Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1051 9.8 緊急
Network 		netentsec application security gateway netentsec の application security gateway における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-2021 2025-01-22 13:39 2024-03-1 Show GitHub Exploit DB Packet Storm
1052 7.5 重要
Network 		Plone Foundation Plone Plone Foundation の Plone における不適切なデフォルトパーミッションに関する脆弱性 CWE-276
CWE-276
CVE-2024-22889 2025-01-22 13:39 2024-03-6 Show GitHub Exploit DB Packet Storm
1053 5.3 警告
Network 		WonderCMS WonderCMS WonderCMS におけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
CWE-918
CVE-2024-27563 2025-01-22 13:39 2024-03-5 Show GitHub Exploit DB Packet Storm
1054 6.5 警告
Adjacent 		FRRouting Project FRRouting FRRouting Project の FRRouting における脆弱性 CWE-noinfo
情報不足 		CVE-2024-27913 2025-01-22 13:39 2024-02-28 Show GitHub Exploit DB Packet Storm
1055 9.8 緊急
Network 		XWiki xwiki XWiki の xwiki におけるコードインジェクションの脆弱性 CWE-94
CWE-95
CVE-2024-31982 2025-01-22 13:39 2024-04-10 Show GitHub Exploit DB Packet Storm
1056 9.8 緊急
Network 		マイクロフォーカス株式会社 imanager マイクロフォーカス株式会社の imanager におけるパストラバーサルの脆弱性 CWE-22
CWE-22
CVE-2024-3484 2025-01-22 13:38 2024-05-15 Show GitHub Exploit DB Packet Storm
1057 7.8 重要
Local 		アドビシステムズ Adobe Substance 3D Designer アドビの Adobe Substance 3D Designer における境界外書き込みに関する脆弱性 CWE-122
CWE-787
CVE-2025-21139 2025-01-22 12:25 2025-01-14 Show GitHub Exploit DB Packet Storm
1058 7.8 重要
Local 		IBM IBM VIOS
IBM AIX 		IBM の IBM VIOS および IBM AIX における OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2024-47115 2025-01-22 12:18 2024-12-5 Show GitHub Exploit DB Packet Storm
1059 7.8 重要
Local 		アドビシステムズ Adobe Substance 3D Designer アドビの Adobe Substance 3D Designer における境界外書き込みに関する脆弱性 CWE-122
CWE-787
CVE-2025-21137 2025-01-22 12:11 2025-01-14 Show GitHub Exploit DB Packet Storm
1060 7.5 重要
Network 		株式会社アイ・オー・データ機器 UD-LT2 ファームウェア アイ・オー・データ製ルーターUD-LT2における複数の脆弱性 CWE-78
CWE-Other
CVE-2025-20617
CVE-2025-22450
CVE-2025-23237 		2025-01-22 12:08 2025-01-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 2, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
141 5.5 MEDIUM
Local 		apple iphone_os
visionos
macos
tvos
ipados 		The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4, macOS Ventura 13.7.3, macOS Sonoma 14.7.3, visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, tvOS 18.3. P… Update NVD-CWE-noinfo
CVE-2025-24127 2025-01-31 23:42 2025-01-28 Show GitHub Exploit DB Packet Storm
142 7.5 HIGH
Network 		apple macos This issue was addressed by improved management of object lifetimes. This issue is fixed in macOS Ventura 13.7.3, macOS Sequoia 15.3, macOS Sonoma 14.7.3. An attacker may be able to cause unexpected … Update NVD-CWE-noinfo
CVE-2025-24120 2025-01-31 23:42 2025-01-28 Show GitHub Exploit DB Packet Storm
143 4.3 MEDIUM
Network 		apple macos
ipados
iphone_os
safari 		The issue was addressed by adding additional logic. This issue is fixed in macOS Sequoia 15.3, Safari 18.3, iOS 18.3 and iPadOS 18.3. Visiting a malicious website may lead to address bar spoofing. Update NVD-CWE-noinfo
CVE-2025-24128 2025-01-31 23:41 2025-01-28 Show GitHub Exploit DB Packet Storm
144 7.5 HIGH
Network 		apple macos
ipados
iphone_os
visionos
watchos
tvos 		A type confusion issue was addressed with improved checks. This issue is fixed in visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. A remote attacker may cause an u… Update CWE-843
Type Confusion 		CVE-2025-24129 2025-01-31 23:40 2025-01-28 Show GitHub Exploit DB Packet Storm
145 5.5 MEDIUM
Local 		apple macos
iphone_os
visionos
watchos
ipados 		This issue was addressed with improved redaction of sensitive information. This issue is fixed in iPadOS 17.7.4, visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3. An app may b… Update CWE-922
 Insecure Storage of Sensitive Information 		CVE-2025-24117 2025-01-31 23:40 2025-01-28 Show GitHub Exploit DB Packet Storm
146 - - - Reflected Cross-Site Scripting (XSS) in TeamCal Neo, version 3.8.2. This allows an attacker to execute malicious JavaScript code, after injecting code via the ‘abs’ parameter in ‘/teamcal/src/index.p… New CWE-79
Cross-site Scripting 		CVE-2025-0930 2025-01-31 23:15 2025-01-31 Show GitHub Exploit DB Packet Storm
147 - - - SQL injection vulnerability in TeamCal Neo, version 3.8.2. This could allow an attacker to retrieve, update and delete all database information by injecting a malicious SQL statement via the ‘abs’ pa… New CWE-89
SQL Injection 		CVE-2025-0929 2025-01-31 23:15 2025-01-31 Show GitHub Exploit DB Packet Storm
148 - - - Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Cyber Protect Cloud Agent (Windows) before build 39378. New CWE-426
 Untrusted Search Path 		CVE-2025-24828 2025-01-31 22:15 2025-01-31 Show GitHub Exploit DB Packet Storm
149 - - - In the Linux kernel, the following vulnerability has been resolved: bpf: Fix bpf_sk_select_reuseport() memory leak As pointed out in the original comment, lookup in sockmap can return a TCP ESTABLI… New - CVE-2025-21683 2025-01-31 21:15 2025-01-31 Show GitHub Exploit DB Packet Storm
150 - - - In the Linux kernel, the following vulnerability has been resolved: eth: bnxt: always recalculate features after XDP clearing, fix null-deref Recalculate features when XDP is detached. Before: #… New - CVE-2025-21682 2025-01-31 21:15 2025-01-31 Show GitHub Exploit DB Packet Storm