Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1531 7.5 重要
Network 		Huawei EMUI
HarmonyOS 		Huawei の EMUI および HarmonyOS における脆弱性 CWE-840
CWE-noinfo
CVE-2024-56438 2025-01-17 16:20 2024-12-26 Show GitHub Exploit DB Packet Storm
1532 5.5 警告
Local 		クアルコム qam8775p ファームウェア
QCA6595 ファームウェア
sa8650p ファームウェア
sa8540p ファームウェア
QAM8295P ファームウェア
qamsrv1h ファームウェア
QCA6696 ファームウェア
sa7775p ファームウェア
sa87… 		複数のクアルコム製品における境界外読み取りに関する脆弱性 CWE-125
CWE-126
CVE-2024-45559 2025-01-17 16:18 2024-09-2 Show GitHub Exploit DB Packet Storm
1533 7.8 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2021-47341 2025-01-17 16:18 2021-07-14 Show GitHub Exploit DB Packet Storm
1534 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. FH1202 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の FH1202 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-2986 2025-01-17 16:17 2024-03-27 Show GitHub Exploit DB Packet Storm
1535 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. FH1202 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の FH1202 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-2985 2025-01-17 16:17 2024-03-27 Show GitHub Exploit DB Packet Storm
1536 8.8 重要
Network 		Synology Inc. Surveillance Station Synology Inc. の Surveillance Station における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-29227 2025-01-17 16:16 2024-03-28 Show GitHub Exploit DB Packet Storm
1537 8.8 重要
Network 		Synology Inc. Surveillance Station Synology Inc. の Surveillance Station における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-29233 2025-01-17 16:16 2024-03-28 Show GitHub Exploit DB Packet Storm
1538 8.8 重要
Network 		Synology Inc. Surveillance Station Synology Inc. の Surveillance Station における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-29235 2025-01-17 16:16 2024-03-28 Show GitHub Exploit DB Packet Storm
1539 7.8 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2024-56603 2025-01-17 16:15 2024-10-15 Show GitHub Exploit DB Packet Storm
1540 5.3 警告
Network 		ThimPress LearnPress ThimPress の WordPress 用 LearnPress における脆弱性 CWE-284
CWE-noinfo
CVE-2024-11868 2025-01-17 16:14 2024-12-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 7, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
275841 - sun one_web_server Sun ONE (aka iPlanet) Web Server 6 on Windows, when DNS resolution is enabled for client IP addresses, uses a logging format that does not identify whether a dotted quad represents an unresolved IP a… CWE-189
Numeric Errors 		CVE-2003-1579 2010-02-8 23:55 2010-02-6 Show GitHub Exploit DB Packet Storm
275842 - ibm cognos_express IBM Cognos Express 9.0 allows attackers to obtain unspecified access to the Tomcat Manager component, and cause a denial of service, by leveraging hardcoded credentials. CWE-255
Credentials Management 		CVE-2010-0557 2010-02-8 14:00 2010-02-6 Show GitHub Exploit DB Packet Storm
275843 - apache http_server The Apache HTTP Server 2.0.44, when DNS resolution is enabled for client IP addresses, uses a logging format that does not identify whether a dotted quad represents an unresolved IP address, which al… CWE-189
Numeric Errors 		CVE-2003-1580 2010-02-8 14:00 2010-02-6 Show GitHub Exploit DB Packet Storm
275844 - apache http_server The Apache HTTP Server 2.0.44, when DNS resolution is enabled for client IP addresses, allows remote attackers to inject arbitrary text into log files via an HTTP request in conjunction with a crafte… CWE-79
Cross-site Scripting 		CVE-2003-1581 2010-02-8 14:00 2010-02-6 Show GitHub Exploit DB Packet Storm
275845 - tor tor Tor before 0.2.1.22, and 0.2.2.x before 0.2.2.7-alpha, uses deprecated identity keys for certain directory authorities, which makes it easier for man-in-the-middle attackers to compromise the anonymi… CWE-200
Information Exposure 		CVE-2010-0383 2010-02-5 16:13 2010-01-26 Show GitHub Exploit DB Packet Storm
275846 - ircd-ratbox ircd-ratbox cache.c in ircd-ratbox before 2.2.9 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a HELP command. NVD-CWE-Other
CVE-2010-0300 2010-02-5 14:00 2010-02-5 Show GitHub Exploit DB Packet Storm
275847 - ircd-ratbox ircd-ratbox Per: http://cwe.mitre.org/data/definitions/476.html 'CWE-476: NULL Pointer Dereference' NVD-CWE-Other
CVE-2010-0300 2010-02-5 14:00 2010-02-5 Show GitHub Exploit DB Packet Storm
275848 - xerox workcentre_5632
workcentre_5638
workcentre_5645
workcentre_5655
workcentre_5665
workcentre_5675
workcentre_5687 		Multiple unspecified vulnerabilities in the Network Controller and Web Server in Xerox WorkCentre 5632, 5638, 5645, 5655, 5665, 5675, and 5687 allow remote attackers to (1) access mailboxes via unkno… CWE-200
Information Exposure 		CVE-2010-0548 2010-02-5 14:00 2010-02-5 Show GitHub Exploit DB Packet Storm
275849 - ircd-hybrid
ircd-ratbox
oftc 		ircd-hybrid
ircd-ratbox
oftc-hybrid 		Integer underflow in the clean_string function in irc_string.c in (1) IRCD-hybrid 7.2.2 and 7.2.3, (2) ircd-ratbox before 2.2.9, and (3) oftc-hybrid before 1.6.8, when flatten_links is disabled, allo… CWE-189
Numeric Errors 		CVE-2009-4016 2010-02-5 14:00 2010-02-5 Show GitHub Exploit DB Packet Storm
275850 - comtrend ct-507it_adsl_router Cross-site scripting (XSS) vulnerability in scvrtsrv.cmd in Comtrend CT-507IT ADSL Router allows remote attackers to inject arbitrary web script or HTML via the srvName parameter. CWE-79
Cross-site Scripting 		CVE-2010-0470 2010-02-3 14:00 2010-02-3 Show GitHub Exploit DB Packet Storm