Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1771	4.7	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における Time-of-check Time-of-use (TOCTOU) 競合状態の脆弱性	CWE-367 Time-of-check Time-of-use (TOCTOU) 競合状態	CVE-2023-52478	2025-01-16 14:48	2023-10-6	Show	GitHub Exploit DB Packet Storm

1772	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における二重解放に関する脆弱性	CWE-415 CWE-416	CVE-2023-52851	2025-01-16 14:48	2023-10-31	Show	GitHub Exploit DB Packet Storm

1773	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel におけるリソースのロックに関する脆弱性	CWE-667 不適切なロック	CVE-2024-35786	2025-01-16 14:48	2024-03-5	Show	GitHub Exploit DB Packet Storm

1774	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel におけるリソースのロックに関する脆弱性	CWE-667 不適切なロック	CVE-2024-36882	2025-01-16 14:48	2024-05-5	Show	GitHub Exploit DB Packet Storm

1775	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel におけるリソースのロックに関する脆弱性	CWE-667 不適切なロック	CVE-2024-36924	2025-01-16 14:48	2024-03-10	Show	GitHub Exploit DB Packet Storm

1776	7.8	重要 Local	Debian Linux	Linux Kernel Debian GNU/Linux	Linux の Linux Kernel 等複数ベンダの製品における二重解放に関する脆弱性	CWE-415 二重解放	CVE-2024-36940	2025-01-16 14:48	2024-03-29	Show	GitHub Exploit DB Packet Storm

1777	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における入力で指定された数量の不適切な検証に関する脆弱性	CWE-1284 入力で指定された数量の不適切な検証	CVE-2024-56716	2025-01-16 14:48	2024-12-15	Show	GitHub Exploit DB Packet Storm

1778	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における脆弱性	CWE-noinfo 情報不足	CVE-2024-56717	2025-01-16 14:48	2024-12-15	Show	GitHub Exploit DB Packet Storm

1779	9.8	緊急 Network	IDocView	IDocView	IDocView におけるコマンドインジェクションの脆弱性	CWE-77 CWE-77	CVE-2024-24377	2025-01-16 14:42	2024-02-16	Show	GitHub Exploit DB Packet Storm

1780	6.1	警告 Network	WPDeveloper	Essential Addons for Elementor	WPDeveloper の WordPress 用 Essential Addons for Elementor におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-4448	2025-01-16 14:42	2024-05-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 13, 2025, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
191	-		-	-	DNNGo xBlog v6.5.0 was discovered to contain a SQL injection vulnerability via the Categorys parameter at /DNNGo_xBlog/Resource_Service.aspx. New	-	CVE-2024-55212	2025-02-12 07:15	2025-02-12	Show	GitHub Exploit DB Packet Storm

192	-		-	-	An issue in the BdApiUtil driver of Baidu Antivirus v5.2.3.116083 allows attackers to terminate arbitrary process via executing a BYOVD (Bring Your Own Vulnerable Driver) attack. New	-	CVE-2024-51324	2025-02-12 07:15	2025-02-12	Show	GitHub Exploit DB Packet Storm

193	-		-	-	GeoNetwork is a catalog application to manage spatially referenced resources. In versions prior to 4.2.10 and 4.4.5, the search end-point response headers contain information about Elasticsearch soft… New	CWE-200 Information Exposure	CVE-2024-32037	2025-02-12 07:15	2025-02-12	Show	GitHub Exploit DB Packet Storm

194	-		-	-	Improper access control in the DRTM firmware could allow a privileged attacker to perform multiple driver initializations, resulting in stack memory corruption that could potentially lead to loss of … New	-	CVE-2023-31331	2025-02-12 07:15	2025-02-12	Show	GitHub Exploit DB Packet Storm

195	-		-	-	Improper handling of invalid nested page table entries in the IOMMU may allow a privileged attacker to induce page table entry (PTE) faults to bypass RMP checks in SEV-SNP, potentially leading to a l… New	-	CVE-2023-20582	2025-02-12 07:15	2025-02-12	Show	GitHub Exploit DB Packet Storm

196	-		-	-	Improper access control in the IOMMU may allow a privileged attacker to bypass RMP checks, potentially leading to a loss of guest memory integrity. New	-	CVE-2023-20581	2025-02-12 07:15	2025-02-12	Show	GitHub Exploit DB Packet Storm

197	-		-	-	Improper access control in the fTPM driver in the trusted OS could allow a privileged attacker to corrupt system memory, potentially leading to loss of integrity, confidentiality, or availability. New	-	CVE-2023-20515	2025-02-12 07:15	2025-02-12	Show	GitHub Exploit DB Packet Storm

198	5.4	MEDIUM Network	-	-	A flaw was found in npm-serialize-javascript. The vulnerability occurs because the serialize-javascript module does not properly sanitize certain inputs, such as regex or other JavaScript object type… New	-	CVE-2024-11831	2025-02-12 07:15	2025-02-11	Show	GitHub Exploit DB Packet Storm

199	-		-	-	The Platform component of Mitel OpenScape 4000 and OpenScape 4000 Manager V11 R0.22.0 through V11 R0.22.1, V10 R1.54.0 through V10 R1.54.1, and V10 R1.42.6 and earlier could allow an unauthenticated … Update	-	CVE-2025-23094	2025-02-12 07:15	2025-02-7	Show	GitHub Exploit DB Packet Storm

200	-		-	-	NetMod VPN Client 5.3.1 is vulnerable to DLL injection, allowing an attacker to execute arbitrary code by placing a malicious DLL in a directory where the application loads dependencies. This vulnera… Update	-	CVE-2024-57426	2025-02-12 07:15	2025-02-7	Show	GitHub Exploit DB Packet Storm