Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1511	9.8	緊急 Network	マイクロソフト	Microsoft Windows Server 2025 Microsoft Windows Server 2008 Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Window…	Windows Lightweight Directory Access Protocol (LDAP) のリモートでコードが実行される脆弱性	CWE-190 CWE-noinfo	CVE-2024-49112	2025-01-17 16:55	2024-12-10	Show	GitHub Exploit DB Packet Storm

1512	8.1	重要 Network	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows Server 2016 Microsoft Windows Server 2025 Microsoft Windows Server 2022	Windows リモートデスクトップサービスのリモートでコードが実行される脆弱性	CWE-362 CWE-416 CWE-591	CVE-2024-49115	2025-01-17 16:49	2024-12-10	Show	GitHub Exploit DB Packet Storm

1513	6.4	警告 Local	マイクロソフト	Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Windows Server 2016 Microsoft Windows 10 Microsoft Windows Server&…	セキュアブートのセキュリティ機能のバイパスの脆弱性	CWE-190 CWE-noinfo	CVE-2024-28923	2025-01-17 16:46	2024-04-9	Show	GitHub Exploit DB Packet Storm

1514	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における制限またはスロットリング無しのリソースの割り当てに関する脆弱性	CWE-770 制限またはスロットリング無しのリソースの割り当て	CVE-2022-49035	2025-01-17 16:43	2022-09-24	Show	GitHub Exploit DB Packet Storm

1515	6.7	警告 Local	マイクロソフト	Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Windows Server 2016 Microsoft Windows 10 Microsoft Windows Server&…	セキュアブートのセキュリティ機能のバイパスの脆弱性	CWE-121 CWE-noinfo	CVE-2024-28924	2025-01-17 16:41	2024-04-9	Show	GitHub Exploit DB Packet Storm

1516	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における脆弱性	CWE-noinfo 情報不足	CVE-2021-47072	2025-01-17 16:40	2021-05-14	Show	GitHub Exploit DB Packet Storm

1517	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における脆弱性	CWE-noinfo 情報不足	CVE-2021-46974	2025-01-17 16:39	2021-05-3	Show	GitHub Exploit DB Packet Storm

1518	8.8	重要 Network	マイクロソフト	Microsoft Visual Studio Microsoft ODBC Driver Microsoft SQL Server	SQL Server 用 Microsoft ODBC ドライバーのリモートでコードが実行される脆弱性	CWE-190 CWE-noinfo	CVE-2024-28929	2025-01-17 16:36	2024-04-9	Show	GitHub Exploit DB Packet Storm

1519	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel におけるゼロ除算に関する脆弱性	CWE-369 ゼロ除算	CVE-2024-56622	2025-01-17 16:34	2024-12-4	Show	GitHub Exploit DB Packet Storm

1520	5.3	警告 Network	三菱電機	（複数の製品）	複数の三菱電機製 FA 製品の Ethernet 機能におけるサービス運用妨害（DoS）の脆弱性	CWE-410 不十分なリソースプール	CVE-2023-7033	2025-01-17 16:32	2024-02-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 21, 2025, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
781	-	-	-	The Qardio Arm iOS application exposes sensitive data such as usernames and passwords in a plist file. This allows an attacker to log in to production-level development accounts and access an engin…	CWE-359 Exposure of Private Personal Information to an Unauthorized Actor	CVE-2025-20615	2025-02-14 07:15	2025-02-14	Show	GitHub Exploit DB Packet Storm

782	-	-	-	The Dingtian DT-R0 Series is vulnerable to an exploit that allows attackers to bypass login requirements by directly navigating to the main page.	CWE-288 Authentication Bypass Using an Alternate Path or Channel	CVE-2025-1283	2025-02-14 07:15	2025-02-14	Show	GitHub Exploit DB Packet Storm

783	-	-	-	Wazuh SIEM version 4.8.2 is affected by a broken access control vulnerability. This issue allows the unauthorized creation of internal users without assigning any existing user role, potentially lead…	-	CVE-2024-57378	2025-02-14 07:15	2025-02-14	Show	GitHub Exploit DB Packet Storm

784	-	-	-	A Cross-Protocol Scripting vulnerability is found in Apache Kvrocks. Since Kvrocks didn't detect if "Host:" or "POST" appears in RESP requests, a valid HTTP request can also be sent to Kvrocks as a …	-	CVE-2025-25069	2025-02-14 07:15	2025-02-7	Show	GitHub Exploit DB Packet Storm

785	-	-	-	Directory Traversal vulnerability in yeqifu carRental v.1.0 allows a remote attacker to obtain sensitive information via the file/downloadFile.action?path= component.	-	CVE-2024-51376	2025-02-14 06:15	2025-02-13	Show	GitHub Exploit DB Packet Storm

786	-	-	-	An authorization bypass vulnerability exists in the Mavenir SCE Application Provisioning Portal, version PORTAL-LBS-R_1_0_24_0, which allows an authenticated 'guest' user to perform unauthorized admi…	-	CVE-2024-34520	2025-02-14 06:15	2025-02-13	Show	GitHub Exploit DB Packet Storm

787	-	-	-	A SQL Injection vulnerability was found in /admin/edit-propertytype.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the editid GET request param…	-	CVE-2025-25388	2025-02-14 05:15	2025-02-14	Show	GitHub Exploit DB Packet Storm

788	-	-	-	The vulnerability can be leveraged by an attacker to execute arbitrary code as an unprivileged user and/or modify the contents of any data on the filesystem.	-	CVE-2025-1127	2025-02-14 04:15	2025-02-14	Show	GitHub Exploit DB Packet Storm

789	-	-	-	Integer Overflow or Wraparound vulnerability in Lexmark International CX, XC, CS, et. Al. (Postscript interpreter modules) allows Forced Integer Overflow.The vulnerability can be leveraged by an atta…	-	CVE-2024-11347	2025-02-14 04:15	2025-02-14	Show	GitHub Exploit DB Packet Storm

790	-	-	-	: Access of Resource Using Incompatible Type ('Type Confusion') vulnerability in Lexmark International CX, XC, CS, et. Al. (Postscript interpreter modules) allows Resource Injection.This issue affect…	-	CVE-2024-11346	2025-02-14 04:15	2025-02-14	Show	GitHub Exploit DB Packet Storm