Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 27, 2025, 2:02 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
21 6.1 警告
Network
Rodrigue EXIF Viewer Classic EXIF Viewer Classicにおけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2025-23362 2025-01-27 12:29 2025-01-27 Show GitHub Exploit DB Packet Storm
22 7.5 重要
Network
マイクロソフト Microsoft Windows Server 2022
Microsoft Windows Server 2008
Microsoft Windows Server 2012
Microsoft Windows Server 2025
Microso…
Microsoft Message Queuing (MSMQ) のサービス拒否の脆弱性 New CWE-400
CWE-noinfo
CVE-2025-21290 2025-01-27 12:28 2025-01-14 Show GitHub Exploit DB Packet Storm
23 8.8 重要
Network
マイクロソフト Microsoft Windows Server 2022
Microsoft Windows Server 2008
Microsoft Windows Server 2012
Microsoft Windows Server 2025
Microso…
Windows テレフォニー サービスのリモートでコードが実行される脆弱性 New CWE-122
CWE-noinfo
CVE-2025-21286 2025-01-27 12:27 2025-01-14 Show GitHub Exploit DB Packet Storm
24 8.8 重要
Network
マイクロソフト Microsoft Windows Server 2022
Microsoft Windows Server 2008
Microsoft Windows Server 2012
Microsoft Windows Server 2025
Microso…
Windows テレフォニー サービスのリモートでコードが実行される脆弱性 New CWE-122
CWE-noinfo
CVE-2025-21250 2025-01-27 12:25 2025-01-14 Show GitHub Exploit DB Packet Storm
25 6.6 警告
Physics
マイクロソフト Microsoft Windows Server 2022
Microsoft Windows Server 2008
Microsoft Windows Server 2012
Microsoft Windows Server 2025
Microso…
Windows デジタル メディアの特権昇格の脆弱性 New CWE-125
CWE-noinfo
CVE-2025-21249 2025-01-27 12:23 2025-01-14 Show GitHub Exploit DB Packet Storm
26 8.8 重要
Network
マイクロソフト Microsoft Windows Server 2022
Microsoft Windows Server 2008
Microsoft Windows Server 2012
Microsoft Windows Server 2025
Microso…
Windows テレフォニー サービスのリモートでコードが実行される脆弱性 New CWE-122
CWE-125
CWE-noinfo
CVE-2025-21246 2025-01-27 12:22 2025-01-14 Show GitHub Exploit DB Packet Storm
27 8.8 重要
Network
マイクロソフト Microsoft Windows Server 2022
Microsoft Windows Server 2008
Microsoft Windows Server 2012
Microsoft Windows Server 2025
Microso…
Windows テレフォニー サービスのリモートでコードが実行される脆弱性 New CWE-190
CWE-noinfo
CVE-2025-21244 2025-01-27 12:20 2025-01-14 Show GitHub Exploit DB Packet Storm
28 8.8 重要
Network
マイクロソフト Microsoft Windows Server 2022
Microsoft Windows Server 2008
Microsoft Windows Server 2012
Microsoft Windows Server 2025
Microso…
Windows テレフォニー サービスのリモートでコードが実行される脆弱性 New CWE-122
CWE-noinfo
CVE-2025-21236 2025-01-27 12:18 2025-01-14 Show GitHub Exploit DB Packet Storm
29 8.8 重要
Network
マイクロソフト Microsoft Windows Server 2022
Microsoft Windows Server 2008
Microsoft Windows Server 2012
Microsoft Windows Server 2025
Microso…
Windows テレフォニー サービスのリモートでコードが実行される脆弱性 New CWE-122
CWE-noinfo
CVE-2025-21233 2025-01-27 12:17 2025-01-14 Show GitHub Exploit DB Packet Storm
30 5.3 警告
Network
F5 Networks
Fedora Project
nginx open source
Fedora
NGINX plus
F5 Networks の nginx open source 等複数ベンダの製品における NULL ポインタデリファレンスに関する脆弱性 New CWE-476
CWE-476
CVE-2024-35200 2025-01-27 12:12 2024-05-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 27, 2025, 4:07 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
681 - - - Open5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send an `Initial UE Message` missing a require… - CVE-2024-34235 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
682 - - - A reachable assertion in the ogs_kdf_hash_mme function of Open5GS <= 2.6.4 allows attackers to cause a Denial of Service (DoS) via a crafted NAS packet. - CVE-2024-24432 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
683 - - - Open5GS MME versions <= 2.6.4 contain a reachable assertion in the `Uplink NAS Transport` packet handler. A packet missing its `MME_UE_S1AP_ID` field causes Open5gs to crash; an attacker may repeated… - CVE-2023-37023 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
684 - - - Open5GS MME version <= 2.6.4 contains an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send a `UE Context Modification Failure` messag… - CVE-2023-37021 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
685 - - - Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send a `UE Context Release Complete` message mi… - CVE-2023-37020 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
686 - - - Open5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send an `S1Setup Request` message missing a re… - CVE-2023-37019 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
687 - - - Open5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send a `UE Capability Info Indication` message… - CVE-2023-37018 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
688 - - - Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send an `S1Setup Request` message missing a req… - CVE-2023-37017 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
689 - - - Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send a `UE Context Modification Response` messa… - CVE-2023-37016 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm
690 - - - Open5GS MME versions <= 2.6.4 contains an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send a `Path Switch Request` message missing a… - CVE-2023-37015 2025-01-23 00:15 2025-01-23 Show GitHub Exploit DB Packet Storm