Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
188001	5	警告	ヒューレット・パッカード	-	HP Network Node Manager i における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2012-3267	2012-10-5 16:04	2012-10-3	Show	GitHub Exploit DB Packet Storm

188002	9.3	危険	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-3596	2012-10-5 15:02	2012-07-25	Show	GitHub Exploit DB Packet Storm

188003	9.3	危険	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-3595	2012-10-5 15:02	2012-07-25	Show	GitHub Exploit DB Packet Storm

188004	9.3	危険	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-3597	2012-10-5 15:00	2012-07-25	Show	GitHub Exploit DB Packet Storm

188005	9.3	危険	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-3594	2012-10-5 14:59	2012-07-25	Show	GitHub Exploit DB Packet Storm

188006	9.3	危険	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-3593	2012-10-5 14:58	2012-07-25	Show	GitHub Exploit DB Packet Storm

188007	4.3	警告	Final β Laboratory	-	MyWebSearch におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4018	2012-10-5 12:00	2012-10-5	Show	GitHub Exploit DB Packet Storm

188008	9.3	危険	アップル Mozilla Foundation FreeType Project	-	Mozilla Firefox Mobile およびその他の製品で使用される FreeType におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2012-1144	2012-10-5 10:22	2012-04-24	Show	GitHub Exploit DB Packet Storm

188009	4.3	警告	アップル Mozilla Foundation FreeType Project	-	Mozilla Firefox Mobile およびその他の製品で使用される FreeType におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2012-1143	2012-10-5 10:21	2012-04-24	Show	GitHub Exploit DB Packet Storm

188010	9.3	危険	アップル Mozilla Foundation FreeType Project	-	Mozilla Firefox Mobile およびその他の製品で使用される FreeType におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2012-1142	2012-10-5 10:19	2012-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 23, 2025, 4:07 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
771	-	-	-	The vulnerability may allow a remote low priviledged attacker to run arbitrary shell commands by manipulating the firmware file and uploading it to the device.	-	CVE-2025-0592	2025-02-15 06:15	2025-02-15	Show	GitHub Exploit DB Packet Storm

772	-	-	-	Unprotected alternative channel of return branch target prediction in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.	CWE-420 Unprotected Alternate Channel	CVE-2022-28693	2025-02-15 06:15	2025-02-15	Show	GitHub Exploit DB Packet Storm

773	-	-	-	Generation of weak initialization vector in an Intel(R) IPP Cryptography software library before version 2021.5 may allow an unauthenticated user to potentially enable information disclosure via loca…	CWE-1204	CVE-2022-26083	2025-02-15 06:15	2025-02-15	Show	GitHub Exploit DB Packet Storm

774	-	-	-	An issue was discovered in Mercedes Benz NTG (New Telematics Generation) 6 through 2021. A possible stack buffer overflow in the Service Broker service affects NTG 6 head units. To perform this attac…	-	CVE-2024-37600	2025-02-15 06:15	2025-02-14	Show	GitHub Exploit DB Packet Storm

775	-	-	-	Directory Traversal vulnerability in Ianproxy v.0.1 and before allows a remote attacker to obtain sensitive information	-	CVE-2024-57777	2025-02-15 06:15	2025-02-12	Show	GitHub Exploit DB Packet Storm

776	-	-	-	Vega is a visualization grammar, a declarative format for creating, saving, and sharing interactive visualization designs. Prior to version 5.26.0 of vega and 5.4.2 of vega-selections, the `vlSelecti…	CWE-79 Cross-site Scripting	CVE-2025-25304	2025-02-15 05:15	2025-02-15	Show	GitHub Exploit DB Packet Storm

777	-	-	-	Label Studio is an open source data labeling tool. Prior to version 1.16.0, Label Studio's S3 storage integration feature contains a Server-Side Request Forgery (SSRF) vulnerability in its endpoint c…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2025-25297	2025-02-15 05:15	2025-02-15	Show	GitHub Exploit DB Packet Storm

778	-	-	-	Label Studio is an open source data labeling tool. Prior to version 1.16.0, Label Studio's `/projects/upload-example` endpoint allows injection of arbitrary HTML through a `GET` request with an appro…	CWE-79 Cross-site Scripting	CVE-2025-25296	2025-02-15 05:15	2025-02-15	Show	GitHub Exploit DB Packet Storm

779	-	-	-	@octokit/request-error is an error class for Octokit request errors. Starting in version 1.0.0 and prior to version 6.1.7, a Regular Expression Denial of Service (ReDoS) vulnerability exists in the p…	CWE-1333 Inefficient Regular Expression Complexity	CVE-2025-25289	2025-02-15 05:15	2025-02-15	Show	GitHub Exploit DB Packet Storm

780	-	-	-	@octokit/plugin-paginate-rest is the Octokit plugin to paginate REST API endpoint responses. For versions starting in 1.0.0 and prior to 11.4.1 of the npm package `@octokit/plugin-paginate-rest`, whe…	CWE-1333 Inefficient Regular Expression Complexity	CVE-2025-25288	2025-02-15 05:15	2025-02-15	Show	GitHub Exploit DB Packet Storm