Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1701 4.3 警告
Network 		DesDev Inc. DedeCMS DesDev Inc. の DedeCMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2024-4587 2025-01-16 17:12 2024-05-7 Show GitHub Exploit DB Packet Storm
1702 7.1 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2024-36935 2025-01-16 17:12 2024-04-25 Show GitHub Exploit DB Packet Storm
1703 9.8 緊急
Network 		IBM IBM Cognos Controller IBM の IBM Cognos Controller における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2023-38724 2025-01-16 17:12 2023-07-25 Show GitHub Exploit DB Packet Storm
1704 8.8 重要
Network 		IBM IBM Security Guardium IBM の IBM Security Guardium における OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2023-47709 2025-01-16 17:12 2023-11-9 Show GitHub Exploit DB Packet Storm
1705 5.9 警告
Network 		Huawei HarmonyOS Huawei の HarmonyOS における競合状態に関する脆弱性 CWE-362
CWE-362
CVE-2024-54102 2025-01-16 17:12 2024-12-12 Show GitHub Exploit DB Packet Storm
1706 7.5 重要
Network 		マイクロソフト Microsoft SQL Server
Microsoft OLE DB Driver 		SQL Server 用 Microsoft OLE DB ドライバーのリモートでコードが実行される脆弱性 CWE-121
CWE-noinfo
CVE-2024-29045 2025-01-16 17:09 2024-04-9 Show GitHub Exploit DB Packet Storm
1707 8.8 重要
Network 		マイクロソフト Microsoft SQL Server
Microsoft OLE DB Driver 		SQL Server 用 Microsoft OLE DB ドライバーのリモートでコードが実行される脆弱性 CWE-190
CWE-noinfo
CVE-2024-28942 2025-01-16 17:05 2024-04-9 Show GitHub Exploit DB Packet Storm
1708 8.8 重要
Network 		マイクロソフト Microsoft SQL Server
Microsoft OLE DB Driver 		SQL Server 用 Microsoft OLE DB ドライバーのリモートでコードが実行される脆弱性 CWE-122
CWE-noinfo
CVE-2024-29048 2025-01-16 17:02 2024-04-9 Show GitHub Exploit DB Packet Storm
1709 8.8 重要
Network 		マイクロソフト Microsoft SQL Server
Microsoft OLE DB Driver 		SQL Server 用 Microsoft OLE DB ドライバーのリモートでコードが実行される脆弱性 CWE-122
CWE-noinfo
CVE-2024-29983 2025-01-16 17:00 2024-04-9 Show GitHub Exploit DB Packet Storm
1710 8.8 重要
Network 		マイクロソフト Microsoft SQL Server
Microsoft OLE DB Driver 		SQL Server 用 Microsoft OLE DB ドライバーのリモートでコードが実行される脆弱性 CWE-122
CWE-noinfo
CVE-2024-29985 2025-01-16 16:58 2024-04-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 19, 2025, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
278761 - apple mac_os_x
mac_os_x_server 		The PKI functionality in Mac OS X 10.2.8 and 10.3.2 allows remote attackers to cause a denial of service (service crash) via malformed ASN.1 sequences. NVD-CWE-Other
CVE-2003-1005 2008-09-11 04:21 2003-12-31 Show GitHub Exploit DB Packet Storm
278762 - linux linux_kernel Integer signedness error in the Linux Socket Filter implementation (filter.c) in Linux 2.4.3-pre3 to 2.4.22-pre10 allows attackers to cause a denial of service (crash). NVD-CWE-Other
CVE-2003-0643 2008-09-11 04:20 2003-07-25 Show GitHub Exploit DB Packet Storm
278763 - trend_micro damage_cleanup_server
housecall 		Multiple buffer overflows in ActiveX controls used by Trend Micro HouseCall 5.5 and 5.7, and Damage Cleanup Server 1.0, allow remote attackers to execute arbitrary code via long parameter strings. NVD-CWE-Other
CVE-2003-0646 2008-09-11 04:20 2003-08-27 Show GitHub Exploit DB Packet Storm
278764 - cisco ios Buffer overflow in the HTTP server for Cisco IOS 12.2 and earlier allows remote attackers to execute arbitrary code via an extremely long (2GB) HTTP GET request. NVD-CWE-Other
CVE-2003-0647 2008-09-11 04:20 2003-08-27 Show GitHub Exploit DB Packet Storm
278765 - xpcd xpcd Buffer overflow in xpcd-svga for xpcd 2.08 and earlier allows local users to execute arbitrary code via a long HOME environment variable. NVD-CWE-Other
CVE-2003-0649 2008-09-11 04:20 2003-08-27 Show GitHub Exploit DB Packet Storm
278766 - netbsd netbsd The OSI networking kernel (sys/netiso) in NetBSD 1.6.1 and earlier does not use a BSD-required "PKTHDR" mbuf when sending certain error responses to the sender of an OSI packet, which allows remote a… NVD-CWE-Other
CVE-2003-0653 2008-09-11 04:20 2003-08-27 Show GitHub Exploit DB Packet Storm
278767 - autorespond autorespond Buffer overflow in autorespond may allow remote attackers to execute arbitrary code as the autorespond user via qmail. NVD-CWE-Other
CVE-2003-0654 2008-09-11 04:20 2003-08-27 Show GitHub Exploit DB Packet Storm
278768 - sustainable_softworks ipnetmonitorx
ipnetsentryx 		Sustworks IPNetSentryX and IPNetMonitorX allow local users to sniff network packets via the setuid helper applications (1) RunTCPDump, which calls tcpdump, and (2) RunTCPFlow, which calls tcpflow. NVD-CWE-Other
CVE-2003-0670 2008-09-11 04:20 2003-08-27 Show GitHub Exploit DB Packet Storm
278769 - jeremy_elson tcpflow Format string vulnerability in tcpflow, when used in a setuid context, allows local users to execute arbitrary code via the device name argument, as demonstrated in Sustworks IPNetSentryX and IPNetMo… NVD-CWE-Other
CVE-2003-0671 2008-09-11 04:20 2003-08-27 Show GitHub Exploit DB Packet Storm
278770 - leon_j_breedt pam-pgsql Format string vulnerability in pam-pgsql 0.5.2 and earlier allows remote attackers to execute arbitrary code via the username that isp rovided during authentication, which is not properly handled whe… NVD-CWE-Other
CVE-2003-0672 2008-09-11 04:20 2003-08-27 Show GitHub Exploit DB Packet Storm