Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228461 7.2 危険 マイクロソフト - 複数の Microsoft Windows 製品のカーネルモードドライバの win32k.sys における権限昇格の脆弱性 CWE-119
バッファエラー 		CVE-2013-3864 2013-09-13 11:16 2013-09-10 Show GitHub Exploit DB Packet Storm
228462 7.2 危険 マイクロソフト - 複数の Microsoft Windows 製品のカーネルモードドライバの win32k.sys における権限昇格の脆弱性 CWE-119
バッファエラー 		CVE-2013-1344 2013-09-13 11:15 2013-09-10 Show GitHub Exploit DB Packet Storm
228463 7.2 危険 マイクロソフト - 複数の Microsoft Windows 製品のカーネルモードドライバの win32k.sys における権限昇格の脆弱性 CWE-119
バッファエラー 		CVE-2013-1343 2013-09-13 11:13 2013-09-10 Show GitHub Exploit DB Packet Storm
228464 7.2 危険 マイクロソフト - 複数の Microsoft Windows 製品のカーネルモードドライバの win32k.sys における権限昇格の脆弱性 CWE-119
バッファエラー 		CVE-2013-1342 2013-09-13 11:12 2013-09-10 Show GitHub Exploit DB Packet Storm
228465 7.2 危険 マイクロソフト - 複数の Microsoft Windows 製品のカーネルモードドライバの win32k.sys における権限昇格の脆弱性 CWE-119
バッファエラー 		CVE-2013-1341 2013-09-13 11:11 2013-09-10 Show GitHub Exploit DB Packet Storm
228466 6.9 警告 マイクロソフト - Microsoft Pinyin IME 2010 における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-3859 2013-09-13 11:07 2013-09-10 Show GitHub Exploit DB Packet Storm
228467 9.3 危険 マイクロソフト - Microsoft Access における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-3157 2013-09-13 11:04 2013-09-10 Show GitHub Exploit DB Packet Storm
228468 9.3 危険 マイクロソフト - Microsoft Access における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-3156 2013-09-13 11:02 2013-09-10 Show GitHub Exploit DB Packet Storm
228469 9.3 危険 マイクロソフト - Microsoft Access における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-3155 2013-09-13 11:01 2013-09-10 Show GitHub Exploit DB Packet Storm
228470 4.3 警告 マイクロソフト - Microsoft Excel 製品および Office 互換機能パックにおける任意のファイルを読まれる脆弱性 CWE-20
不適切な入力確認 		CVE-2013-3159 2013-09-13 11:00 2013-09-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
320511 - - - An issue in LOREX TECHNOLOGY INC com.lorexcorp.lorexping 1.4.22 allows a remote attacker to obtain sensitive information via the firmware update process. - CVE-2024-48799 2024-10-16 00:35 2024-10-15 Show GitHub Exploit DB Packet Storm
320512 - - - An issue in PCS Engineering Preston Cinema (com.prestoncinema.app) 0.2.0 allows a remote attacker to obtain sensitive information via the firmware update process. - CVE-2024-48797 2024-10-16 00:35 2024-10-15 Show GitHub Exploit DB Packet Storm
320513 - - - Software installed and run as a non-privileged user may conduct GPU system calls to read and write freed physical memory from the GPU. - CVE-2024-43701 2024-10-16 00:35 2024-10-14 Show GitHub Exploit DB Packet Storm
320514 6.1 MEDIUM
Network 		paloaltonetworks expedition A reflected XSS vulnerability in Palo Alto Networks Expedition enables execution of malicious JavaScript in the context of an authenticated Expedition user's browser if that user clicks on a maliciou… CWE-79
Cross-site Scripting 		CVE-2024-9467 2024-10-16 00:09 2024-10-10 Show GitHub Exploit DB Packet Storm
320515 7.5 HIGH
Network 		sparkshop sparkshop A loop hole in the payment logic of Sparkshop v1.16 allows attackers to arbitrarily modify the number of products. NVD-CWE-noinfo
CVE-2024-46307 2024-10-15 23:57 2024-10-10 Show GitHub Exploit DB Packet Storm
320516 7.8 HIGH
Local 		progress telerik_reporting In Progress Telerik Reporting versions prior to 2024 Q3 (18.2.24.924), a code execution attack is possible using object injection via insecure expression evaluation. CWE-470
Unsafe Reflection 		CVE-2024-8048 2024-10-15 23:56 2024-10-10 Show GitHub Exploit DB Packet Storm
320517 7.2 HIGH
Network 		progress telerik_report_server In Progress Telerik Report Server versions prior to 2024 Q3 (10.2.24.924), a remote code execution attack is possible through object injection via an insecure type resolution vulnerability. CWE-470
Unsafe Reflection 		CVE-2024-8015 2024-10-15 23:55 2024-10-10 Show GitHub Exploit DB Packet Storm
320518 8.8 HIGH
Network 		progress telerik_reporting In Progress Telerik Reporting versions prior to 2024 Q3 (18.2.24.924), a code execution attack is possible through object injection via an insecure type resolution vulnerability. CWE-470
Unsafe Reflection 		CVE-2024-8014 2024-10-15 23:54 2024-10-10 Show GitHub Exploit DB Packet Storm
320519 7.8 HIGH
Local 		progress telerik_reporting In Progress Telerik Reporting versions prior to 2024 Q3 (18.2.24.924), a command injection attack is possible through improper neutralization of hyperlink elements. CWE-77
Command Injection 		CVE-2024-7840 2024-10-15 23:52 2024-10-10 Show GitHub Exploit DB Packet Storm
320520 6.5 MEDIUM
Network 		progress telerik_reporting In Progress® Telerik® Report Server versions prior to 2024 Q3 (10.2.24.806), an HTTP DoS attack is possible on anonymous endpoints without rate limiting. NVD-CWE-noinfo
CVE-2024-7294 2024-10-15 23:51 2024-10-10 Show GitHub Exploit DB Packet Storm