Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1441 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2023-52865 2025-01-17 20:40 2023-10-18 Show GitHub Exploit DB Packet Storm
1442 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2021-47202 2025-01-17 20:37 2021-11-5 Show GitHub Exploit DB Packet Storm
1443 8.8 重要
Network 		Google Google Chrome Google の Google Chrome における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2025-0437 2025-01-17 19:41 2025-01-14 Show GitHub Exploit DB Packet Storm
1444 9.8 緊急
Network 		Apache Software Foundation hertzbeat Apache Software Foundation の hertzbeat における信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
CWE-502
CVE-2023-51389 2025-01-17 19:41 2023-12-18 Show GitHub Exploit DB Packet Storm
1445 8.5 重要
Network 		BoldGrid W3 Total Cache BoldGrid の WordPress 用 W3 Total Cache における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2024-12365 2025-01-17 19:41 2024-12-9 Show GitHub Exploit DB Packet Storm
1446 9.8 緊急
Network 		Ivanti Avalanche Ivanti の Avalanche におけるパストラバーサルの脆弱性 CWE-22
CWE-22
CWE-288
CVE-2024-13181 2025-01-17 19:41 2025-01-14 Show GitHub Exploit DB Packet Storm
1447 6.4 警告
Network 		s-sols seraphinite accelerator s-sols の WordPress 用 seraphinite accelerator におけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2024-1568 2025-01-17 19:41 2024-02-28 Show GitHub Exploit DB Packet Storm
1448 7.2 重要
Network 		zestard admin side data storage for contact form 7 zestard の WordPress 用 admin side data storage for contact form 7 における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-1776 2025-01-17 19:41 2024-02-23 Show GitHub Exploit DB Packet Storm
1449 8.8 重要
Network 		Progress Software Corporation telerik reporting Progress Software Corporation の telerik reporting における信頼できないデータのデシリアライゼーションに関する脆弱性 CWE-502
CWE-502
CVE-2024-1856 2025-01-17 19:40 2024-03-20 Show GitHub Exploit DB Packet Storm
1450 9.1 緊急
Network 		WPvivid Migration
 Backup
 Staging 		WPvivid の WordPress 用 Migration, Backup, Staging における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-1981 2025-01-17 19:40 2024-02-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 22, 2025, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
891 - - - A heap-based memory vulnerability has been identified in the Postscript interpreter in various Lexmark devices. The vulnerability can be leveraged by an attacker to execute arbitrary code. - CVE-2024-11345 2025-02-14 04:15 2025-02-14 Show GitHub Exploit DB Packet Storm
892 - - - A type confusion vulnerability has been identified in the Postscript interpreter in various Lexmark devices. The vulnerability can be leveraged by an attacker to execute arbitrary code. - CVE-2024-11344 2025-02-14 04:15 2025-02-14 Show GitHub Exploit DB Packet Storm
893 - - - An issue in MaysWind ezBookkeeping 0.7.0 allows a remote attacker to escalate privileges via the lack of rate limiting. - CVE-2024-57603 2025-02-14 04:15 2025-02-13 Show GitHub Exploit DB Packet Storm
894 5.4 MEDIUM
Network 		- - A flaw was found in npm-serialize-javascript. The vulnerability occurs because the serialize-javascript module does not properly sanitize certain inputs, such as regex or other JavaScript object type… - CVE-2024-11831 2025-02-14 04:15 2025-02-11 Show GitHub Exploit DB Packet Storm
895 - - - The SecureDrop Client is a desktop application for journalists to communicate with sources and work with submissions on the SecureDrop Workstation. Prior to versions 0.14.1 and 1.0.1, an attacker who… CWE-22
Path Traversal 		CVE-2025-24889 2025-02-14 03:18 2025-02-14 Show GitHub Exploit DB Packet Storm
896 - - - The SecureDrop Client is a desktop application for journalists to communicate with sources and work with submissions on the SecureDrop Workstation. Prior to version 0.14.1, a malicious SecureDrop Ser… CWE-22
Path Traversal 		CVE-2025-24888 2025-02-14 03:18 2025-02-14 Show GitHub Exploit DB Packet Storm
897 - - - Buffer overflow vulnerability in Digital China DCBC Gateway 200-2.1.1 due to the lack of length verification, which is related to the configuration of static NAT rules. Attackers who successfully exp… - CVE-2025-25529 2025-02-14 03:18 2025-02-12 Show GitHub Exploit DB Packet Storm
898 - - - Multiple buffer overflow vulnerabilities in Wavlink WL-WN575A3 RPT75A3.V4300, which are caused by not performing strict length checks on user-controlled data. By successfully exploiting the vulnerabi… - CVE-2025-25528 2025-02-14 03:18 2025-02-12 Show GitHub Exploit DB Packet Storm
899 - - - Buffer overflow vulnerability in Ruijie RG-NBR2600S Gateway 10.3(4b12) due to the lack of length verification, which is related to the configuration of source address NAT rules. Attackers who success… - CVE-2025-25527 2025-02-14 03:18 2025-02-12 Show GitHub Exploit DB Packet Storm
900 - - - Buffer overflow vulnerability in Mercury MIPC552W Camera v1.0 due to the lack of length verification, which is related to the configuration of the PPTP server. Attackers who successfully exploit this… - CVE-2025-25526 2025-02-14 03:18 2025-02-12 Show GitHub Exploit DB Packet Storm