Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
191421 7.5 危険 Joomla! - Mambo および Joomla! 用の fq における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0512 2012-09-25 16:59 2008-01-31 Show GitHub Exploit DB Packet Storm
191422 9.3 危険 MPlayer project - MPlayer の libmpdemux/demux_mov.c における任意のコードを実行される脆弱性 CWE-189
数値処理の問題 		CVE-2008-0485 2012-09-25 16:59 2008-02-5 Show GitHub Exploit DB Packet Storm
191423 10 危険 move networks inc - Move Networks Upgrade Manager の QMPUpgrade.dll におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0477 2012-09-25 16:59 2008-01-29 Show GitHub Exploit DB Packet Storm
191424 6.4 警告 Zoho Corporation - ManageEngine Applications Manager における設定を変更される脆弱性 CWE-287
不適切な認証 		CVE-2008-0476 2012-09-25 16:59 2008-01-29 Show GitHub Exploit DB Packet Storm
191425 5 警告 Zoho Corporation - ManageEngine Applications Manager における重要な情報を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-0475 2012-09-25 16:59 2008-01-29 Show GitHub Exploit DB Packet Storm
191426 4.3 警告 Zoho Corporation - ManageEngine Applications Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0474 2012-09-25 16:59 2008-01-29 Show GitHub Exploit DB Packet Storm
191427 4.3 警告 マイクロソフト
MediaWiki		 - MediaWiki などにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0460 2012-09-25 16:59 2008-01-24 Show GitHub Exploit DB Packet Storm
191428 6.8 警告 liquidsilvercms - Liquid-Silver CMS の update/index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0459 2012-09-25 16:59 2008-01-25 Show GitHub Exploit DB Packet Storm
191429 9.3 危険 マイクロソフト
Skype Technologies S.A.		 - Windows 上の Skype の Internet Explorer Web コントロールにおけるクロスゾーンスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0454 2012-09-25 16:59 2008-01-18 Show GitHub Exploit DB Packet Storm
191430 7.5 危険 pacercms - PacerCMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0451 2012-09-25 16:59 2008-01-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 13, 2025, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1631 - - - Vulnerabilities in the algorithms used by Fuchsia to populate network protocol header fields, specifically the TCP ISN, TCP timestamp, TCP and UDP source ports, and IPv4/IPv6 fragment ID allow for th… - CVE-2024-10604 2025-01-31 05:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1632 - - - Weaknesses in the generation of TCP/UDP source ports and some other header values in Google's gVisor allowed them to be predicted by an external attacker in some circumstances. - CVE-2024-10603 2025-01-31 05:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1633 - - - A weak hashing algorithm and small sizes of seeds/secrets in Google's gVisor allowed for a remote attacker to calculate a local IP address and a per-boot identifier that could aid in tracking of a de… - CVE-2024-10026 2025-01-31 05:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1634 - - - The Cloud MQTT service of the affected products supports wildcard topic subscription which could allow an attacker to obtain sensitive information from tapping the service communications. CWE-155
CVE-2025-0681 2025-01-31 04:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1635 - - - Affected products contain a vulnerability in the device cloud rpc command handling process that could allow remote attackers to take control over arbitrary devices connected to the cloud. CWE-78
OS Command  		CVE-2025-0680 2025-01-31 04:15 2025-01-31 Show GitHub Exploit DB Packet Storm
1636 5.5 MEDIUM
Local 		apple macos The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.3, macOS Sonoma 14.7.3. Parsing a file may lead to an unexpected app termination. NVD-CWE-noinfo
CVE-2025-24112 2025-01-31 03:54 2025-01-28 Show GitHub Exploit DB Packet Storm
1637 7.8 HIGH
Local 		apple macos
ipados
iphone_os
watchos
tvos 		A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.3, tvOS 18.3, watchOS 11.3, iOS 18.3 and iPadOS 18.3. A malicious app may be able to gain root … NVD-CWE-noinfo
CVE-2025-24107 2025-01-31 03:53 2025-01-28 Show GitHub Exploit DB Packet Storm
1638 5.5 MEDIUM
Local 		apple macos This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Sequoia 15.2. An app may be able to access user-sensitive data. NVD-CWE-noinfo
CVE-2024-54549 2025-01-31 03:43 2025-01-28 Show GitHub Exploit DB Packet Storm
1639 5.5 MEDIUM
Local 		apple iphone_os
visionos
macos
watchos
tvos
ipados 		The issue was addressed with improved memory handling. This issue is fixed in iPadOS 17.7.4, macOS Ventura 13.7.3, macOS Sonoma 14.7.3, visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, wat… NVD-CWE-noinfo
CVE-2025-24086 2025-01-31 03:18 2025-01-28 Show GitHub Exploit DB Packet Storm
1640 4.7 MEDIUM
Local 		apple macos A race condition was addressed with additional validation. This issue is fixed in macOS Ventura 13.7.3, macOS Sequoia 15.3, macOS Sonoma 14.7.3. An app may be able to access user-sensitive data. CWE-362
Race Condition 		CVE-2025-24094 2025-01-31 03:17 2025-01-28 Show GitHub Exploit DB Packet Storm