Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 10, 2025, 6:04 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
141	7.3	重要 Local	Eclipse Foundation	Eclipse OpenJ9	Eclipse Foundation の Eclipse OpenJ9 における境界外読み取りに関する脆弱性 New	CWE-125 CWE-125 CWE-787 CWE-787 CWE-805	CVE-2024-3933	2025-01-10 11:19	2024-05-27	Show	GitHub Exploit DB Packet Storm

142	5.5	警告 Local	マイクロソフト	Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Windows Server 2012 Microsoft Windows Server 2016 Microsoft Window…	Windows Remote Access Connection Manager の情報漏えいの脆弱性 New	CWE-125 CWE-126	CVE-2024-28902	2025-01-10 11:13	2024-04-9	Show	GitHub Exploit DB Packet Storm

143	6.3	警告 Adjacent	マイクロソフト	Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Windows Server 2012 Microsoft Windows Server 2016 Microsoft Window…	セキュアブートのセキュリティ機能のバイパスの脆弱性 New	CWE-121 CWE-noinfo	CVE-2024-28898	2025-01-10 11:11	2024-04-9	Show	GitHub Exploit DB Packet Storm

144	6.8	警告 Physics	マイクロソフト	Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Windows Server 2012 Microsoft Windows Server 2016 Microsoft Window…	Windows rndismp6.sys のリモートでコードが実行される脆弱性 New	CWE-20 CWE-noinfo	CVE-2024-26253	2025-01-10 11:07	2024-04-9	Show	GitHub Exploit DB Packet Storm

145	6.6	警告 Network	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft Windows Server 2022	Windows DNS サーバーのリモートでコードが実行される脆弱性 New	CWE-416 CWE-noinfo	CVE-2024-26233	2025-01-10 11:04	2024-04-9	Show	GitHub Exploit DB Packet Storm

146	6.6	警告 Network	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft Windows Server 2022	Windows DNS サーバーのリモートでコードが実行される脆弱性 New	CWE-416 CWE-noinfo	CVE-2024-26222	2025-01-10 11:02	2024-04-9	Show	GitHub Exploit DB Packet Storm

147	7.5	重要 Network	マイクロソフト	Microsoft Windows Server 2022 Microsoft Windows Server 2012 Microsoft Windows Server 2016 Microsoft Windows Server 2008 Microso…	DHCP Server サービスのサービス拒否の脆弱性 New	CWE-400 CWE-noinfo	CVE-2024-26215	2025-01-10 10:59	2024-04-9	Show	GitHub Exploit DB Packet Storm

148	8.8	重要 Network	マイクロソフト	Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Windows Server 2012 Microsoft Windows Server 2016 Microsoft Window…	Windows ルーティングとリモートアクセスサービス (RRAS) のリモートでコードが実行される脆弱性 New	CWE-122 CWE-noinfo	CVE-2024-26200	2025-01-10 10:54	2024-04-9	Show	GitHub Exploit DB Packet Storm

149	7.2	重要 Network	マイクロソフト	Microsoft Windows Server 2022 Microsoft Windows Server 2012 Microsoft Windows Server 2016 Microsoft Windows Server 2008 Microso…	DHCP Server Service のリモートでコードが実行される脆弱性 New	CWE-122 CWE-noinfo	CVE-2024-26195	2025-01-10 10:51	2024-04-9	Show	GitHub Exploit DB Packet Storm

150	7.1	重要 Adjacent	マイクロソフト	Microsoft Windows Server 2012	セキュアブートのセキュリティ機能のバイパスの脆弱性 New	CWE-121 CWE-noinfo	CVE-2024-20688	2025-01-10 10:48	2024-04-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 10, 2025, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
276311	-	microsoft	outlook	Microsoft Outlook 2002 allows remote attackers to execute arbitrary JavaScript code, even when scripting is disabled, via an "about:" or "javascript:" URI in the href attribute of an "a" tag.	NVD-CWE-Other	CVE-2002-2101	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

276312	-	jcraft	jzlib	InfBlocks.java in JCraft JZlib before 0.0.7 allow remote attackers to cause a denial of service (NullPointerException) via an invalid block of deflated data.	NVD-CWE-Other	CVE-2002-2102	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

276313	-	apache	http_server	Apache before 1.3.24, when writing to the log file, records a spoofed hostname from the reverse lookup of an IP address, even when a double-reverse lookup fails, which allows remote attackers to hide…	NVD-CWE-Other	CVE-2002-2103	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

276314	-	veridis	openkeyserver	Cross-site scripting (XSS) vulnerability in the lookup script in Veridis OpenKeyServer (OKS) 1.2 allows remote attackers to inject arbitrary web script or HTML via the search parameter.	NVD-CWE-Other	CVE-2002-2107	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

276315	-	sony	vaio_manual_cybersupport	Unknown vulnerability in the "VAIO Manual" software in certain Sony VAIO personal computers sold from November 2001 to January 2002, allows remote attackers to modify data via a web page or HTML e-ma…	NVD-CWE-Other	CVE-2002-2108	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

276316	-	matt_wright	formmail	Matt Wright FormMail 1.9 and earlier allows remote attackers to bypass the HTTP_REFERER check and conduct unauthorized activities via (1) a blank referer, (2) a spoofed referer with a trusted domain/…	NVD-CWE-Other	CVE-2002-2109	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

276317	-	rca	digital_cable_modem	The RCA Digital Cable Modems DCM225 and DCM225E allow remote attackers to cause a denial of service (modem device reset) by connecting to port 80 on the 10.0.0.0/8 device.	NVD-CWE-Other	CVE-2002-2110	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

276318	-	rca	digital_cable_modem	RCA Digital Cable Modem DCM225 and DCM225E, and other modems that must conform to the Data-over-Cable Service Interface Specifications DOCSIS standard, uses the "public" community string for SNMP acc…	NVD-CWE-Other	CVE-2002-2112	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

276319	-	agh	htmlsearch	search.cgi in AGH HTMLsearch 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the template parameter.	NVD-CWE-Other	CVE-2002-2113	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

276320	-	hns	hns hns-lite	Cross-site scripting (XSS) vulnerability in Hyper NIKKI System (HNS) Lite before 0.9 and HNS before 2.10-pl2 allows remote attackers to inject arbitrary web script or HTML.	NVD-CWE-Other	CVE-2002-2115	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm