Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 17, 2025, 6:04 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
171	7.8	重要 Local	Debian Linux	Linux Kernel Debian GNU/Linux	Linux の Linux Kernel 等複数ベンダの製品における二重解放に関する脆弱性 New	CWE-415 二重解放	CVE-2024-26704	2025-01-17 09:44	2024-01-18	Show	GitHub Exploit DB Packet Storm

172	7.8	重要 Local	Debian Linux	Linux Kernel Debian GNU/Linux	Linux の Linux Kernel 等複数ベンダの製品における解放済みメモリの使用に関する脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2024-27396	2025-01-17 09:44	2024-04-24	Show	GitHub Exploit DB Packet Storm

173	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2024-53171	2025-01-17 09:44	2024-11-14	Show	GitHub Exploit DB Packet Storm

174	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性 New	CWE-416 解放済みメモリの使用	CVE-2024-56604	2025-01-17 09:44	2024-10-15	Show	GitHub Exploit DB Packet Storm

175	4.3	警告 Network	IBM	IBM InfoSphere Information Server	IBM の IBM InfoSphere Information Server におけるエラーメッセージによる情報漏えいに関する脆弱性 New	CWE-209 エラーメッセージによる情報漏えい	CVE-2024-51460	2025-01-17 08:52	2024-12-5	Show	GitHub Exploit DB Packet Storm

176	6.8	警告 Physics	Huawei	Yale-AL50A ファームウェア Princeton-AL10D ファームウェア P30 Pro ファームウェア Yale-AL00A ファームウェア Mate 20 ファームウェア P30 ファームウェア YaleP-AL10B ファームウェア	複数の Huawei 製品における不正な認証に関する脆弱性 New	CWE-285 CWE-863	CVE-2020-9081	2025-01-16 18:13	2020-02-18	Show	GitHub Exploit DB Packet Storm

177	7.5	重要 Network	マイクロソフト	Microsoft Copilot Studio	Copilot Studio の情報漏えいの脆弱性 New	CWE-200 CWE-noinfo	CVE-2024-43610	2025-01-16 18:08	2024-10-8	Show	GitHub Exploit DB Packet Storm

178	7.5	重要 Adjacent	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows Server 2022 Microsoft Windows Server 2019 Microsoft Windows 10 Microsoft Window…	Windows Hyper-V のリモートでコードが実行される脆弱性 New	CWE-20 CWE-829 CWE-noinfo	CVE-2024-30092	2025-01-16 18:05	2024-10-8	Show	GitHub Exploit DB Packet Storm

179	4.1	警告 Physics	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows Server 2022 Microsoft Windows Server 2019 Microsoft Windows 10 Microsoft Window…	セキュアブートのセキュリティ機能のバイパスの脆弱性 New	CWE-284 CWE-noinfo	CVE-2024-28922	2025-01-16 18:05	2024-04-9	Show	GitHub Exploit DB Packet Storm

180	8.8	重要 Local	マイクロソフト	Xbox Gaming Services	XBox ゲームサービスの特権昇格の脆弱性 New	CWE-59 CWE-noinfo	CVE-2024-28916	2025-01-16 18:02	2024-03-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 18, 2025, 4:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
275271	-	ipswitch	imail	The webmail interface for Ipswitch IMail 7.04 and earlier allows remote authenticated users to cause a denial of service (crash) via a mailbox name that contains a large number of . (dot) or other ch…	NVD-CWE-Other	CVE-2001-1283	2008-09-11 04:10	2001-10-12	Show	GitHub Exploit DB Packet Storm

275272	-	ipswitch	imail	Ipswitch IMail 7.04 and earlier uses predictable session IDs for authentication, which allows remote attackers to hijack sessions of other users.	NVD-CWE-Other	CVE-2001-1284	2008-09-11 04:10	2001-10-12	Show	GitHub Exploit DB Packet Storm

275273	-	ipswitch	imail	Directory traversal vulnerability in readmail.cgi for Ipswitch IMail 7.04 and earlier allows remote attackers to access the mailboxes of other users via a .. (dot dot) in the mbx parameter.	NVD-CWE-Other	CVE-2001-1285	2008-09-11 04:10	2001-10-12	Show	GitHub Exploit DB Packet Storm

275274	-	ipswitch	imail	Ipswitch IMail 7.04 and earlier stores a user's session ID in a URL, which could allow remote attackers to hijack sessions by obtaining the URL, e.g. via an HTML email that causes the Referrer to be …	NVD-CWE-Other	CVE-2001-1286	2008-09-11 04:10	2001-10-12	Show	GitHub Exploit DB Packet Storm

275275	-	ipswitch	imail	Buffer overflow in Web Calendar in Ipswitch IMail 7.04 and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request.	NVD-CWE-Other	CVE-2001-1287	2008-09-11 04:10	2001-10-12	Show	GitHub Exploit DB Packet Storm

275276	-	id_software	quake_3_arena	Quake 3 arena 1.29f and 1.29g allows remote attackers to cause a denial of service (crash) via a malformed connection packet that begins with several char-255 characters.	NVD-CWE-Other	CVE-2001-1289	2008-09-11 04:10	2001-07-29	Show	GitHub Exploit DB Packet Storm

275277	-	3com	3cr29223	Buffer overflow in web server of 3com HomeConnect Cable Modem External with USB (#3CR29223) allows remote attackers to cause a denial of service (crash) via a long HTTP request.	NVD-CWE-Other	CVE-2001-1293	2008-09-11 04:10	2001-09-26	Show	GitHub Exploit DB Packet Storm

275278	-	avtronics	inetserv	Buffer overflow in A-V Tronics Inetserv 3.2.1 and earlier allows remote attackers to cause a denial of service (crash) in the Webmail interface via a long username and password.	NVD-CWE-Other	CVE-2001-1294	2008-09-11 04:10	2001-08-22	Show	GitHub Exploit DB Packet Storm

275279	-	marc_logemann	more.groupware	More.groupware PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.	NVD-CWE-Other	CVE-2001-1296	2008-09-11 04:10	2001-10-2	Show	GitHub Exploit DB Packet Storm

275280	-	actionpoll	actionpoll	PHP remote file inclusion vulnerability in Actionpoll PHP script before 1.1.2 allows remote attackers to execute arbitrary PHP code via a URL in the includedir parameter.	NVD-CWE-Other	CVE-2001-1297	2008-09-11 04:10	2001-10-2	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed