Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
205741	6.8	警告	Mozilla Foundation	-	Mac OS X 上で稼働する Mozilla Firefox および Thunderbird におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-3666	2011-12-22 15:43	2011-12-20	Show	GitHub Exploit DB Packet Storm

205742	7.5	危険	Mozilla Foundation	-	複数の Mozilla 製品におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3665	2011-12-22 15:43	2011-12-20	Show	GitHub Exploit DB Packet Storm

205743	6.8	警告	Mozilla Foundation	-	Mac OS X 上で稼働する複数の Mozilla 製品におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2011-3664	2011-12-22 15:42	2011-12-20	Show	GitHub Exploit DB Packet Storm

205744	4.3	警告	Mozilla Foundation	-	複数の Mozilla 製品におけるキー入力をキャプチャされる脆弱性	CWE-200 情報漏えい	CVE-2011-3663	2011-12-22 15:42	2011-12-20	Show	GitHub Exploit DB Packet Storm

205745	7.5	危険	Mozilla Foundation	-	複数の Mozilla 製品で使用される YARR 正規表現ライブラリにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3661	2011-12-22 15:41	2011-12-20	Show	GitHub Exploit DB Packet Storm

205746	10	危険	Mozilla Foundation	-	複数の Mozilla 製品のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2011-3660	2011-12-22 15:41	2011-12-20	Show	GitHub Exploit DB Packet Storm

205747	7.5	危険	Mozilla Foundation	-	複数の Mozilla 製品の SVG 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3658	2011-12-22 15:40	2011-12-20	Show	GitHub Exploit DB Packet Storm

205748	6.8	警告	アップル	-	Apple QuickTime における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-3228	2011-12-22 15:24	2011-10-14	Show	GitHub Exploit DB Packet Storm

205749	4.3	警告	アップル	-	Apple QuickTime における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-3220	2011-12-22 15:09	2011-10-14	Show	GitHub Exploit DB Packet Storm

205750	2.6	注意	アップル	-	Apple QuickTime Player におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3218	2011-12-22 15:02	2011-10-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 7, 2025, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1631	-		-	-	Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. Starting in version 0.7.0 and prior to versions 0.7.15 and 0.8.3, Himmelblau is vulnerable to leaking credentials in d…	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2025-24034	2025-01-24 03:15	2025-01-24	Show	GitHub Exploit DB Packet Storm

1632	6.0	MEDIUM Local	-	-	IBM Security Verify Bridge 1.0.0 through 1.0.15 could allow a local privileged user to overwrite files due to excessive privileges granted to the agent. which could also cause a denial of service.	CWE-471 Modification of Assumed-Immutable Data (MAID)	CVE-2024-45672	2025-01-24 03:15	2025-01-24	Show	GitHub Exploit DB Packet Storm

1633	-		-	-	A flaw was found in the Open Virtual Network (OVN). Specially crafted UDP packets may bypass egress access control lists (ACLs) in OVN installations configured with a logical switch with DNS records …	-	CVE-2025-0650	2025-01-24 03:15	2025-01-24	Show	GitHub Exploit DB Packet Storm

1634	-		-	-	A reachable assertion in the mme_ue_find_by_imsi function of Open5GS <= 2.6.4 allows attackers to cause a Denial of Service (DoS) via a crafted NAS packet.	-	CVE-2024-24430	2025-01-24 03:15	2025-01-23	Show	GitHub Exploit DB Packet Storm

1635	-		-	-	When the assert() function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate enough space for the assertion failure message string and size information, which may lead to a buffe…	-	CVE-2025-0395	2025-01-24 03:15	2025-01-22	Show	GitHub Exploit DB Packet Storm

1636	-		-	-	A Null pointer dereference vulnerability in the Mobile Management Entity (MME) in Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) allows network-adjacent attackers to c…	-	CVE-2023-37026	2025-01-24 03:15	2025-01-22	Show	GitHub Exploit DB Packet Storm

1637	-		-	-	A Null pointer dereference vulnerability in the Mobile Management Entity (MME) in Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) allows network-adjacent attackers to c…	-	CVE-2023-37025	2025-01-24 03:15	2025-01-22	Show	GitHub Exploit DB Packet Storm

1638	-		-	-	ECOVACS robot lawnmowers and vacuums use a deterministic symmetric key to decrypt firmware updates. An attacker can create and encrypt malicious firmware that will be successfully decrypted and insta…	-	CVE-2024-52331	2025-01-24 02:15	2025-01-24	Show	GitHub Exploit DB Packet Storm

1639	-		-	-	ECOVACS lawnmowers and vacuums do not properly validate TLS certificates. An unauthenticated attacker can read or modify TLS traffic, possibly modifying firmware updates.	-	CVE-2024-52330	2025-01-24 02:15	2025-01-24	Show	GitHub Exploit DB Packet Storm

1640	-		-	-	ECOVACS HOME mobile app plugins for specific robots do not properly validate TLS certificates. An unauthenticated attacker can read or modify TLS traffic and obtain authentication tokens.	-	CVE-2024-52329	2025-01-24 02:15	2025-01-24	Show	GitHub Exploit DB Packet Storm