Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1511	9.8	緊急 Network	マイクロソフト	Microsoft Windows Server 2025 Microsoft Windows Server 2008 Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Window…	Windows Lightweight Directory Access Protocol (LDAP) のリモートでコードが実行される脆弱性	CWE-190 CWE-noinfo	CVE-2024-49112	2025-01-17 16:55	2024-12-10	Show	GitHub Exploit DB Packet Storm

1512	8.1	重要 Network	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows Server 2016 Microsoft Windows Server 2025 Microsoft Windows Server 2022	Windows リモートデスクトップサービスのリモートでコードが実行される脆弱性	CWE-362 CWE-416 CWE-591	CVE-2024-49115	2025-01-17 16:49	2024-12-10	Show	GitHub Exploit DB Packet Storm

1513	6.4	警告 Local	マイクロソフト	Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Windows Server 2016 Microsoft Windows 10 Microsoft Windows Server&…	セキュアブートのセキュリティ機能のバイパスの脆弱性	CWE-190 CWE-noinfo	CVE-2024-28923	2025-01-17 16:46	2024-04-9	Show	GitHub Exploit DB Packet Storm

1514	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2022-49035	2025-01-17 16:43	2022-09-24	Show	GitHub Exploit DB Packet Storm

1515	6.7	警告 Local	マイクロソフト	Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Windows Server 2016 Microsoft Windows 10 Microsoft Windows Server&…	セキュアブートのセキュリティ機能のバイパスの脆弱性	CWE-121 CWE-noinfo	CVE-2024-28924	2025-01-17 16:41	2024-04-9	Show	GitHub Exploit DB Packet Storm

1516	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における脆弱性	CWE-noinfo 情報不足	CVE-2021-47072	2025-01-17 16:40	2021-05-14	Show	GitHub Exploit DB Packet Storm

1517	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における脆弱性	CWE-noinfo 情報不足	CVE-2021-46974	2025-01-17 16:39	2021-05-3	Show	GitHub Exploit DB Packet Storm

1518	8.8	重要 Network	マイクロソフト	Microsoft Visual Studio Microsoft ODBC Driver Microsoft SQL Server	SQL Server 用 Microsoft ODBC ドライバーのリモートでコードが実行される脆弱性	CWE-190 CWE-noinfo	CVE-2024-28929	2025-01-17 16:36	2024-04-9	Show	GitHub Exploit DB Packet Storm

1519	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel におけるゼロ除算に関する脆弱性	CWE-369 ゼロ除算	CVE-2024-56622	2025-01-17 16:34	2024-12-4	Show	GitHub Exploit DB Packet Storm

1520	5.3	警告 Network	三菱電機	（複数の製品）	複数の三菱電機製 FA 製品の Ethernet 機能におけるサービス運用妨害（DoS）の脆弱性	CWE-410 不十分なリソースプール	CVE-2023-7033	2025-01-17 16:32	2024-02-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 10, 2025, 4:06 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
261	-	-	-	A Time-of-Check to Time-of-Use (TOCTOU) vulnerability has been identified in the driver of the NDD Print solution, which could allow an unprivileged user to exploit this flaw and gain SYSTEM-level ac…	-	CVE-2024-48394	2025-02-7 01:15	2025-02-6	Show	GitHub Exploit DB Packet Storm

262	-	-	-	SQL Injection vulnerability in SourceCodester Responsive E-Learning System 1.0 allows remote attackers to inject sql query in /elearning/delete_teacher_students.php?id= parameter via id field.	-	CVE-2020-36084	2025-02-7 01:15	2025-02-6	Show	GitHub Exploit DB Packet Storm

263	-	-	-	Insecure permissions in RuoYi v4.8.0 allows authenticated attackers to escalate privileges by assigning themselves higher level roles.	-	CVE-2024-57438	2025-02-7 01:15	2025-01-30	Show	GitHub Exploit DB Packet Storm

264	-	-	-	In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: don't fail inserts if duplicate has expired nftables selftests fail: run-tests.sh testcases/sets/0044interv…	-	CVE-2023-52925	2025-02-7 01:15	2025-02-5	Show	GitHub Exploit DB Packet Storm

265	-	-	-	Proposed Generic UDP Encapsulation (GUE) (IETF Draft) do not validate or verify the source of a network packet allowing an attacker to spoof and route arbitrary traffic via an exposed network interfa…	-	CVE-2024-7596	2025-02-7 00:56	2025-02-6	Show	GitHub Exploit DB Packet Storm

266	-	-	-	GRE and GRE6 Protocols (RFC2784) do not validate or verify the source of a network packet allowing an attacker to spoof and route arbitrary traffic via an exposed network interface that can lead to s…	-	CVE-2024-7595	2025-02-7 00:56	2025-02-6	Show	GitHub Exploit DB Packet Storm

267	-	-	-	Honeywell OneWireless Wireless Device Manager (WDM) for the following versions R310.x, R320.x, R321.x, R322.1, R322.2, R323.x, R330.1 contains a command injection vulnerability. An attacker who is …	-	CVE-2023-5878	2025-02-7 00:15	2025-02-7	Show	GitHub Exploit DB Packet Storm

268	-	-	-	The Lite UI of Apache ShardingSphere ElasticJob-UI allows an attacker to perform RCE by constructing a special JDBC URL of H2 database. This issue affects Apache ShardingSphere ElasticJob-UI version …	CWE-913 Improper Control of Dynamically-Managed Code Resources	CVE-2022-31764	2025-02-7 00:15	2025-02-7	Show	GitHub Exploit DB Packet Storm

269	-	-	-	The The CURCY – Multi Currency for WooCommerce – The best free currency exchange plugin – Run smoothly on WooCommerce 9.x plugin for WordPress is vulnerable to arbitrary shortcode execution via the g…	CWE-94 Code Injection	CVE-2024-13487	2025-02-7 00:15	2025-02-6	Show	GitHub Exploit DB Packet Storm

270	-	-	-	The LikeBot WordPress plugin through 0.85 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS…	-	CVE-2025-0522	2025-02-7 00:15	2025-02-6	Show	GitHub Exploit DB Packet Storm