Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 29, 2025, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
195061	7.5	危険	アップル Google	-	複数の製品で使用される Webkit におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3924	2012-07-30 18:55	2012-01-23	Show	GitHub Exploit DB Packet Storm

195062	7.2	危険	シマンテック	-	Symantec Web Gateway の管理コンソールにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2957	2012-07-30 17:54	2012-07-20	Show	GitHub Exploit DB Packet Storm

195063	10	危険	シマンテック	-	Symantec Web Gateway の管理コンソールにおける任意のシェルコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2012-2976	2012-07-30 17:52	2012-07-20	Show	GitHub Exploit DB Packet Storm

195064	10	危険	シマンテック	-	Symantec Web Gateway の管理コンソールにおける任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2012-2953	2012-07-30 17:44	2012-07-20	Show	GitHub Exploit DB Packet Storm

195065	7.5	危険	Mozilla Foundation	-	複数の Mozilla 製品のブラウザエンジンの nsWindow 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2012-0463	2012-07-30 17:22	2012-03-13	Show	GitHub Exploit DB Packet Storm

195066	5	警告	SAND STUDIO	-	AirDroid のログインの実装における多重ログイン防止機能を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3888	2012-07-30 16:53	2012-07-26	Show	GitHub Exploit DB Packet Storm

195067	5	警告	SAND STUDIO	-	AirDroid における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2012-3887	2012-07-30 16:50	2012-07-26	Show	GitHub Exploit DB Packet Storm

195068	5	警告	SAND STUDIO	-	AirDroid における平文データを取得される脆弱性	CWE-200 情報漏えい	CVE-2012-3886	2012-07-30 16:39	2012-07-26	Show	GitHub Exploit DB Packet Storm

195069	7.5	危険	SAND STUDIO	-	AirDroid のデフォルト設定におけるアクセス権を取得される脆弱性	CWE-287 不適切な認証	CVE-2012-3885	2012-07-30 16:38	2012-07-26	Show	GitHub Exploit DB Packet Storm

195070	5	警告	SAND STUDIO	-	AirDroid におけるアクセス権を取得される脆弱性	CWE-287 不適切な認証	CVE-2012-3884	2012-07-30 16:35	2012-07-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 29, 2025, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
751	-		-	-	Jenkins Bitbucket Server Integration Plugin 2.1.0 through 4.1.3 (both inclusive) allows attackers to craft URLs that would bypass the CSRF protection of any target URL in Jenkins.	-	CVE-2025-24398	2025-01-24 01:15	2025-01-23	Show	GitHub Exploit DB Packet Storm

752	-		-	-	A reachable assertion in the decode_access_point_name_ie function of Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) allows attackers to cause a Denial of Service (DoS)…	-	CVE-2024-24424	2025-01-24 01:15	2025-01-22	Show	GitHub Exploit DB Packet Storm

753	-		-	-	A type confusion in the nas_message_decode function of Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) allows attackers to execute arbitrary code or cause a Denial of S…	-	CVE-2024-24421	2025-01-24 01:15	2025-01-22	Show	GitHub Exploit DB Packet Storm

754	-		-	-	A reachable assertion in the decode_linked_ti_ie function of Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) allows attackers to cause a Denial of Service (DoS) via a c…	-	CVE-2024-24420	2025-01-24 01:15	2025-01-22	Show	GitHub Exploit DB Packet Storm

755	-		-	-	A Null pointer dereference vulnerability in the Mobile Management Entity (MME) in Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) allows network-adjacent attackers to c…	-	CVE-2023-37028	2025-01-24 01:15	2025-01-22	Show	GitHub Exploit DB Packet Storm

756	-		-	-	Null pointer dereference vulnerability in the Mobile Management Entity (MME) in Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) allows network-adjacent attackers to cra…	-	CVE-2023-37027	2025-01-24 01:15	2025-01-22	Show	GitHub Exploit DB Packet Storm

757	-		-	-	OpenAirInterface CN5G AMF (oai-cn5g-amf) <= 2.0.0 contains a null dereference in its handling of unsupported NGAP protocol messages which allows an attacker with network-adjacent access to the AMF to…	-	CVE-2024-24445	2025-01-24 01:15	2025-01-22	Show	GitHub Exploit DB Packet Storm

758	-		-	-	pearProjectApi v2.8.10 was discovered to contain a SQL injection vulnerability via the organizationCode parameter at project.php.	-	CVE-2023-27113	2025-01-24 01:15	2025-01-22	Show	GitHub Exploit DB Packet Storm

759	-		-	-	pearProjectApi v2.8.10 was discovered to contain a SQL injection vulnerability via the projectCode parameter at project.php.	-	CVE-2023-27112	2025-01-24 01:15	2025-01-22	Show	GitHub Exploit DB Packet Storm

760	7.5	HIGH Network	-	-	Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Web Runtime SEC). Supported versions that are affected are Prior to 9.2.9.0. Easily exploitable vulnerabi…	-	CVE-2025-21510	2025-01-24 01:15	2025-01-22	Show	GitHub Exploit DB Packet Storm