Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
187181 4 警告 Mozilla Foundation - Bugzilla の Bugzilla/WebService/User.pm におけるプライベートグループ名を見つけられる脆弱性 CWE-200
情報漏えい 		CVE-2012-4198 2012-11-19 14:50 2012-11-13 Show GitHub Exploit DB Packet Storm
187182 5 警告 Mozilla Foundation - Bugzilla の attachment.cgi における添付された詳細を読まれる脆弱性 CWE-200
情報漏えい 		CVE-2012-4197 2012-11-19 14:38 2012-11-13 Show GitHub Exploit DB Packet Storm
187183 4.3 警告 Mozilla Foundation - Bugzilla におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4189 2012-11-19 14:18 2012-11-13 Show GitHub Exploit DB Packet Storm
187184 6.8 警告 PHOME.NET - EmpireCMS の e/class/connect.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-5777 2012-11-19 14:04 2012-11-16 Show GitHub Exploit DB Packet Storm
187185 5.5 警告 MantisBT Group - MantisBT の core/email_api.php における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5523 2012-11-19 13:56 2012-11-9 Show GitHub Exploit DB Packet Storm
187186 5.5 警告 MantisBT Group - MantisBT におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5522 2012-11-19 13:39 2012-11-9 Show GitHub Exploit DB Packet Storm
187187 6.9 警告 DELL EMC (旧 EMC Corporation) - EMC RSA Data Protection Manager アプライアンスにおけるアクセス制限を回避される脆弱性 CWE-287
不適切な認証 		CVE-2012-4613 2012-11-19 12:26 2011-11-16 Show GitHub Exploit DB Packet Storm
187188 4.3 警告 DELL EMC (旧 EMC Corporation) - EMC RSA Data Protection Manager アプライアンスおよび RSA Data Protection Manager Software Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4612 2012-11-19 12:24 2011-11-16 Show GitHub Exploit DB Packet Storm
187189 5.3 警告 フォーティネット - FortiGate Unified Threat Management (UTM) の CA 証明書の取扱いに問題 CWE-16
環境設定 		CVE-2012-4948 2012-11-16 18:13 2012-11-5 Show GitHub Exploit DB Packet Storm
187190 4.3 警告 デル - Dell OpenManage Server Administrator にクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4955 2012-11-16 15:58 2012-11-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 12, 2025, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291 - - - OpenProject is open-source, web-based project management software. In versions prior to 15.2.1, the application fails to properly sanitize user input before displaying it in the Group Management sect… New CWE-79
Cross-site Scripting 		CVE-2025-24892 2025-02-11 01:15 2025-02-11 Show GitHub Exploit DB Packet Storm
292 - - - PAM-PKCS#11 is a Linux-PAM login module that allows a X.509 certificate based user login. Prior to version 0.6.13, if cert_policy is set to none (the default value), then pam_pkcs11 will only check i… New CWE-287
Improper Authentication 		CVE-2025-24032 2025-02-11 01:15 2025-02-11 Show GitHub Exploit DB Packet Storm
293 - - - PAM-PKCS#11 is a Linux-PAM login module that allows a X.509 certificate based user login. In versions 0.6.12 and prior, the pam_pkcs11 module segfaults when a user presses ctrl-c/ctrl-d when they are… New CWE-476
 NULL Pointer Dereference 		CVE-2025-24031 2025-02-11 01:15 2025-02-11 Show GitHub Exploit DB Packet Storm
294 - - - In the Linux kernel, the following vulnerability has been resolved: mm: zswap: properly synchronize freeing resources during CPU hotunplug In zswap_compress() and zswap_decompress(), the per-CPU ac… New - CVE-2025-21693 2025-02-11 01:15 2025-02-11 Show GitHub Exploit DB Packet Storm
295 - - - In the Linux kernel, the following vulnerability has been resolved: cachestat: fix page cache statistics permission checking When the 'cachestat()' system call was added in commit cf264e1329fb ("ca… New - CVE-2025-21691 2025-02-11 01:15 2025-02-11 Show GitHub Exploit DB Packet Storm
296 - - - In the Linux kernel, the following vulnerability has been resolved: net: sched: fix ets qdisc OOB Indexing Haowei Yan <g1042620637@gmail.com> found that ets_class_from_arg() can index an Out-Of-Bou… New - CVE-2025-21692 2025-02-11 01:15 2025-02-11 Show GitHub Exploit DB Packet Storm
297 - - - In the Linux kernel, the following vulnerability has been resolved: scsi: storvsc: Ratelimit warning logs to prevent VM denial of service If there's a persistent error in the hypervisor, the SCSI w… New - CVE-2025-21690 2025-02-11 01:15 2025-02-11 Show GitHub Exploit DB Packet Storm
298 - - - In the Linux kernel, the following vulnerability has been resolved: USB: serial: quatech2: fix null-ptr-deref in qt2_process_read_urb() This patch addresses a null-ptr-deref in qt2_process_read_urb… New - CVE-2025-21689 2025-02-11 01:15 2025-02-11 Show GitHub Exploit DB Packet Storm
299 - - - In the Linux kernel, the following vulnerability has been resolved: vfio/platform: check the bounds of read/write syscalls count and offset are passed from user space and not checked, only offset i… New - CVE-2025-21687 2025-02-11 01:15 2025-02-11 Show GitHub Exploit DB Packet Storm
300 - - - In the Linux kernel, the following vulnerability has been resolved: io_uring/rsrc: require cloned buffers to share accounting contexts When IORING_REGISTER_CLONE_BUFFERS is used to clone buffers fr… New - CVE-2025-21686 2025-02-11 01:15 2025-02-11 Show GitHub Exploit DB Packet Storm