Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 12, 2025, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2024-53145	2025-01-9 16:34	2024-10-10	Show	GitHub Exploit DB Packet Storm

242	7.1	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における初期化されていないリソースの使用に関する脆弱性	CWE-908 初期化されていないリソースの使用	CVE-2024-53155	2025-01-9 16:34	2024-11-11	Show	GitHub Exploit DB Packet Storm

243	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2024-53235	2025-01-9 16:34	2024-11-18	Show	GitHub Exploit DB Packet Storm

244	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2024-56764	2025-01-9 16:32	2024-12-26	Show	GitHub Exploit DB Packet Storm

245	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における脆弱性	CWE-noinfo 情報不足	CVE-2024-56763	2025-01-9 16:29	2024-12-23	Show	GitHub Exploit DB Packet Storm

246	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における脆弱性	CWE-noinfo 情報不足	CVE-2024-56760	2025-01-9 16:26	2024-12-16	Show	GitHub Exploit DB Packet Storm

247	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2024-56746	2025-01-9 16:24	2024-11-14	Show	GitHub Exploit DB Packet Storm

248	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2024-56634	2025-01-9 16:20	2024-11-18	Show	GitHub Exploit DB Packet Storm

249	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2024-56621	2025-01-9 16:17	2024-11-20	Show	GitHub Exploit DB Packet Storm

250	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2024-56578	2025-01-9 16:14	2024-10-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 13, 2025, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
121	-	-	-	An issue was discovered in REDCap 14.9.6. It allows HTML Injection via the Survey field name, exposing users to a redirection to a phishing website. An attacker can exploit this to trick the user tha… New	-	CVE-2025-23111	2025-01-11 07:15	2025-01-11	Show	GitHub Exploit DB Packet Storm

122	-	-	-	An issue was discovered in REDCap 14.9.6. A Reflected cross-site scripting (XSS) vulnerability in the email-subject field exists while performing an upload of a CSV file containing a list of alert co… New	-	CVE-2025-23110	2025-01-11 07:15	2025-01-11	Show	GitHub Exploit DB Packet Storm

123	-	-	-	Specially constructed queries cause cross platform scripting leaking administrator tokens New	-	CVE-2024-9188	2025-01-11 07:15	2025-01-11	Show	GitHub Exploit DB Packet Storm

124	-	-	-	Multiple SQL Injection vulnerabilities exist in the reporting application. A user with advanced report application access rights can exploit the SQL injection, allowing them to execute commands on t… New	-	CVE-2024-9134	2025-01-11 07:15	2025-01-11	Show	GitHub Exploit DB Packet Storm

125	-	-	-	A user with administrator privileges is able to retrieve authentication tokens New	-	CVE-2024-9133	2025-01-11 07:15	2025-01-11	Show	GitHub Exploit DB Packet Storm

126	-	-	-	The administrator is able to configure an insecure captive portal script New	-	CVE-2024-9132	2025-01-11 07:15	2025-01-11	Show	GitHub Exploit DB Packet Storm

127	-	-	-	A user with administrator privileges can perform command injection New	-	CVE-2024-9131	2025-01-11 07:15	2025-01-11	Show	GitHub Exploit DB Packet Storm

128	-	-	-	On Arista CloudVision Appliance (CVA) affected releases running on appliances that support hardware disk encryption (DCA-350E-CV only), the disk encryption might not be successfully performed. This r… New	-	CVE-2024-7142	2025-01-11 07:15	2025-01-11	Show	GitHub Exploit DB Packet Storm

129	-	-	-	A user with advanced report application access rights can perform actions for which they are not authorized New	-	CVE-2024-47520	2025-01-11 07:15	2025-01-11	Show	GitHub Exploit DB Packet Storm

130	-	-	-	Backup uploads to ETM subject to man-in-the-middle interception New	-	CVE-2024-47519	2025-01-11 07:15	2025-01-11	Show	GitHub Exploit DB Packet Storm