Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 20, 2025, 6:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
291	4.7	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における競合状態に関する脆弱性	CWE-362 競合状態	CVE-2023-52785	2025-01-17 17:57	2023-11-8	Show	GitHub Exploit DB Packet Storm

292	7.1	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2024-38560	2025-01-17 17:52	2024-05-6	Show	GitHub Exploit DB Packet Storm

293	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2021-47211	2025-01-17 17:49	2021-10-26	Show	GitHub Exploit DB Packet Storm

294	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2021-47106	2025-01-17 17:49	2021-12-15	Show	GitHub Exploit DB Packet Storm

295	7.5	重要 Network	マイクロソフト	Microsoft Windows Server 2025 Microsoft Windows Server 2008 Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Window…	Windows ライトウェイトディレクトリアクセスプロトコル (LDAP) のサービス拒否の脆弱性	CWE-125 CWE-noinfo	CVE-2024-49113	2025-01-17 17:46	2024-12-10	Show	GitHub Exploit DB Packet Storm

296	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2024-56581	2025-01-17 17:45	2024-11-29	Show	GitHub Exploit DB Packet Storm

297	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2024-56572	2025-01-17 17:45	2024-10-12	Show	GitHub Exploit DB Packet Storm

298	8.1	重要 Network	マイクロソフト	Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Windows 10 Microsoft Windows Server 2019 Microsoft Windows Server&…	Windows リモートデスクトップサービスのリモートでコードが実行される脆弱性	CWE-362 CWE-416 CWE-591	CVE-2024-49132	2025-01-17 17:43	2024-12-10	Show	GitHub Exploit DB Packet Storm

299	8.8	重要 Network	マイクロソフト	Microsoft ODBC Driver Microsoft SQL Server	SQL Server 用 Microsoft ODBC ドライバーのリモートでコードが実行される脆弱性	CWE-122 CWE-noinfo	CVE-2024-28941	2025-01-17 17:41	2024-04-9	Show	GitHub Exploit DB Packet Storm

300	7.5	重要 Network	マイクロソフト	Microsoft Windows Server 2025 Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microso…	Windows リモートデスクトップゲートウェイ (RD ゲートウェイ) のサービス拒否の脆弱性	CWE-362 CWE-400	CVE-2024-49129	2025-01-17 17:39	2024-12-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 20, 2025, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
521	-	-	-	An access control issue in the component form2PortriggerRule.cgi of D-Link 816A2_FWv1.10CNB05_R1B011D88210 allows unauthenticated attackers to set the port trigger of the device via a crafted POST re…	-	CVE-2024-57680	2025-01-17 04:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

522	-	-	-	An access control issue in the component form2RepeaterSetup.cgi of D-Link 816A2_FWv1.10CNB05_R1B011D88210 allows unauthenticated attackers to set the 2.4G and 5G repeater service of the device via a …	-	CVE-2024-57679	2025-01-17 04:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

523	-	-	-	An access control issue in the component form2WlAc.cgi of D-Link 816A2_FWv1.10CNB05_R1B011D88210 allows unauthenticated attackers to set the 2.4G and 5G mac access control list of the device via a cr…	-	CVE-2024-57678	2025-01-17 04:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

524	-	-	-	An access control issue in the component form2Wan.cgi of D-Link 816A2_FWv1.10CNB05_R1B011D88210 allows unauthenticated attackers to set the wan service of the device via a crafted POST request.	-	CVE-2024-57677	2025-01-17 04:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

525	-	-	-	An access control issue in the component form2WlanBasicSetup.cgi of D-Link 816A2_FWv1.10CNB05_R1B011D88210 allows unauthenticated attackers to set the 2.4G and 5G wlan service of the device via a cra…	-	CVE-2024-57676	2025-01-17 04:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

526	-	-	-	Gomatrixserverlib is a Go library for matrix federation. Gomatrixserverlib is vulnerable to server-side request forgery, serving content from a private network it can access, under certain conditions…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2024-52594	2025-01-17 04:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

527	-	-	-	Buffer Overflow vulnerability in Neat Board NFC v.1.20240620.0015 allows a physically proximate attackers to escalate privileges via a crafted payload to the password field	-	CVE-2024-48806	2025-01-17 04:15	2025-01-10	Show	GitHub Exploit DB Packet Storm

528	-	-	-	Canlineapp Online 1.1 is vulnerable to Broken Access Control and allows users with the Auditor role to create an audit template as a result of improper authorization checks. This feature is designate…	-	CVE-2024-56114	2025-01-17 04:15	2025-01-10	Show	GitHub Exploit DB Packet Storm

529	-	-	-	Mattermost Mobile versions <= 2.22.0 fail to properly validate the style of proto supplied to an action's style in post.props.attachments, which allows an attacker to crash the mobile via crafted mal…	-	CVE-2025-20072	2025-01-17 03:15	2025-01-17	Show	GitHub Exploit DB Packet Storm

530	-	-	-	A cross-site scripting (XSS) vulnerability in the /apply/getEditPage?view interface of JFinalOA before v2025.01.01 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.	-	CVE-2024-57776	2025-01-17 03:15	2025-01-17	Show	GitHub Exploit DB Packet Storm