Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1491 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2024-56572 2025-01-17 17:45 2024-10-12 Show GitHub Exploit DB Packet Storm
1492 8.1 重要
Network 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows 11
Microsoft Windows 10
Microsoft Windows Server 2019
Microsoft Windows Server&… 		Windows リモート デスクトップ サービスのリモートでコードが実行される脆弱性 CWE-362
CWE-416
CWE-591
CVE-2024-49132 2025-01-17 17:43 2024-12-10 Show GitHub Exploit DB Packet Storm
1493 8.8 重要
Network 		マイクロソフト Microsoft ODBC Driver
Microsoft SQL Server 		SQL Server 用 Microsoft ODBC ドライバーのリモートでコードが実行される脆弱性 CWE-122
CWE-noinfo
CVE-2024-28941 2025-01-17 17:41 2024-04-9 Show GitHub Exploit DB Packet Storm
1494 7.5 重要
Network 		マイクロソフト Microsoft Windows Server 2025
Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows Server 2019
Microso… 		Windows リモート デスクトップ ゲートウェイ (RD ゲートウェイ) のサービス拒否の脆弱性 CWE-362
CWE-400
CVE-2024-49129 2025-01-17 17:39 2024-12-10 Show GitHub Exploit DB Packet Storm
1495 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2024-53205 2025-01-17 17:37 2024-11-4 Show GitHub Exploit DB Packet Storm
1496 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2024-53210 2025-01-17 17:37 2024-11-26 Show GitHub Exploit DB Packet Storm
1497 5.5 警告
Local 		Debian
Linux		 Linux Kernel
Debian GNU/Linux 		Linux の Linux Kernel 等複数ベンダの製品における有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2024-35828 2025-01-17 17:32 2024-02-5 Show GitHub Exploit DB Packet Storm
1498 7.8 重要
Local 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows 11
Microsoft Windows 10
Microsoft Windows Server 2019
Microsoft Windows Server&… 		Windows Cloud Files Mini Filter ドライバーの特権の昇格の脆弱性 CWE-820
CWE-noinfo
CVE-2024-49114 2025-01-17 17:31 2024-12-10 Show GitHub Exploit DB Packet Storm
1499 5.5 警告
Local 		Debian
Linux		 Linux Kernel
Debian GNU/Linux 		Linux の Linux Kernel 等複数ベンダの製品における有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2024-27388 2025-01-17 17:29 2024-03-1 Show GitHub Exploit DB Packet Storm
1500 7.8 重要
Local 		Debian
Linux		 Linux Kernel
Debian GNU/Linux 		Linux の Linux Kernel 等複数ベンダの製品における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2024-26689 2025-01-17 17:21 2024-02-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 12, 2025, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
341 - - - A vulnerability was found in taisan tarzan-cms up to 1.0.0. It has been rated as critical. This issue affects the function upload of the file /admin#themes of the component Add Theme Handler. The man… - CVE-2025-1113 2025-02-8 08:15 2025-02-8 Show GitHub Exploit DB Packet Storm
342 - - - An issue in TPLINK TL-WPA 8630 TL-WPA8630(US)_V2_2.0.4 Build 20230427 allows a remote attacker to execute arbitrary code via function sub_4256CC, which allows command injection by injecting 'devpwd'. - CVE-2024-57357 2025-02-8 08:15 2025-02-8 Show GitHub Exploit DB Packet Storm
343 - - - A reflected Cross-Site Scripting (XSS) vulnerability has been identified in the LDAP User Manager <= ce92321, specifically in the /setup/index.php endpoint via the returnto parameter. This vulnerabil… - CVE-2024-57279 2025-02-8 08:15 2025-02-8 Show GitHub Exploit DB Packet Storm
344 - - - A reflected Cross-Site Scripting (XSS) vulnerability exists in /webscan/sqlmap/index.html in QingScan <=v1.8.0. The vulnerability is caused by improper input sanitization of the query parameter, allo… - CVE-2024-57278 2025-02-8 08:15 2025-02-8 Show GitHub Exploit DB Packet Storm
345 - - - SFTPGo is an open source, event-driven file transfer solution. SFTPGo supports execution of a defined set of commands via SSH. Besides a set of default commands some optional commands can be activate… CWE-78
OS Command  		CVE-2025-24366 2025-02-8 07:15 2025-02-8 Show GitHub Exploit DB Packet Storm
346 - - - pimcore/admin-ui-classic-bundle provides a Backend UI for Pimcore. In affected versions an error message discloses existing accounts and leads to user enumeration on the target via "Forgot password" … - CVE-2025-24980 2025-02-8 07:15 2025-02-8 Show GitHub Exploit DB Packet Storm
347 - - - Inappropriate implementation in Extensions API in Google Chrome prior to 133.0.6943.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a cr… - CVE-2025-0451 2025-02-8 07:15 2025-02-5 Show GitHub Exploit DB Packet Storm
348 - - - Use after free in V8 in Google Chrome prior to 133.0.6943.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) - CVE-2025-0445 2025-02-8 07:15 2025-02-5 Show GitHub Exploit DB Packet Storm
349 - - - Use after free in Skia in Google Chrome prior to 133.0.6943.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) - CVE-2025-0444 2025-02-8 07:15 2025-02-5 Show GitHub Exploit DB Packet Storm
350 - - - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), Files or Directories Accessible to External Parties vulnerability in Apache Doris. Application administrators can rea… - CVE-2024-48019 2025-02-8 07:15 2025-02-5 Show GitHub Exploit DB Packet Storm