Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1601	5.3	警告 Network	NetApp 日本電気 ISC, Inc.	Active IQ Unified Manager ESMPRO/ServerAgent NEC Multimedia OLAP for 映像分析サービス BIND	ISC, Inc. の BIND 等複数ベンダの製品における脆弱性	CWE-noinfo 情報不足	CVE-2023-5680	2025-01-17 13:18	2023-10-20	Show	GitHub Exploit DB Packet Storm

1602	7.5	重要 Network	日本電気 Fedora Project NetApp ISC, Inc.	ESMPRO/ServerAgent NEC Multimedia OLAP for 映像分析サービス Active IQ Unified Manager Fedora BIND	NetApp の Active IQ Unified Manager 等複数ベンダの製品における脆弱性	CWE-noinfo 情報不足	CVE-2023-5679	2025-01-17 13:13	2023-10-20	Show	GitHub Exploit DB Packet Storm

1603	7.5	重要 Network	日本電気 Fedora Project NetApp ISC, Inc.	ESMPRO/ServerAgent NEC Multimedia OLAP for 映像分析サービス Active IQ Unified Manager Fedora BIND	NetApp の Active IQ Unified Manager 等複数ベンダの製品における到達可能なアサーションに関する脆弱性	CWE-617 CWE-617	CVE-2023-5517	2025-01-17 13:12	2023-10-11	Show	GitHub Exploit DB Packet Storm

1604	7.5	重要 Network	Fedora Project 日本電気 ISC, Inc.	NEC Multimedia OLAP for 映像分析サービス Fedora ESMPRO/ServerAgent BIND	NetApp の ONTAP (旧 Clustered Data ONTAP) 等複数ベンダの製品における脆弱性	CWE-noinfo 情報不足	CVE-2023-4408	2025-01-17 13:10	2023-08-18	Show	GitHub Exploit DB Packet Storm

1605	9.8	緊急 Network	Apache Software Foundation	Apache Struts	Apache Struts 2 における外部からアクセス可能なファイルの脆弱性 (S2-066)	CWE-552 外部からアクセス可能なファイルまたはディレクトリ	CVE-2023-50164	2025-01-17 12:58	2023-12-8	Show	GitHub Exploit DB Packet Storm

1606	9.8	緊急 Network	Apache Software Foundation	hertzbeat	Apache Software Foundation の hertzbeat におけるインジェクションに関する脆弱性	CWE-74 CWE-74	CVE-2023-51388	2025-01-17 12:08	2023-12-18	Show	GitHub Exploit DB Packet Storm

1607	9.8	緊急 Network	Ivanti	Avalanche	Ivanti の Avalanche におけるパストラバーサルの脆弱性	CWE-22 CWE-22 CWE-288	CVE-2024-13179	2025-01-17 12:08	2025-01-14	Show	GitHub Exploit DB Packet Storm

1608	5.4	警告 Network	Themeisle	Orbit Fox	ThemeIsle の WordPress 用 Orbit Fox におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-13183	2025-01-17 12:08	2025-01-10	Show	GitHub Exploit DB Packet Storm

1609	4.3	警告 Network	Progress Software Corporation	MOVEit Transfer	Progress Software Corporation の MOVEit Transfer における脆弱性	CWE-778 CWE-Other	CVE-2024-2291	2025-01-17 12:08	2024-03-20	Show	GitHub Exploit DB Packet Storm

1610	4.8	警告 Network	MantisBT Group	MantisBT	MantisBT Group の MantisBT におけるクロスサイトスクリプティングの脆弱性	CWE-79 CWE-79	CVE-2024-34081	2025-01-17 12:08	2024-05-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 8, 2025, 4:10 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
281131	-	starfish	truesync_desktop	Starfish Truesync Desktop 2.0b as used on the REX 5000 PDA does not encrypt sensitive files and relies solely on its password feature to restrict access, which allows an attacker to read the files us…	NVD-CWE-Other	CVE-2001-1006	2008-09-6 05:25	2001-08-31	Show	GitHub Exploit DB Packet Storm

281132	-	starfish	truesync_desktop	Starfish Truesync Desktop 2.0b as used on the REX 5000 PDA uses a small keyspace for device keys and does not impose a delay when an incorrect key is entered, which allows attackers to more quickly g…	NVD-CWE-Other	CVE-2001-1007	2008-09-6 05:25	2001-08-31	Show	GitHub Exploit DB Packet Storm

281133	-	sun	java_plug-in jre	Java Plugin 1.4 for JRE 1.3 executes signed applets even if the certificate is expired, which could allow remote attackers to conduct unauthorized activities via an applet that has been signed by an …	NVD-CWE-Other	CVE-2001-1008	2008-09-6 05:25	2001-08-31	Show	GitHub Exploit DB Packet Storm

281134	-	snes9x.com	snes9x	Buffer overflow in Snes9x 1.37, when installed setuid root, allows local users to gain root privileges via a long command line argument.	NVD-CWE-Other	CVE-2001-1015	2008-09-6 05:25	2001-10-16	Show	GitHub Exploit DB Packet Storm

281135	-	francisco_burzi	php-nuke	PHP-Nuke 5.x allows remote attackers to perform arbitrary SQL operations by modifying the "prefix" variable when calling any scripts that do not already define the prefix variable (e.g., by including…	NVD-CWE-Other	CVE-2001-1025	2008-09-6 05:25	2001-08-31	Show	GitHub Exploit DB Packet Storm

281136	-	redhat	linux	Buffer overflow in ultimate_source function of man 1.5 and earlier allows local users to gain privileges.	NVD-CWE-Other	CVE-2001-1028	2008-09-6 05:25	2001-05-28	Show	GitHub Exploit DB Packet Storm

281137	-	hp	jetadmin	The JetAdmin web interface for HP JetDirect does not set a password for the telnet interface when the admin password is changed, which allows remote attackers to gain access to the printer.	NVD-CWE-Other	CVE-2001-1039	2008-09-6 05:25	2001-08-31	Show	GitHub Exploit DB Packet Storm

281138	-	hp	jetadmin	HP LaserJet, and possibly other JetDirect devices, resets the admin password when the device is turned off, which could allow remote attackers to access the device without the password.	NVD-CWE-Other	CVE-2001-1040	2008-09-6 05:25	2001-08-31	Show	GitHub Exploit DB Packet Storm

281139	-	topher1kenobe	awol	AWOL PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.	NVD-CWE-Other	CVE-2001-1048	2008-09-6 05:25	2001-10-2	Show	GitHub Exploit DB Packet Storm

281140	-	ibm	aix	Vulnerability in lsmcode in unknown versions of AIX, possibly related to a usage error.	NVD-CWE-Other	CVE-2001-1061	2008-09-6 05:25	2001-08-31	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed