Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
187251 2.9 注意 Quagga
インターネットイニシアティブ		 - Quagga にサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2012-1820 2012-11-13 18:07 2012-06-5 Show GitHub Exploit DB Packet Storm
187252 7.2 危険 Google - Windows 上で稼働する Google Chrome における権限を取得される脆弱性 CWE-16
CWE-DesignError
CVE-2011-3098 2012-11-13 18:02 2012-05-15 Show GitHub Exploit DB Packet Storm
187253 7.5 危険 Google - Google Chrome におけるサンドボックスの制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-3084 2012-11-13 18:01 2012-05-15 Show GitHub Exploit DB Packet Storm
187254 7.2 危険 CA Technologies - CA License における任意のファイルを変更または作成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-0692 2012-11-13 17:51 2012-10-1 Show GitHub Exploit DB Packet Storm
187255 7.2 危険 CA Technologies - CA License における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-0691 2012-11-13 17:49 2012-10-1 Show GitHub Exploit DB Packet Storm
187256 5 警告 Quagga
インターネットイニシアティブ		 - Quagga の bgpd の BGP 実装におけるサービス運用妨害 (表明違反および Daemon Exit) の脆弱性 CWE-119
バッファエラー 		CVE-2012-0255 2012-11-13 17:47 2012-03-27 Show GitHub Exploit DB Packet Storm
187257 3.3 注意 Quagga
インターネットイニシアティブ		 - Quagga の ospf_ls_upd_list_lsa 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-0249 2012-11-13 17:46 2012-03-27 Show GitHub Exploit DB Packet Storm
187258 5 警告 OpenSSL Project - OpenSSL の crypto/asn1/asn_mime.c にある mime_param_cmp 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-1165 2012-11-13 17:38 2012-03-15 Show GitHub Exploit DB Packet Storm
187259 5 警告 The Perl Foundation - Perl 用 DBD::Pg モジュールの dbdimp.c におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2012-1151 2012-11-13 17:36 2012-03-9 Show GitHub Exploit DB Packet Storm
187260 9.3 危険 MIT Kerberos - MIT Kerberos の KDC におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-1015 2012-11-13 17:33 2012-07-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 13, 2025, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
371 - - - A stack-based buffer overflow [CWE-121] vulnerability in Fortinet FortiOS version 7.2.4 through 7.2.8 and version 7.4.0 through 7.4.4 allows a remote unauthenticated attacker to execute arbitrary cod… New CWE-121
Stack-based Buffer Overflow 		CVE-2024-35279 2025-02-12 02:15 2025-02-12 Show GitHub Exploit DB Packet Storm
372 - - - A use of hard-coded cryptographic key to encrypt sensitive data vulnerability [CWE-321] in FortiManager 7.6.0 through 7.6.1, 7.4.0 through 7.4.5, 7.2.0 through 7.2.9, 7.0 all versions, 6.4 all versio… New CWE-321
 Use of Hard-coded Cryptographic Key 		CVE-2024-33504 2025-02-12 02:15 2025-02-12 Show GitHub Exploit DB Packet Storm
373 - - - An improper neutralization of input during web page generation ('cross-site scripting') in Fortinet FortiSandbox at least versions 4.4.0 through 4.4.4 and 4.2.0 through 4.2.6 and 4.0.0 through 4.0.4 … New CWE-79
Cross-site Scripting 		CVE-2024-27781 2025-02-12 02:15 2025-02-12 Show GitHub Exploit DB Packet Storm
374 - - - Multiple Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerabilities [CWE-79] in FortiSIEM 7.1 all versions, 7.0 all versions, 6.7 all versions incident page… New CWE-79
Cross-site Scripting 		CVE-2024-27780 2025-02-12 02:15 2025-02-12 Show GitHub Exploit DB Packet Storm
375 - - - An HTML Injection vulnerability in Avaya Spaces may have allowed disclosure of sensitive information or modification of the page content seen by the user. New - CVE-2024-12756 2025-02-12 02:15 2025-02-12 Show GitHub Exploit DB Packet Storm
376 - - - A Cross-Site Scripting (XSS) vulnerability in Avaya Spaces may have allowed unauthorized code execution and potential disclose of sensitive information. New - CVE-2024-12755 2025-02-12 02:15 2025-02-12 Show GitHub Exploit DB Packet Storm
377 - - - A use of externally-controlled format string vulnerability [CWE-134] in Fortinet FortiOS version 7.4.0 through 7.4.1 and before 7.2.6, FortiProxy version 7.4.0 and before 7.2.7, FortiPAM version 1.1.… New CWE-134
Use of Externally-Controlled Format String 		CVE-2023-40721 2025-02-12 02:15 2025-02-12 Show GitHub Exploit DB Packet Storm
378 - - - Privilege Defined With Unsafe Actions vulnerability in Apache Cassandra. An user with MODIFY permission ON ALL KEYSPACES can escalate privileges to superuser within a targeted Cassandra cluster via u… Update - CVE-2025-23015 2025-02-12 02:15 2025-02-4 Show GitHub Exploit DB Packet Storm
379 - - - Distribution is a toolkit to pack, ship, store, and deliver container content. Systems running registry versions 3.0.0-beta.1 through 3.0.0-rc.2 with token authentication enabled may be vulnerable to… New CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2025-24976 2025-02-12 01:15 2025-02-12 Show GitHub Exploit DB Packet Storm
380 - - - Concorde, formerly know as Nexkey, is a fork of the federated microblogging platform Misskey. Prior to version 12.25Q1.1, due to an improper implementation of the logout process, authentication crede… New CWE-613
 Insufficient Session Expiration 		CVE-2025-24973 2025-02-12 01:15 2025-02-12 Show GitHub Exploit DB Packet Storm