annotation tool cvat の computer vision annotation tool におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
CWE-352
CVE-2024-37306 2025-01-22 14:42 2024-06-13 Show GitHub Exploit DB Packet Storm
1046 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. ac500 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の ac500 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-3905 2025-01-22 14:42 2024-04-17 Show GitHub Exploit DB Packet Storm
1047 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. ac500 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の ac500 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-3910 2025-01-22 14:42 2024-04-17 Show GitHub Exploit DB Packet Storm
1048 5.4 警告
Network 		StylemixThemes MasterStudy LMS StylemixThemes の WordPress 用 MasterStudy LMS における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2024-3942 2025-01-22 14:42 2024-05-2 Show GitHub Exploit DB Packet Storm
1049 7.5 重要
Network 		マイクロフォーカス株式会社 imanager マイクロフォーカス株式会社の imanager におけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
CWE-918
CVE-2024-3970 2025-01-22 14:42 2024-05-15 Show GitHub Exploit DB Packet Storm
1050 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. AC8 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の AC8 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-4066 2025-01-22 14:42 2024-04-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 25, 2025, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1411 - - - Improper access control in the IOMMU may allow a privileged attacker to bypass RMP checks, potentially leading to a loss of guest memory integrity. - CVE-2023-20581 2025-02-12 07:15 2025-02-12 Show GitHub Exploit DB Packet Storm
1412 - - - Improper access control in the fTPM driver in the trusted OS could allow a privileged attacker to corrupt system memory, potentially leading to loss of integrity, confidentiality, or availability. - CVE-2023-20515 2025-02-12 07:15 2025-02-12 Show GitHub Exploit DB Packet Storm
1413 - - - The Platform component of Mitel OpenScape 4000 and OpenScape 4000 Manager V11 R0.22.0 through V11 R0.22.1, V10 R1.54.0 through V10 R1.54.1, and V10 R1.42.6 and earlier could allow an unauthenticated … - CVE-2025-23094 2025-02-12 07:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1414 - - - NetMod VPN Client 5.3.1 is vulnerable to DLL injection, allowing an attacker to execute arbitrary code by placing a malicious DLL in a directory where the application loads dependencies. This vulnera… - CVE-2024-57426 2025-02-12 07:15 2025-02-7 Show GitHub Exploit DB Packet Storm
1415 8.8 HIGH
Network 		microsoft edge_chromium Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2025-21283 2025-02-12 07:14 2025-02-7 Show GitHub Exploit DB Packet Storm
1416 8.8 HIGH
Network 		microsoft edge_chromium Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2025-21342 2025-02-12 07:13 2025-02-7 Show GitHub Exploit DB Packet Storm
1417 4.3 MEDIUM
Network 		microsoft edge_chromium Microsoft Edge (Chromium-based) Spoofing Vulnerability NVD-CWE-noinfo
CVE-2025-21404 2025-02-12 07:00 2025-02-7 Show GitHub Exploit DB Packet Storm
1418 - - - Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-12315. Reason: This candidate is a reservation duplicate of CVE-2024-12315. Notes: All CVE users should reference … - CVE-2025-0989 2025-02-12 06:15 2025-02-12 Show GitHub Exploit DB Packet Storm
1419 - - - Improper input validation within the AmdPspP2CmboxV2 driver may allow a privileged attacker to overwrite SMRAM, leading to arbitrary code execution. - CVE-2024-21925 2025-02-12 06:15 2025-02-12 Show GitHub Exploit DB Packet Storm
1420 - - - SMM callout vulnerability within the AmdPlatformRasSspSmm driver could allow a ring 0 attacker to modify boot services handlers, potentially resulting in arbitrary code execution. - CVE-2024-21924 2025-02-12 06:15 2025-02-12 Show GitHub Exploit DB Packet Storm