Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2071	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における脆弱性	CWE-noinfo 情報不足	CVE-2021-46976	2025-01-14 17:09	2021-05-12	Show	GitHub Exploit DB Packet Storm

2072	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel におけるリソースのロックに関する脆弱性	CWE-667 不適切なロック	CVE-2024-56694	2025-01-14 17:06	2024-11-18	Show	GitHub Exploit DB Packet Storm

2073	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における例外的な状態のチェックに関する脆弱性	CWE-754 例外的な状態における不適切なチェック	CVE-2024-56776	2025-01-14 17:04	2024-09-23	Show	GitHub Exploit DB Packet Storm

2074	8.1	重要 Network	マイクロソフト	Microsoft Defender for Endpoint	Android 上の Microsoft Defender for Endpoint のなりすましの脆弱性	CWE-20 CWE-noinfo	CVE-2024-49057	2025-01-14 16:58	2024-12-10	Show	GitHub Exploit DB Packet Storm

2075	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における脆弱性	-	CVE-2024-56724	2025-01-14 16:58	2024-10-16	Show	GitHub Exploit DB Packet Storm

2076	7.4	重要 Local	マイクロソフト	Microsoft SharePoint Server Microsoft SharePoint Enterprise Server	Microsoft SharePoint のリモートコードが実行される脆弱性	CWE-502 CWE-noinfo	CVE-2024-49070	2025-01-14 16:57	2024-12-10	Show	GitHub Exploit DB Packet Storm

2077	7.3	重要 Local	マイクロソフト	Microsoft System Center	Microsoft System Center Elevation of Privilege Vulnerability	CWE-284 CWE-noinfo	CVE-2024-43594	2025-01-14 16:52	2024-12-10	Show	GitHub Exploit DB Packet Storm

2078	4.3	警告 Network	wpmoose	Yuki	wpmoose の WordPress 用 Yuki におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2024-1943	2025-01-14 16:47	2024-02-28	Show	GitHub Exploit DB Packet Storm

2079	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における例外的な状態のチェックに関する脆弱性	CWE-754 例外的な状態における不適切なチェック	CVE-2024-56778	2025-01-14 16:41	2024-09-23	Show	GitHub Exploit DB Packet Storm

2080	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2024-56642	2025-01-14 16:40	2024-12-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 26, 2025, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
121	-		-	-	Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, including support for JSON Web Encryption (JWE), JSON Web Signature (JWS), and JSON Web Toke… New	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2025-27144	2025-02-25 08:15	2025-02-25	Show	GitHub Exploit DB Packet Storm

122	-		-	-	Better Auth is an authentication and authorization library for TypeScript. Prior to version 1.1.21, the application is vulnerable to an open redirect due to improper validation of the callbackURL par… New	CWE-601 Open Redirect	CVE-2025-27143	2025-02-25 08:15	2025-02-25	Show	GitHub Exploit DB Packet Storm

123	-		-	-	Incorrect access control in the component /iclock/Settings?restartNCS=1 of NovaCHRON Zeitsysteme GmbH & Co. KG Smart Time Plus v8.x to v8.6 allows attackers to arbitrarily restart the NCServiceManger… New	-	CVE-2024-53542	2025-02-25 08:15	2025-02-25	Show	GitHub Exploit DB Packet Storm

124	-		-	-	Metabase Enterprise Edition is the enterprise version of Metabase business intelligence and data analytics software. Starting in version 1.47.0 and prior to versions 1.50.36, 1.51.14, 1.52.11, and 1.… New	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2025-27141	2025-02-25 07:15	2025-02-25	Show	GitHub Exploit DB Packet Storm

125	-		-	-	WeGIA is a Web manager for charitable institutions. An OS Command Injection vulnerability was discovered in versions prior to 3.2.15 of the WeGIA application, `importar_dump.php` endpoint. This vulne… New	CWE-78 CWE-284 OS Command Improper Access Control	CVE-2025-27140	2025-02-25 07:15	2025-02-25	Show	GitHub Exploit DB Packet Storm

126	-		-	-	Seacms <=13.3 is vulnerable to SQL Injection in admin_members.php. New	-	CVE-2025-25513	2025-02-25 07:15	2025-02-25	Show	GitHub Exploit DB Packet Storm

127	-		-	-	An issue in Via Browser 6.1.0 allows a a remote attacker to execute arbitrary code via the mark.via.Shell component. New	-	CVE-2024-57608	2025-02-25 07:15	2025-02-25	Show	GitHub Exploit DB Packet Storm

128	8.8	HIGH Network	-	-	Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-24926. Reason: This candidate is a reservation duplicate of CVE-2024-24926. Notes: All CVE users should reference … Update	-	CVE-2024-13636	2025-02-25 07:15	2025-02-18	Show	GitHub Exploit DB Packet Storm

129	-		-	-	Dependency-Track is a component analysis platform that allows organizations to identify and reduce risk in the software supply chain. Dependency-Track allows users with the `SYSTEM_CONFIGURATION` per… New	CWE-73 External Control of File Name or Path	CVE-2025-27137	2025-02-25 06:15	2025-02-25	Show	GitHub Exploit DB Packet Storm

130	-		-	-	An SQL injection risk was identified in the module list filter within course search. New	-	CVE-2025-26533	2025-02-25 06:15	2025-02-25	Show	GitHub Exploit DB Packet Storm