Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 20, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
206591 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-0666 2011-05-6 11:09 2011-04-12 Show GitHub Exploit DB Packet Storm
206592 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-0665 2011-05-6 11:07 2011-04-12 Show GitHub Exploit DB Packet Storm
206593 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-0662 2011-05-6 11:06 2011-04-12 Show GitHub Exploit DB Packet Storm
206594 9.3 危険 マイクロソフト - Microsoft Windows のワードパッドにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-0028 2011-05-6 11:03 2011-04-12 Show GitHub Exploit DB Packet Storm
206595 7.6 危険 マイクロソフト - Microsoft Windows の FAX 送付状エディター内にある fxscover.exe における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-3974 2011-05-6 11:01 2011-04-12 Show GitHub Exploit DB Packet Storm
206596 9.3 危険 マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2011-0977 2011-05-6 11:00 2011-02-10 Show GitHub Exploit DB Packet Storm
206597 9.3 危険 マイクロソフト - 複数の Microsoft Office 製品における権限昇格の脆弱性 CWE-Other
その他 		CVE-2011-0107 2011-05-6 10:59 2011-04-12 Show GitHub Exploit DB Packet Storm
206598 9.3 危険 マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-0976 2011-05-6 10:58 2011-02-10 Show GitHub Exploit DB Packet Storm
206599 9.3 危険 マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0656 2011-05-6 10:57 2011-04-12 Show GitHub Exploit DB Packet Storm
206600 9.3 危険 マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0655 2011-05-6 10:56 2011-04-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 20, 2025, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1701 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: kunit: string-stream: Fix a UAF bug in kunit_init_suite() In kunit_debugfs_create_suite(), if alloc_string_stream() fails in the … CWE-416
 Use After Free 		CVE-2024-56772 2025-01-10 05:57 2025-01-9 Show GitHub Exploit DB Packet Storm
1702 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: media: s5p_cec: limit msg.len to CEC_MAX_MSG_SIZE I expect that the hardware will have limited this to 16, but just in case it ha… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2022-49035 2025-01-10 05:22 2025-01-3 Show GitHub Exploit DB Packet Storm
1703 - - - PHPYun before 7.0.2 is vulnerable to code execution through backdoor-restricted arbitrary file writing and file inclusion. - CVE-2024-54724 2025-01-10 05:15 2025-01-10 Show GitHub Exploit DB Packet Storm
1704 - - - Infoblox BloxOne v2.4 was discovered to contain a business logic flaw due to thick client vulnerabilities. - CVE-2024-46505 2025-01-10 05:15 2025-01-10 Show GitHub Exploit DB Packet Storm
1705 - - - Incorrect Authorization vulnerability in Drupal Content Entity Clone allows Forceful Browsing.This issue affects Content Entity Clone: from 0.0.0 before 1.0.4. - CVE-2024-13271 2025-01-10 05:15 2025-01-10 Show GitHub Exploit DB Packet Storm
1706 - - - Incorrect Authorization vulnerability in Drupal Freelinking allows Forceful Browsing.This issue affects Freelinking: from 0.0.0 before 4.0.1. - CVE-2024-13270 2025-01-10 05:15 2025-01-10 Show GitHub Exploit DB Packet Storm
1707 - - - Insertion of Sensitive Information Into Sent Data vulnerability in Drupal Advanced Varnish allows Forceful Browsing.This issue affects Advanced Varnish: from 0.0.0 before 4.0.11. - CVE-2024-13269 2025-01-10 05:15 2025-01-10 Show GitHub Exploit DB Packet Storm
1708 - - - Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection') vulnerability in Drupal Opigno allows PHP Local File Inclusion.This issue affects Opigno: from 7.X-1.0 before … - CVE-2024-13268 2025-01-10 05:15 2025-01-10 Show GitHub Exploit DB Packet Storm
1709 9.8 CRITICAL
Network 		- - The WPBookit plugin for WordPress is vulnerable to Arbitrary User Password Change in versions up to, and including, 1.6.4. This is due to the plugin providing user-controlled access to objects, letti… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2024-10215 2025-01-10 05:15 2025-01-10 Show GitHub Exploit DB Packet Storm
1710 - - - Strawberry GraphQL is a library for creating GraphQL APIs. Starting in 0.182.0 and prior to version 0.257.0, a type confusion vulnerability exists in Strawberry GraphQL's relay integration that affec… CWE-843
Type Confusion 		CVE-2025-22151 2025-01-10 04:15 2025-01-10 Show GitHub Exploit DB Packet Storm