Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1531 7.5 重要
Network 		Huawei EMUI
HarmonyOS 		Huawei の EMUI および HarmonyOS における脆弱性 CWE-840
CWE-noinfo
CVE-2024-56438 2025-01-17 16:20 2024-12-26 Show GitHub Exploit DB Packet Storm
1532 5.5 警告
Local 		クアルコム qam8775p ファームウェア
QCA6595 ファームウェア
sa8650p ファームウェア
sa8540p ファームウェア
QAM8295P ファームウェア
qamsrv1h ファームウェア
QCA6696 ファームウェア
sa7775p ファームウェア
sa87… 		複数のクアルコム製品における境界外読み取りに関する脆弱性 CWE-125
CWE-126
CVE-2024-45559 2025-01-17 16:18 2024-09-2 Show GitHub Exploit DB Packet Storm
1533 7.8 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2021-47341 2025-01-17 16:18 2021-07-14 Show GitHub Exploit DB Packet Storm
1534 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. FH1202 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の FH1202 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-2986 2025-01-17 16:17 2024-03-27 Show GitHub Exploit DB Packet Storm
1535 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. FH1202 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の FH1202 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-2985 2025-01-17 16:17 2024-03-27 Show GitHub Exploit DB Packet Storm
1536 8.8 重要
Network 		Synology Inc. Surveillance Station Synology Inc. の Surveillance Station における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-29227 2025-01-17 16:16 2024-03-28 Show GitHub Exploit DB Packet Storm
1537 8.8 重要
Network 		Synology Inc. Surveillance Station Synology Inc. の Surveillance Station における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-29233 2025-01-17 16:16 2024-03-28 Show GitHub Exploit DB Packet Storm
1538 8.8 重要
Network 		Synology Inc. Surveillance Station Synology Inc. の Surveillance Station における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-29235 2025-01-17 16:16 2024-03-28 Show GitHub Exploit DB Packet Storm
1539 7.8 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2024-56603 2025-01-17 16:15 2024-10-15 Show GitHub Exploit DB Packet Storm
1540 5.3 警告
Network 		ThimPress LearnPress ThimPress の WordPress 用 LearnPress における脆弱性 CWE-284
CWE-noinfo
CVE-2024-11868 2025-01-17 16:14 2024-12-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 21, 2025, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
531 9.8 CRITICAL
Network 		- - Orca HCM from LEARNING DIGITAL has an Improper Authentication vulnerability, allowing unauthenticated remote attackers to log in to the system as any user. CWE-1390
 Weak Authentication 		CVE-2025-1387 2025-02-17 13:15 2025-02-17 Show GitHub Exploit DB Packet Storm
532 6.3 MEDIUM
Network 		- - A vulnerability classified as critical has been found in code-projects Real Estate Property Management System 1.0. This affects an unknown part of the file /search.php. The manipulation of the argume… CWE-89
CWE-74
SQL Injection
Injection 		CVE-2025-1374 2025-02-17 13:15 2025-02-17 Show GitHub Exploit DB Packet Storm
533 3.3 LOW
Local 		- - A vulnerability was found in FFmpeg up to 7.1. It has been rated as problematic. Affected by this issue is the function mov_read_trak of the file libavformat/mov.c of the component MOV Parser. The ma… CWE-476
CWE-404
 NULL Pointer Dereference
 Improper Resource Shutdown or Release 		CVE-2025-1373 2025-02-17 13:15 2025-02-17 Show GitHub Exploit DB Packet Storm
534 - - - Authentication bypass using an alternate path or channel issue exists in ”RoboForm Password Manager" App for Android versions prior to 9.7.4, which may allow an attacker with access to a device where… CWE-288
Authentication Bypass Using an Alternate Path or Channel 		CVE-2025-26700 2025-02-17 12:15 2025-02-17 Show GitHub Exploit DB Packet Storm
535 5.3 MEDIUM
Local 		- - A vulnerability was found in GNU elfutils 0.192. It has been declared as critical. Affected by this vulnerability is the function dump_data_section/print_string_section of the file readelf.c of the c… CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error') 
Classic Buffer Overflow 		CVE-2025-1372 2025-02-17 12:15 2025-02-17 Show GitHub Exploit DB Packet Storm
536 5.3 MEDIUM
Local 		- - A vulnerability was found in MicroWord eScan Antivirus 7.0.32 on Linux and classified as critical. Affected by this issue is the function strcpy of the component VirusPopUp. The manipulation leads to… CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow 		CVE-2025-1366 2025-02-17 10:15 2025-02-17 Show GitHub Exploit DB Packet Storm
537 5.3 MEDIUM
Local 		- - A vulnerability, which was classified as critical, was found in GNU elfutils 0.192. This affects the function process_symtab of the file readelf.c of the component eu-readelf. The manipulation of the… CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error') 
Classic Buffer Overflow 		CVE-2025-1365 2025-02-17 09:15 2025-02-17 Show GitHub Exploit DB Packet Storm
538 - - - Out-of-bounds Read vulnerability (CWE-125) was found in CX-Programmer. Attackers may be able to read sensitive information or cause an application crash by abusing this vulnerability. - CVE-2025-0591 2025-02-17 09:15 2025-02-17 Show GitHub Exploit DB Packet Storm
539 - - - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Fahad Mahmood Keep Backup Daily allows Path Traversal. This issue affects Keep Backup Daily: from n/a t… CWE-22
Path Traversal 		CVE-2025-26779 2025-02-17 08:15 2025-02-17 Show GitHub Exploit DB Packet Storm
540 - - - Cross-Site Request Forgery (CSRF) vulnerability in what3words what3words Address Field allows Stored XSS. This issue affects what3words Address Field: from n/a through 4.0.15. CWE-352
 Origin Validation Error 		CVE-2025-26768 2025-02-17 08:15 2025-02-17 Show GitHub Exploit DB Packet Storm