Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 13, 2025, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
171 7.5 重要
Network 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows Server 2012
Microsoft Windows Server 2016
Microsoft Windows Server 2008
Microso… 		DHCP Server サービスのサービス拒否の脆弱性 CWE-400
CWE-noinfo
CVE-2024-26215 2025-01-10 10:59 2024-04-9 Show GitHub Exploit DB Packet Storm
172 8.8 重要
Network 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows 11
Microsoft Windows Server 2012
Microsoft Windows Server 2016
Microsoft Window… 		Windows ルーティングとリモート アクセス サービス (RRAS) のリモートでコードが実行される脆弱性 CWE-122
CWE-noinfo
CVE-2024-26200 2025-01-10 10:54 2024-04-9 Show GitHub Exploit DB Packet Storm
173 7.2 重要
Network 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows Server 2012
Microsoft Windows Server 2016
Microsoft Windows Server 2008
Microso… 		DHCP Server Service のリモートでコードが実行される脆弱性 CWE-122
CWE-noinfo
CVE-2024-26195 2025-01-10 10:51 2024-04-9 Show GitHub Exploit DB Packet Storm
174 7.1 重要
Adjacent 		マイクロソフト Microsoft Windows Server 2012 セキュア ブートのセキュリティ機能のバイパスの脆弱性 CWE-121
CWE-noinfo
CVE-2024-20688 2025-01-10 10:48 2024-04-9 Show GitHub Exploit DB Packet Storm
175 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel におけるリソースの不適切なシャットダウンおよびリリースに関する脆弱性 CWE-404
リソースの不適切なシャットダウンおよびリリース 		CVE-2024-56757 2025-01-10 10:45 2024-11-14 Show GitHub Exploit DB Packet Storm
176 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel におけるリソースのロックに関する脆弱性 CWE-667
不適切なロック 		CVE-2024-56744 2025-01-10 10:42 2024-11-1 Show GitHub Exploit DB Packet Storm
177 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2024-56620 2025-01-10 10:40 2024-11-20 Show GitHub Exploit DB Packet Storm
178 7.8 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2024-56614 2025-01-10 10:39 2024-11-25 Show GitHub Exploit DB Packet Storm
179 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如 		CVE-2024-56613 2025-01-10 10:37 2024-12-5 Show GitHub Exploit DB Packet Storm
180 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2024-56593 2025-01-10 10:35 2024-11-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 13, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
261 - - - An OS Command Injection vulnerability was found in /landrecordsys/admin/dashboard.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the "Cookie" G… New - CVE-2024-57687 2025-01-11 01:15 2025-01-10 Show GitHub Exploit DB Packet Storm
262 - - - Cross Site Scripting vulnerability in LinZhaoguan pb-cms v.2.0 allows a remote attacker to execute arbitrary code via the theme management function. New - CVE-2024-51229 2025-01-11 01:15 2025-01-10 Show GitHub Exploit DB Packet Storm
263 - - - Ruoyi v.4.7.9 and before contains an authenticated SQL injection vulnerability. This is because the filterKeyword method does not completely filter SQL injection keywords, resulting in the risk of SQ… New - CVE-2024-54762 2025-01-11 01:15 2025-01-10 Show GitHub Exploit DB Packet Storm
264 - - - BigAnt Office Messenger 5.6.06 is vulnerable to SQL Injection via the 'dev_code' parameter. New - CVE-2024-54761 2025-01-11 01:15 2025-01-10 Show GitHub Exploit DB Packet Storm
265 5.5 MEDIUM
Local 		qualcomm ar8035_firmware
c-v2x_9150_firmware
csrb31024_firmware
fastconnect_6800_firmware
fastconnect_6900_firmware
fastconnect_7800_firmware
msm8996au_firmware
qam8295p_firmware
qca63… 		Information disclosure while invoking callback function of sound model driver from ADSP for every valid opcode received from sound model driver. Update CWE-125
Out-of-bounds Read 		CVE-2024-33067 2025-01-11 00:39 2025-01-6 Show GitHub Exploit DB Packet Storm
266 5.5 MEDIUM
Local 		qualcomm qam8255p_firmware
qam8295p_firmware
qam8650p_firmware
qam8775p_firmware
qamsrv1h_firmware
qca6595_firmware
qca6595au_firmware
qca6696_firmware
qca6698aq_firmware
sa8255p_fi… 		information disclosure while invoking the mailbox read API. Update CWE-125
Out-of-bounds Read 		CVE-2024-43063 2025-01-11 00:37 2025-01-6 Show GitHub Exploit DB Packet Storm
267 7.8 HIGH
Local 		google android In DevmemIntMapPages of devicemem_server.c, there is a possible physical page uaf due to a logic error in the code. This could lead to local escalation of privilege in the kernel with no additional e… Update NVD-CWE-noinfo
CVE-2023-35685 2025-01-11 00:30 2025-01-9 Show GitHub Exploit DB Packet Storm
268 - - - Tenda ac9 v1.0 firmware v15.03.05.19 contains a stack overflow vulnerability in /goform/SetOnlineDevName, which may lead to remote arbitrary code execution. New - CVE-2025-22946 2025-01-11 00:15 2025-01-11 Show GitHub Exploit DB Packet Storm
269 - - - A Cross Site Scripting (XSS) vulnerability was found in /landrecordsys/admin/contactus.php in PHPGurukul Land Record System v1.0, which allows remote attackers to execute arbitrary code via the "page… New - CVE-2024-57686 2025-01-11 00:15 2025-01-10 Show GitHub Exploit DB Packet Storm
270 - - - In Raptor RDF Syntax Library through 2.0.16, there is a heap-based buffer over-read when parsing triples with the nquads parser in raptor_ntriples_parse_term_internal(). New - CVE-2024-57822 2025-01-11 00:15 2025-01-10 Show GitHub Exploit DB Packet Storm