Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 18, 2025, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251 7.8 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性 New CWE-416
解放済みメモリの使用 		CVE-2024-53171 2025-01-17 09:44 2024-11-14 Show GitHub Exploit DB Packet Storm
252 7.8 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性 New CWE-416
解放済みメモリの使用 		CVE-2024-56604 2025-01-17 09:44 2024-10-15 Show GitHub Exploit DB Packet Storm
253 4.3 警告
Network 		IBM IBM InfoSphere Information Server IBM の IBM InfoSphere Information Server におけるエラーメッセージによる情報漏えいに関する脆弱性 New CWE-209
エラーメッセージによる情報漏えい 		CVE-2024-51460 2025-01-17 08:52 2024-12-5 Show GitHub Exploit DB Packet Storm
254 6.8 警告
Physics 		Huawei Yale-AL50A ファームウェア
Princeton-AL10D ファームウェア
P30 Pro ファームウェア
Yale-AL00A ファームウェア
Mate 20 ファームウェア
P30 ファームウェア
YaleP-AL10B ファームウェア 		複数の Huawei 製品における不正な認証に関する脆弱性 New CWE-285
CWE-863
CVE-2020-9081 2025-01-16 18:13 2020-02-18 Show GitHub Exploit DB Packet Storm
255 7.5 重要
Network 		マイクロソフト Microsoft Copilot Studio Copilot Studio の情報漏えいの脆弱性 New CWE-200
CWE-noinfo
CVE-2024-43610 2025-01-16 18:08 2024-10-8 Show GitHub Exploit DB Packet Storm
256 7.5 重要
Adjacent 		マイクロソフト Microsoft Windows Server 2016
Microsoft Windows Server 2022
Microsoft Windows Server 2019
Microsoft Windows 10
Microsoft Window… 		Windows Hyper-V のリモートでコードが実行される脆弱性 New CWE-20
CWE-829
CWE-noinfo
CVE-2024-30092 2025-01-16 18:05 2024-10-8 Show GitHub Exploit DB Packet Storm
257 4.1 警告
Physics 		マイクロソフト Microsoft Windows Server 2016
Microsoft Windows Server 2022
Microsoft Windows Server 2019
Microsoft Windows 10
Microsoft Window… 		セキュア ブートのセキュリティ機能のバイパスの脆弱性 New CWE-284
CWE-noinfo
CVE-2024-28922 2025-01-16 18:05 2024-04-9 Show GitHub Exploit DB Packet Storm
258 8.8 重要
Local 		マイクロソフト Xbox Gaming Services XBox ゲーム サービスの特権昇格の脆弱性 New CWE-59
CWE-noinfo
CVE-2024-28916 2025-01-16 18:02 2024-03-22 Show GitHub Exploit DB Packet Storm
259 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における脆弱性 New CWE-noinfo
情報不足 		CVE-2024-56786 2025-01-16 18:00 2024-11-1 Show GitHub Exploit DB Packet Storm
260 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における脆弱性 New CWE-noinfo
情報不足 		CVE-2024-56771 2025-01-16 17:58 2024-10-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 18, 2025, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
441 5.4 MEDIUM
Network 		- - The The Motors – Car Dealer, Classifieds & Listing plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.4.43. This is due to the software allowi… New CWE-94
Code Injection 		CVE-2024-10970 2025-01-16 11:15 2025-01-16 Show GitHub Exploit DB Packet Storm
442 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. New - CVE-2024-10401 2025-01-16 11:15 2025-01-16 Show GitHub Exploit DB Packet Storm
443 - - - Mattermost Mobile Apps versions <=2.22.0 fail to properly handle specially crafted attachment names, which allows an attacker to crash the mobile app for any user who opened a channel containing the … New - CVE-2025-0476 2025-01-16 09:15 2025-01-16 Show GitHub Exploit DB Packet Storm
444 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because it is a duplicate of CVE-2021-39275. New - CVE-2022-21384 2025-01-16 09:15 2025-01-16 Show GitHub Exploit DB Packet Storm
445 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because it is a duplicate of CVE-2022-21371 New - CVE-2021-35685 2025-01-16 09:15 2025-01-16 Show GitHub Exploit DB Packet Storm
446 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because it is a duplicate of CVE-2022-21306. New - CVE-2021-35684 2025-01-16 09:15 2025-01-16 Show GitHub Exploit DB Packet Storm
447 - - - SQL Injection vulnerability in dingfanzuCMS v.1.0 allows a local attacker to execute arbitrary code via not filtering the content correctly at the "checkOrder.php" shopId module. New - CVE-2025-22976 2025-01-16 08:15 2025-01-16 Show GitHub Exploit DB Packet Storm
448 - - - SQL Injection vulnerability in DDSN Net Pty Ltd (DDSN Interactive) DDSN Interactive cm3 Acora CMS 10.1.1 allows an attacker to execute arbitrary code via the table parameter. New - CVE-2025-22964 2025-01-16 08:15 2025-01-16 Show GitHub Exploit DB Packet Storm
449 6.1 MEDIUM
Network 		- - The UpdraftPlus: WP Backup & Migration Plugin plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the showdata and initiate_restore parameters in all versions up to, and includin… New CWE-79
Cross-site Scripting 		CVE-2025-0215 2025-01-16 08:15 2025-01-16 Show GitHub Exploit DB Packet Storm
450 - - - An issue in termius before v.9.9.0 allows a local attacker to execute arbitrary code via a crafted script to the DYLD_INSERT_LIBRARIES component. New - CVE-2024-55503 2025-01-16 08:15 2025-01-16 Show GitHub Exploit DB Packet Storm