Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1661 8.8 重要
Local 		マイクロソフト Xbox Gaming Services XBox ゲーム サービスの特権昇格の脆弱性 CWE-59
CWE-noinfo
CVE-2024-28916 2025-01-16 18:02 2024-03-22 Show GitHub Exploit DB Packet Storm
1662 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における脆弱性 CWE-noinfo
情報不足 		CVE-2024-56786 2025-01-16 18:00 2024-11-1 Show GitHub Exploit DB Packet Storm
1663 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における脆弱性 CWE-noinfo
情報不足 		CVE-2024-56771 2025-01-16 17:58 2024-10-21 Show GitHub Exploit DB Packet Storm
1664 5.5 警告
Local 		マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows 10
Microsoft Windows Server&… 		Windows Remote Access Connection Manager の情報漏えいの脆弱性 CWE-125
CWE-126
CVE-2024-28900 2025-01-16 17:57 2024-04-9 Show GitHub Exploit DB Packet Storm
1665 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における脆弱性 CWE-noinfo
情報不足 		CVE-2024-56770 2025-01-16 17:57 2024-12-11 Show GitHub Exploit DB Packet Storm
1666 6.8 警告
Physics 		マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2008
Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Window… 		Windows rndismp6.sys のリモートでコードが実行される脆弱性 CWE-822
CWE-noinfo
CVE-2024-26252 2025-01-16 17:55 2024-04-9 Show GitHub Exploit DB Packet Storm
1667 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における脆弱性 CWE-noinfo
情報不足 		CVE-2024-56718 2025-01-16 17:54 2024-12-15 Show GitHub Exploit DB Packet Storm
1668 7.5 重要
Network 		マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2008
Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Window… 		Windows Kerberos の特権の昇格の脆弱性 CWE-303
CWE-noinfo
CVE-2024-26248 2025-01-16 17:53 2024-04-9 Show GitHub Exploit DB Packet Storm
1669 7.8 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における二重解放に関する脆弱性 CWE-415
二重解放 		CVE-2024-53213 2025-01-16 17:52 2024-11-24 Show GitHub Exploit DB Packet Storm
1670 7.8 重要
Local 		マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2008
Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Window… 		Win32k の特権の昇格の脆弱性 CWE-416
CWE-noinfo
CVE-2024-26241 2025-01-16 17:51 2024-04-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 9, 2025, 4:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
278521 - avaya sip_enablement_services
s8300
s8500
s8700 		Apache Tomcat in Avaya S87XX, S8500, and S8300 before CM 3.1.3, and Avaya SES allows connections from external interfaces via port 8009, which exposes it to attacks from outside parties. NVD-CWE-Other
CVE-2007-1491 2008-09-6 06:20 2007-03-17 Show GitHub Exploit DB Packet Storm
278522 - kde konqueror Konqueror 3.5.5 allows remote attackers to cause a denial of service (crash) by using JavaScript to read a child iframe having an ftp:// URI. NVD-CWE-Other
CVE-2007-1565 2008-09-6 06:20 2007-03-22 Show GitHub Exploit DB Packet Storm
278523 - realguestbook realguestbook Multiple cross-site scripting (XSS) vulnerabilities in realGuestbook 5.01, when register_globals is enabled, allow remote attackers to inject arbitrary web script or HTML via the (1) bg_color_1, (2) … NVD-CWE-Other
CVE-2007-1623 2008-09-6 06:20 2007-03-24 Show GitHub Exploit DB Packet Storm
278524 - linux linux_kernel Race condition in the tee (sys_tee) system call in the Linux kernel 2.6.17 through 2.6.17.6 might allow local users to cause a denial of service (system crash), obtain sensitive information (kernel m… CWE-362
Race Condition 		CVE-2007-0997 2008-09-6 06:19 2007-09-19 Show GitHub Exploit DB Packet Storm
278525 - trend_micro serverprotect The web interface in Trend Micro ServerProtect for Linux (SPLX) 1.25, 1.3, and 2.5 before 20070216 accepts logon requests through unencrypted HTTP, which might allow remote attackers to obtain creden… NVD-CWE-Other
CVE-2007-1169 2008-09-6 06:19 2007-03-3 Show GitHub Exploit DB Packet Storm
278526 - apple ichat
instant_message_framework
mdnsresponder 		The Bonjour functionality in mDNSResponder, iChat 3.1.6, and InstantMessage framework 428 in Apple Mac OS X 10.4.8 does not check for duplicate entries when adding newly discovered available contacts… NVD-CWE-Other
CVE-2007-0613 2008-09-6 06:18 2007-01-31 Show GitHub Exploit DB Packet Storm
278527 - apple ichat
instant_message_framework
mac_os_x 		The Bonjour functionality in mDNSResponder, iChat 3.1.6, and InstantMessage framework 428 in Apple Mac OS X 10.4.8 allows remote attackers to cause a denial of service (persistent application crash) … NVD-CWE-Other
CVE-2007-0614 2008-09-6 06:18 2007-01-31 Show GitHub Exploit DB Packet Storm
278528 - apple safari Format string vulnerability in Apple Safari 2.0.4 (419.3) allows remote user-assisted attackers to cause a denial of service (crash) via format string specifiers in filenames that are not properly ha… NVD-CWE-Other
CVE-2007-0644 2008-09-6 06:18 2007-02-1 Show GitHub Exploit DB Packet Storm
278529 - apple iphoto Format string vulnerability in iPhoto 6.0.5 allows remote user-assisted attackers to cause a denial of service (crash) via format string specifiers in a filename, which is not properly handled when c… NVD-CWE-Other
CVE-2007-0645 2008-09-6 06:18 2007-02-1 Show GitHub Exploit DB Packet Storm
278530 - apple mac_os_x Format string vulnerability in Help Viewer 3.0.0 allows remote user-assisted attackers to cause a denial of service (crash) via format string specifiers in a filename, which is not properly handled w… NVD-CWE-Other
CVE-2007-0647 2008-09-6 06:18 2007-02-1 Show GitHub Exploit DB Packet Storm