Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 10, 2025, 6:04 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
161	3.3	低 Local	Linux	Linux Kernel	Linux の Linux Kernel における脆弱性 New	CWE-noinfo 情報不足	CVE-2021-46971	2025-01-10 10:20	2021-03-16	Show	GitHub Exploit DB Packet Storm

162	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2021-46969	2025-01-10 10:16	2021-03-10	Show	GitHub Exploit DB Packet Storm

163	4.3	警告 Network	IBM	IBM App Connect Enterprise	IBM の IBM App Connect Enterprise における有効期限後または解放後のリソースの操作に関する脆弱性 New	CWE-324 CWE-672	CVE-2024-31894	2025-01-10 10:05	2024-05-22	Show	GitHub Exploit DB Packet Storm

164	5.4	警告 Network	IBM	IBM Planning Analytics Local	IBM の IBM Planning Analytics Local におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-31907	2025-01-10 10:05	2024-05-30	Show	GitHub Exploit DB Packet Storm

165	3.3	低 Local	IBM	IBM Aspera Console	IBM の IBM Aspera Console における脆弱性 New	CWE-525 CWE-Other	CVE-2022-43841	2025-01-10 10:04	2022-10-26	Show	GitHub Exploit DB Packet Storm

166	5.4	警告 Network	BoldThemes	Bold Page Builder	BoldThemes の WordPress 用 Bold Page Builder におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-2736	2025-01-9 18:24	2024-04-10	Show	GitHub Exploit DB Packet Storm

167	5.4	警告 Network	BoldThemes	Bold Page Builder	BoldThemes の WordPress 用 Bold Page Builder におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-3267	2025-01-9 18:24	2024-04-9	Show	GitHub Exploit DB Packet Storm

168	4.3	警告 Network	Leap13	Premium Addons for Elementor	Leap13 の WordPress 用 Premium Addons for Elementor における認証の欠如に関する脆弱性 New	CWE-862 CWE-862	CVE-2024-6824	2025-01-9 18:24	2024-08-8	Show	GitHub Exploit DB Packet Storm

169	5.4	警告 Network	WPDeveloper	Essential Addons for Elementor	WPDeveloper の WordPress 用 Essential Addons for Elementor におけるクロスサイトスクリプティングの脆弱性 New	CWE-79 CWE-79	CVE-2024-7092	2025-01-9 18:24	2024-08-13	Show	GitHub Exploit DB Packet Storm

170	9.9	緊急 Network	Esri	Portal for ArcGIS	Esri の Portal for ArcGIS におけるパストラバーサルの脆弱性 New	CWE-22 パス・トラバーサル	CVE-2024-25693	2025-01-9 18:24	2024-04-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 11, 2025, 5:03 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
51	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/sti: avoid potential dereference of error pointers The return value of drm_atomic_get_crtc_state() needs to be checked. To av… New	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2024-56776	2025-01-10 06:41	2025-01-9	Show	GitHub Exploit DB Packet Storm

52	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix handling of plane refcount [Why] The mechanism to backup and restore plane states doesn't maintain refcount,… New	CWE-415 CWE-401 Double Free Missing Release of Memory after Effective Lifetime	CVE-2024-56775	2025-01-10 06:37	2025-01-9	Show	GitHub Exploit DB Packet Storm

53	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: soc: imx8m: Probe the SoC driver as platform driver With driver_async_probe=* on kernel command line, the following trace is prod… New	NVD-CWE-noinfo	CVE-2024-56787	2025-01-10 06:28	2025-01-9	Show	GitHub Exploit DB Packet Storm

54	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: MIPS: Loongson64: DTS: Really fix PCIe port nodes for ls7a Fix the dtc warnings: arch/mips/boot/dts/loongson/ls7a-pch.dtsi:6… New	NVD-CWE-noinfo	CVE-2024-56785	2025-01-10 06:27	2025-01-9	Show	GitHub Exploit DB Packet Storm

55	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Adding array index check to prevent memory corruption [Why & How] Array indices out of bound caused memory corru… New	CWE-787 Out-of-bounds Write	CVE-2024-56784	2025-01-10 06:25	2025-01-9	Show	GitHub Exploit DB Packet Storm

56	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_socket: remove WARN_ON_ONCE on maximum cgroup level cgroup maximum depth is INT_MAX by default, there is a cgroup … New	CWE-617 Reachable Assertion	CVE-2024-56783	2025-01-10 06:24	2025-01-9	Show	GitHub Exploit DB Packet Storm

57	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: powerpc/prom_init: Fixup missing powermac #size-cells On some powermacs `escc` nodes are missing `#size-cells` properties, which … New	NVD-CWE-noinfo	CVE-2024-56781	2025-01-10 06:21	2025-01-9	Show	GitHub Exploit DB Packet Storm

58	-		-	-	Vaultwarden v1.32.5 was discovered to contain an authenticated reflected cross-site scripting (XSS) vulnerability via the component /api/core/mod.rs. New	-	CVE-2024-55226	2025-01-10 06:15	2025-01-10	Show	GitHub Exploit DB Packet Storm

59	-		-	-	An issue in the component src/api/identity.rs of Vaultwarden prior to v1.32.5 allows attackers to impersonate users, including Administrators, via a crafted authorization request. New	-	CVE-2024-55225	2025-01-10 06:15	2025-01-10	Show	GitHub Exploit DB Packet Storm

60	-		-	-	An HTML injection vulnerability in Vaultwarden prior to v1.32.5 allows attackers to execute arbitrary code via injecting a crafted payload into the username field of an e-mail message. New	-	CVE-2024-55224	2025-01-10 06:15	2025-01-10	Show	GitHub Exploit DB Packet Storm