Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1521 7.8 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2024-53173 2025-01-17 16:29 2024-11-9 Show GitHub Exploit DB Packet Storm
1522 5.5 警告
Local 		Debian
Linux		 Linux Kernel
Debian GNU/Linux 		Linux の Linux Kernel 等複数ベンダの製品における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2024-35811 2025-01-17 16:25 2024-01-18 Show GitHub Exploit DB Packet Storm
1523 7.5 重要
Network 		Palo Alto Networks PAN-OS
Prisma Access 		Palo Alto Networks の PAN-OS および Prisma Access における例外的な状態のチェックに関する脆弱性 CWE-754
CWE-754
CVE-2024-3393 2025-01-17 16:22 2024-12-27 Show GitHub Exploit DB Packet Storm
1524 9.8 緊急
Network 		クアルコム IPQ4028 ファームウェア
IPQ5010 ファームウェア
immersive home 214 ファームウェア
immersive home 216 ファームウェア
CSR8811 ファームウェア
immersive home 3210 ファ… 		複数のクアルコム製品における境界外書き込みに関する脆弱性 CWE-20
CWE-787
CVE-2024-21473 2025-01-17 16:21 2024-04-1 Show GitHub Exploit DB Packet Storm
1525 8.8 重要
Network 		Huawei FusionCompute ファームウェア Huawei の FusionCompute ファームウェアにおける脆弱性 CWE-451
CWE-noinfo
CVE-2020-9236 2025-01-17 16:21 2020-02-18 Show GitHub Exploit DB Packet Storm
1526 7.8 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
CWE-416
CVE-2024-26734 2025-01-17 16:21 2024-02-20 Show GitHub Exploit DB Packet Storm
1527 5.4 警告
Network 		Themeisle RSS Aggregator by Feedzy ThemeIsle の WordPress 用 RSS Aggregator by Feedzy におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2023-6877 2025-01-17 16:20 2023-12-15 Show GitHub Exploit DB Packet Storm
1528 5.3 警告
Network 		Huawei HarmonyOS Huawei の HarmonyOS における認証に関する脆弱性 CWE-287
CWE-287
CVE-2024-56445 2025-01-17 16:20 2024-12-26 Show GitHub Exploit DB Packet Storm
1529 7.5 重要
Network 		Huawei HarmonyOS Huawei の HarmonyOS における脆弱性 CWE-20
CWE-noinfo
CVE-2024-54121 2025-01-17 16:20 2024-11-29 Show GitHub Exploit DB Packet Storm
1530 7.5 重要
Network 		Huawei EMUI
HarmonyOS 		Huawei の EMUI および HarmonyOS における不適切なデフォルトパーミッションに関する脆弱性 CWE-269
CWE-276
CVE-2024-56447 2025-01-17 16:20 2024-12-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 7, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
278561 - lucid_designs lucid_calendar Cross-site scripting (XSS) vulnerability in Cal.PHP3 in Chris Lea Lucid Calendar 0.22 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters. NOTE: the provenance … NVD-CWE-Other
CVE-2006-3025 2008-09-6 06:06 2006-06-15 Show GitHub Exploit DB Packet Storm
278562 - lucid_designs lucid_calendar Lucid Designs, Lucid Calendar, 0.22 is unsupported. A new, supported version of this product will be released in the near future. NVD-CWE-Other
CVE-2006-3025 2008-09-6 06:06 2006-06-15 Show GitHub Exploit DB Packet Storm
278563 - emailarchitect email_server Cross-site scripting (XSS) vulnerability in EmailArchitect Email Server 6.1 allows remote attackers to inject arbitrary Javascript via an HTML div tag with a carriage return between the onmouseover a… NVD-CWE-Other
CVE-2006-3108 2008-09-6 06:06 2006-06-21 Show GitHub Exploit DB Packet Storm
278564 - canonical spread spread uses a temporary file with a static filename based on the port number, which allows local users to cause a denial of service by creating the file during a race condition between unlink and bin… NVD-CWE-Other
CVE-2006-3118 2008-09-6 06:06 2006-07-1 Show GitHub Exploit DB Packet Storm
278565 - mambo mambo SQL injection vulnerability in the Weblinks module (weblinks.php) in Mambo 4.6rc1 and earlier allows remote attackers to execute arbitrary SQL commands via the catid parameter. NVD-CWE-Other
CVE-2006-3263 2008-09-6 06:06 2006-06-28 Show GitHub Exploit DB Packet Storm
278566 - mpg123 mpg123 Heap-based buffer overflow in httpdget.c in mpg123 before 0.59s-rll allows remote attackers to execute arbitrary code via a long URL, which is not properly terminated before being used with the strnc… NVD-CWE-Other
CVE-2006-3355 2008-09-6 06:06 2006-07-7 Show GitHub Exploit DB Packet Storm
278567 - ubuntu ubuntu_linux passwd command in shadow in Ubuntu 5.04 through 6.06 LTS, when called with the -f, -g, or -s flag, does not check the return code of a setuid call, which might allow local users to gain root privileg… NVD-CWE-Other
CVE-2006-3378 2008-09-6 06:06 2006-07-7 Show GitHub Exploit DB Packet Storm
278568 - amule amule Multiple unspecified vulnerabilities in aMuleWeb for AMule before 2.1.2 allow remote attackers to read arbitrary image, HTML, or PHP files via unknown vectors, probably related to directory traversal. NVD-CWE-Other
CVE-2006-2692 2008-09-6 06:05 2006-05-31 Show GitHub Exploit DB Packet Storm
278569 - amule amule Successful exploitation requires that the full pathname of the file is known. This vulnerability is addressed in the following product release: aMule, aMule, 2.1.2 NVD-CWE-Other
CVE-2006-2692 2008-09-6 06:05 2006-05-31 Show GitHub Exploit DB Packet Storm
278570 - jetty jetty Directory traversal vulnerability in jetty 6.0.x (jetty6) beta16 allows remote attackers to read arbitrary files via a %2e%2e%5c (encoded ../) in the URL. NOTE: this might be the same issue as CVE-2… CWE-22
Path Traversal 		CVE-2006-2758 2008-09-6 06:05 2006-06-2 Show GitHub Exploit DB Packet Storm