Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 27, 2025, 2:02 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
207651 7.2 危険 マイクロソフト - 複数の Microsoft 製品の win32k.sys における権限昇格の脆弱性 CWE-20
不適切な入力確認
CVE-2011-0089 2011-03-7 15:00 2011-02-8 Show GitHub Exploit DB Packet Storm
207652 7.2 危険 マイクロソフト - 複数の Microsoft 製品の win32k.sys における権限昇格の脆弱性 CWE-20
不適切な入力確認
CVE-2011-0088 2011-03-7 14:57 2011-02-8 Show GitHub Exploit DB Packet Storm
207653 7.2 危険 マイクロソフト - 複数の Microsoft 製品の win32k.sys における権限昇格の脆弱性 CWE-20
不適切な入力確認
CVE-2011-0087 2011-03-7 14:54 2011-02-8 Show GitHub Exploit DB Packet Storm
207654 7.2 危険 マイクロソフト - 複数の Microsoft 製品の win32k.sys における権限昇格の脆弱性 CWE-20
不適切な入力確認
CVE-2011-0086 2011-03-7 14:52 2011-02-8 Show GitHub Exploit DB Packet Storm
207655 7.2 危険 マイクロソフト - Microsoft Windows XP の Trace Events 機能における権限昇格の脆弱性 CWE-119
バッファエラー
CVE-2011-0045 2011-03-7 14:49 2011-02-8 Show GitHub Exploit DB Packet Storm
207656 7.2 危険 マイクロソフト - 複数の Microsoft 製品の Local Security Authority Subsystem Service における権限昇格の脆弱性 CWE-287
不適切な認証
CVE-2011-0039 2011-03-7 14:47 2011-02-8 Show GitHub Exploit DB Packet Storm
207657 6.8 警告 OTRS プロジェクト - OTRS における OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション
CVE-2011-0456 2011-03-7 12:02 2011-03-7 Show GitHub Exploit DB Packet Storm
207658 7.1 危険 マイクロソフト - 複数の Microsoft 製品の JScript および VBScript スクリプトエンジンにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2011-0031 2011-03-4 15:12 2011-02-8 Show GitHub Exploit DB Packet Storm
207659 9.3 危険 マイクロソフト - Microsoft Visio の ELEMENTS.DLL における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2011-0093 2011-03-4 15:09 2011-02-8 Show GitHub Exploit DB Packet Storm
207660 9.3 危険 マイクロソフト - Microsoft Visio の LZW ストリーム圧縮機能における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2011-0092 2011-03-4 15:06 2011-02-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 27, 2025, 4:07 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
3241 - - - NiceGUI is an easy-to-use, Python-based UI framework. Prior to 2.9.1, authenticating with NiceGUI logged in the user for all browsers, including browsers in incognito mode. This vulnerability is fixe… CWE-287
Improper Authentication
CVE-2025-21618 2025-01-7 02:15 2025-01-7 Show GitHub Exploit DB Packet Storm
3242 - - - AAT (Another Activity Tracker) is a GPS-tracking application for tracking sportive activities, with emphasis on cycling. Versions lower than v1.26 of AAT are vulnerable to data exfiltration from mali… CWE-200
Information Exposure
CVE-2025-21615 2025-01-7 02:15 2025-01-7 Show GitHub Exploit DB Packet Storm
3243 - - - go-git is a highly extensible git implementation library written in pure Go. A denial of service (DoS) vulnerability was discovered in go-git versions prior to v5.13. This vulnerability allows an att… CWE-400
CWE-770
 Uncontrolled Resource Consumption
 Allocation of Resources Without Limits or Throttling
CVE-2025-21614 2025-01-7 02:15 2025-01-7 Show GitHub Exploit DB Packet Storm
3244 - - - go-git is a highly extensible git implementation library written in pure Go. An argument injection vulnerability was discovered in go-git versions prior to v5.13. Successful exploitation of this vuln… CWE-88
Argument Injection
CVE-2025-21613 2025-01-7 02:15 2025-01-7 Show GitHub Exploit DB Packet Storm
3245 - - - Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8, a large input buffer to the to_lowercase, to_uppercase, strip_whi… CWE-400
 Uncontrolled Resource Consumption
CVE-2024-55605 2025-01-7 02:15 2025-01-7 Show GitHub Exploit DB Packet Storm
3246 3.1 LOW
Network
- - IBM UrbanCode Deploy (UCD) 7.2 through 7.2.3.13, 7.3 through 7.3.2.8, and IBM DevOps Deploy 8.0 through 8.0.1.3 are vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrar… CWE-80
Basic XSS
CVE-2024-51472 2025-01-7 02:15 2025-01-7 Show GitHub Exploit DB Packet Storm
3247 - - - A flaw was found in FFmpeg's DASH playlist support. This vulnerability allows arbitrary HTTP GET requests to be made on behalf of the machine running FFmpeg via a crafted DASH playlist containing mal… - CVE-2023-6605 2025-01-7 02:15 2025-01-7 Show GitHub Exploit DB Packet Storm
3248 - - - A flaw was found in FFmpeg. This vulnerability allows unexpected additional CPU load and storage consumption, potentially leading to degraded performance or denial of service via the demuxing of arbi… - CVE-2023-6604 2025-01-7 02:15 2025-01-7 Show GitHub Exploit DB Packet Storm
3249 - - - A flaw was found in FFmpeg's HLS demuxer. This vulnerability allows bypassing unsafe file extension checks and triggering arbitrary demuxers via base64-encoded data URIs appended with specific file e… - CVE-2023-6601 2025-01-7 02:15 2025-01-7 Show GitHub Exploit DB Packet Storm
3250 - - - An issue was discovered in Optimizely EPiServer.CMS.Core before 12.32.0. A medium-severity vulnerability exists in the CMS due to insufficient enforcement of password complexity requirements. The app… - CVE-2025-22390 2025-01-7 02:15 2025-01-4 Show GitHub Exploit DB Packet Storm