Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 18, 2025, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
161 9.8 緊急
Network 		Hitachi Energy FOXMAN-UN
UNEM 		Hitachi Energy の FOXMAN-UN および UNEM における脆弱性 Update CWE-noinfo
情報不足 		CVE-2024-2012 2025-01-17 15:25 2024-06-11 Show GitHub Exploit DB Packet Storm
162 10 緊急
Network 		Hitachi Energy FOXMAN-UN
UNEM 		Hitachi Energy の FOXMAN-UN および UNEM における重要な機能に対する認証の欠如に関する脆弱性 Update CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2024-2013 2025-01-17 15:22 2024-06-11 Show GitHub Exploit DB Packet Storm
163 7.5 重要
Network 		マイクロソフト Microsoft SharePoint Server
Microsoft SharePoint Enterprise Server 		Microsoft SharePoint Server の情報漏えいの脆弱性 New CWE-611
CWE-noinfo
CVE-2024-30043 2025-01-17 15:21 2024-05-14 Show GitHub Exploit DB Packet Storm
164 5.5 警告
Local 		マイクロソフト Microsoft Windows Server 2008
Microsoft Windows Server 2022
Microsoft Windows 11
Microsoft Windows Server 2019
Microsoft Window… 		Windows 共通ログ ファイル システム ドライバーの特権の昇格の脆弱性 New CWE-125
CWE-noinfo
CVE-2024-30037 2025-01-17 15:20 2024-05-14 Show GitHub Exploit DB Packet Storm
165 7.8 重要
Local 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows 11
Microsoft Windows Server 2019
Microsoft Windows Server 2016
Microsoft Window… 		Windows DWM Core ライブラリの特権の昇格の脆弱性 New CWE-416
CWE-noinfo
CVE-2024-30032 2025-01-17 15:08 2024-05-14 Show GitHub Exploit DB Packet Storm
166 7.8 重要
Local 		マイクロソフト Microsoft Windows Server 2008
Microsoft Windows Server 2022
Microsoft Windows 11
Microsoft Windows Server 2019
Microsoft Window… 		Win32k の特権の昇格の脆弱性 New CWE-416
CWE-noinfo
CVE-2024-30028 2025-01-17 15:02 2024-05-14 Show GitHub Exploit DB Packet Storm
167 7.8 重要
Local 		Progress Software Corporation telerik reporting Progress Software Corporation の telerik reporting における信頼できないデータのデシリアライゼーションに関する脆弱性 New CWE-502
CWE-502
CVE-2024-1801 2025-01-17 15:01 2024-03-20 Show GitHub Exploit DB Packet Storm
168 5.9 警告
Network 		Devolutions Devolutions Remote Desktop Manager Devolutions の Devolutions Remote Desktop Manager における不完全なクリーンアップに関する脆弱性 New CWE-459
不完全なクリーンアップ 		CVE-2024-2403 2025-01-17 15:01 2024-03-13 Show GitHub Exploit DB Packet Storm
169 5.4 警告
Network 		Wpmet ElementsKit Elementor addons Wpmet の WordPress 用 ElementsKit Elementor addons におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-3650 2025-01-17 15:01 2024-05-2 Show GitHub Exploit DB Packet Storm
170 7.8 重要
Local 		Progress Software Corporation telerik reporting Progress Software Corporation の telerik reporting における信頼できないデータのデシリアライゼーションに関する脆弱性 New CWE-502
CWE-502
CVE-2024-4200 2025-01-17 15:00 2024-05-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 18, 2025, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
278571 - linksys befvp41 VPN Server module in Linksys EtherFast BEFVP41 Cable/DSL VPN Router before 1.40.1 reduces the key lengths for keys that are supplied via manual key entry, which makes it easier for attackers to crack… NVD-CWE-Other
CVE-2002-0426 2008-09-6 05:27 2002-08-12 Show GitHub Exploit DB Packet Storm
278572 - christof_pohl improved_mod_frontpage Buffer overflows in fpexec in mod_frontpage before 1.6.1 may allow attackers to gain root privileges. NVD-CWE-Other
CVE-2002-0427 2008-09-6 05:27 2002-08-12 Show GitHub Exploit DB Packet Storm
278573 - les_vanbrunt adrotate_pro get_input in adrotate.pm for Les VanBrunt AdRotate Pro 2.0 allows remote attackers to modify the database and possibly execute arbitrary commands via a SQL code injection attack. NVD-CWE-Other
CVE-2001-1224 2008-09-6 05:26 2001-12-23 Show GitHub Exploit DB Packet Storm
278574 - hughes msql Hughes Technology Mini SQL 2.0.10 through 2.0.12 allows local users to cause a denial of service by creating a very large array in a table, which causes miniSQL to crash when the table is queried. NVD-CWE-Other
CVE-2001-1225 2008-09-6 05:26 2001-12-26 Show GitHub Exploit DB Packet Storm
278575 - adcycle adcycle AdCycle 1.17 and earlier allow remote attackers to modify SQL queries, which are not properly sanitized before being passed to the MySQL database. NVD-CWE-Other
CVE-2001-1226 2008-09-6 05:26 2001-12-25 Show GitHub Exploit DB Packet Storm
278576 - gallery_project gallery Bharat Mediratta Gallery PHP script before 1.2.1 allows remote attackers to execute arbitrary code by including files from remote web sites via an HTTP request that modifies the includedir variable. NVD-CWE-Other
CVE-2001-1234 2008-09-6 05:26 2001-10-2 Show GitHub Exploit DB Packet Storm
278577 - engardelinux secure_linux The default configuration of sudo in Engarde Secure Linux 1.0.1 allows any user in the admin group to run certain commands that could be leveraged to gain full root access. NVD-CWE-Other
CVE-2001-1240 2008-09-6 05:26 2001-07-11 Show GitHub Exploit DB Packet Storm
278578 - opera_software opera_web_browser Opera 5.0 for Linux does not properly handle malformed HTTP headers, which allows remote attackers to cause a denial of service, possibly with a header whose value is the same as a MIME header name. NVD-CWE-Other
CVE-2001-1245 2008-09-6 05:26 2001-07-9 Show GitHub Exploit DB Packet Storm
278579 - com2001 alexis_server Alexis 2.0 and 2.1 in COM2001 InternetPBX stores voicemail passwords in plain text in the com2001.ini file, which could allow local users to make long distance calls as other users. NVD-CWE-Other
CVE-2001-1253 2008-09-6 05:26 2001-09-27 Show GitHub Exploit DB Packet Storm
278580 - avaya argent_office Avaya Argent Office allows remote attackers to cause a denial of service by sending UDP packets to port 53 with no payload. NVD-CWE-Other
CVE-2001-1259 2008-09-6 05:26 2001-08-7 Show GitHub Exploit DB Packet Storm