Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 11, 2025, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
121 6.6 警告
Physics 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows Server 2022
Microsoft Windows 10
Microsoft Windows 11
Microsoft Windows Server&… 		ワイヤレス広域ネットワーク サービス (WwanSvc) の特権昇格の脆弱性 New CWE-122
CWE-noinfo
CVE-2024-49081 2025-01-10 14:20 2024-12-10 Show GitHub Exploit DB Packet Storm
122 5.5 警告
Local 		マイクロソフト Microsoft SharePoint Server
Microsoft 365 Apps
Microsoft Word
Microsoft SharePoint Enterprise Server
Microsoft Office 		Microsoft Office のリモート コードが実行される脆弱性 New CWE-125
CWE-noinfo
CVE-2024-49065 2025-01-10 14:17 2024-12-10 Show GitHub Exploit DB Packet Storm
123 8.4 重要
Local 		マイクロソフト Microsoft/Muzic Muzic のリモートでコードが実行される脆弱性 New CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2024-49063 2025-01-10 14:11 2024-12-10 Show GitHub Exploit DB Packet Storm
124 5.5 警告
Local 		マイクロソフト Microsoft Intune Mobile Application Management Microsoft Intune for Android モバイル アプリケーション管理の改ざんの脆弱性 New CWE-284
CWE-noinfo
CVE-2024-30059 2025-01-10 13:49 2024-05-14 Show GitHub Exploit DB Packet Storm
125 5.4 警告
Network 		マイクロソフト Azure Migrate Azure Migrate のクロスサイト スクリプティングの脆弱性 New CWE-79
CWE-79
CVE-2024-30053 2025-01-10 13:43 2024-05-14 Show GitHub Exploit DB Packet Storm
126 3.3
Local 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 11
Microsoft Windows Server 2016
Microsoft Windows Server 2012
Microsoft Window… 		Windows Remote Access Connection Manager の情報漏えいの脆弱性 New CWE-125
CWE-noinfo
CVE-2024-26217 2025-01-10 12:30 2024-04-9 Show GitHub Exploit DB Packet Storm
127 7.2 重要
Network 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows Server 2019
Microsoft Windows Server 2016
Microsoft Windows Server 2012 		DHCP Server Service のリモートでコードが実行される脆弱性 New CWE-122
CWE-noinfo
CVE-2024-26202 2025-01-10 12:26 2024-04-9 Show GitHub Exploit DB Packet Storm
128 6.4 警告
Adjacent 		マイクロソフト Azure Migrate Azure Migrate のリモートでコードが実行される脆弱性 New CWE-285
CWE-noinfo
CVE-2024-26193 2025-01-10 12:22 2024-04-9 Show GitHub Exploit DB Packet Storm
129 7.8 重要
Local 		マイクロソフト Microsoft Windows Server 2008
Microsoft Windows Server 2019
Microsoft Windows 11
Microsoft Windows Server 2016
Microsoft Window… 		Windows 共通ログ ファイル システム ドライバーの特権の昇格の脆弱性 New CWE-125
CWE-noinfo
CVE-2024-30025 2025-01-10 12:20 2024-05-14 Show GitHub Exploit DB Packet Storm
130 7.8 重要
Local 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 11
Microsoft Windows Server 2016
Microsoft Windows Server 2012
Microsoft Window… 		セキュア ブートのセキュリティ機能のバイパスの脆弱性 New CWE-125
CWE-noinfo
CVE-2024-26175 2025-01-10 12:19 2024-04-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 11, 2025, 5:03 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
277201 - opera_software opera_web_browser Opera 6.01, 6.0, and 5.12 allows remote attackers to execute arbitrary JavaScript in the security context of other sites by setting the location of a frame or iframe to a Javascript: URL. NVD-CWE-Other
CVE-2002-0783 2008-09-6 05:28 2002-08-12 Show GitHub Exploit DB Packet Storm
277202 - lysias lidik_webserver Directory traversal vulnerability in Lysias Lidik web server 0.7b allows remote attackers to list directories via an HTTP request with a ... (modified dot dot). NVD-CWE-Other
CVE-2002-0784 2008-09-6 05:28 2002-08-12 Show GitHub Exploit DB Packet Storm
277203 - aol instant_messenger AOL Instant Messenger (AIM) allows remote attackers to cause a denial of service (crash) via an "AddBuddy" link with the ScreenName parameter set to a large number of comma-separated values, possibly… NVD-CWE-Other
CVE-2002-0785 2008-09-6 05:28 2002-08-12 Show GitHub Exploit DB Packet Storm
277204 - critical_path injoin_directory_server iCon administrative web server for Critical Path inJoin Directory Server 4.0 allows authenticated inJoin administrators to read arbitrary files by specifying the target file in the LOG parameter. NVD-CWE-Other
CVE-2002-0786 2008-09-6 05:28 2002-08-12 Show GitHub Exploit DB Packet Storm
277205 - critical_path injoin_directory_server Cross-site scripting vulnerabilities in iCon administrative web server for Critical Path inJoin Directory Server 4.0 allow remote attackers to execute script as the administrator via administrator UR… NVD-CWE-Other
CVE-2002-0787 2008-09-6 05:28 2002-08-12 Show GitHub Exploit DB Packet Storm
277206 - mnogosearch mnogosearch Buffer overflow in search.cgi in mnoGoSearch 3.1.19 and earlier allows remote attackers to execute arbitrary code via a long query (q) parameter. NVD-CWE-Other
CVE-2002-0789 2008-09-6 05:28 2002-08-12 Show GitHub Exploit DB Packet Storm
277207 - novell netware Novell Netware FTP server NWFTPD before 5.02r allows remote attackers to cause a denial of service (CPU consumption) via a connection to the server followed by a carriage return, and possibly other i… NVD-CWE-Other
CVE-2002-0791 2008-09-6 05:28 2002-08-12 Show GitHub Exploit DB Packet Storm
277208 - cisco webns
content_services_switch_11000 		The web management interface for Cisco Content Service Switch (CSS) 11000 switches allows remote attackers to cause a denial of service (soft reset) via (1) an HTTPS POST request, or (2) malformed XM… NVD-CWE-Other
CVE-2002-0792 2008-09-6 05:28 2002-08-12 Show GitHub Exploit DB Packet Storm
277209 - freebsd freebsd The accept_filter mechanism in FreeBSD 4 through 4.5 does not properly remove entries from the incomplete listen queue when adding a syncache, which allows remote attackers to cause a denial of servi… NVD-CWE-Other
CVE-2002-0794 2008-09-6 05:28 2002-08-12 Show GitHub Exploit DB Packet Storm
277210 - freebsd freebsd The rc system startup script for FreeBSD 4 through 4.5 allows local users to delete arbitrary files via a symlink attack on X Windows lock files. NVD-CWE-Other
CVE-2002-0795 2008-09-6 05:28 2002-08-12 Show GitHub Exploit DB Packet Storm