Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 23, 2025, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
331	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における脆弱性	CWE-noinfo 情報不足	CVE-2024-35983	2025-01-21 10:32	2024-04-29	Show	GitHub Exploit DB Packet Storm

332	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2024-53237	2025-01-21 10:31	2024-11-14	Show	GitHub Exploit DB Packet Storm

333	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における脆弱性	CWE-noinfo 情報不足	CVE-2023-52582	2025-01-21 10:29	2023-09-18	Show	GitHub Exploit DB Packet Storm

334	4.3	警告 Network	アップル	iOS visionos watchOS iPadOS	複数のアップル製品におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2024-54535	2025-01-21 10:27	2024-10-28	Show	GitHub Exploit DB Packet Storm

335	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における脆弱性	CWE-Other その他	CVE-2024-35975	2025-01-21 10:26	2024-04-7	Show	GitHub Exploit DB Packet Storm

336	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における二重解放に関する脆弱性	CWE-415 二重解放	CVE-2024-26748	2025-01-21 10:24	2024-02-19	Show	GitHub Exploit DB Packet Storm

337	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2023-52662	2025-01-21 10:21	2023-12-4	Show	GitHub Exploit DB Packet Storm

338	2.3	低 Local	フォーティネット	FortiManager FortiAnalyzer-BigData FortiAnalyzer	複数のフォーティネット製品におけるパストラバーサルの脆弱性	CWE-22 CWE-23	CVE-2024-35274	2025-01-21 10:01	2024-11-12	Show	GitHub Exploit DB Packet Storm

339	6.5	警告 Network	Jenkins プロジェクト	MQ Notifier Plugin	Jenkins プロジェクトの Jenkins 用 MQ Notifier Plugin における脆弱性	CWE-noinfo 情報不足	CVE-2024-28154	2025-01-21 09:59	2024-03-6	Show	GitHub Exploit DB Packet Storm

340	7.2	重要 Network	SimpleHelp Ltd	SimpleHelp	SimpleHelp Ltd の SimpleHelp におけるリンク解釈に関する脆弱性	CWE-59 リンク解釈の問題	CVE-2024-57728	2025-01-21 09:51	2025-01-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 24, 2025, 4:45 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
275001	-	apple	mac_os_x mac_os_x_server	QuickDraw Manager in Apple Mac OS X 10.4.11 and 10.5 before 10.5.7 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PICT image that tri…	CWE-94 Code Injection	CVE-2009-0160	2009-05-16 14:29	2009-05-14	Show	GitHub Exploit DB Packet Storm

275002	-	apport ubuntu	apport ubuntu	Apport before 0.108.4 on Ubuntu 8.04 LTS, before 0.119.2 on Ubuntu 8.10, and before 1.0-0ubuntu5.2 on Ubuntu 9.04 does not properly remove files from the application's crash-report directory, which a…	CWE-16 Configuration	CVE-2009-1295	2009-05-15 14:29	2009-05-1	Show	GitHub Exploit DB Packet Storm

275003	-	nlnetlabs	ldns	Heap-based buffer overflow in the ldns_rr_new_frm_str_internal function in ldns 1.4.x allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via …	CWE-399 Resource Management Errors	CVE-2009-1086	2009-05-15 14:28	2009-03-26	Show	GitHub Exploit DB Packet Storm

275004	-	sun	opensolaris	Unspecified vulnerability in the SCTP sockets implementation in Sun OpenSolaris snv_106 through snv_107 allows local users to cause a denial of service (panic) via unknown vectors.	NVD-CWE-noinfo	CVE-2009-1359	2009-05-14 14:36	2009-04-23	Show	GitHub Exploit DB Packet Storm

275005	-	dotnetnuke	dotnetnuke	Cross-site scripting (XSS) vulnerability in Website\admin\Sales\paypalipn.aspx in DotNetNuke (DNN) before 4.9.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors …	CWE-79 Cross-site Scripting	CVE-2009-1366	2009-05-14 14:36	2009-04-23	Show	GitHub Exploit DB Packet Storm

275006	-	php	php	PHP 5.2.7 contains an incorrect change to the FILTER_UNSAFE_RAW functionality, and unintentionally disables magic_quotes_gpc regardless of the actual magic_quotes_gpc setting, which might make it eas…	CWE-16 Configuration	CVE-2008-5844	2009-05-14 14:32	2009-01-6	Show	GitHub Exploit DB Packet Storm

275007	-	asterisk	zaptel	Array index error in the (1) torisa.c and (2) dahdi/tor2.c drivers in Zaptel (aka DAHDI) 1.4.11 and earlier allows local users in the dialout group to overwrite an integer value in kernel memory by w…	CWE-189 Numeric Errors	CVE-2008-5396	2009-05-14 14:31	2008-12-9	Show	GitHub Exploit DB Packet Storm

275008	-	exif	exif	Cross-site scripting (XSS) vulnerability in the Exif module 5.x-1.x before 5.x-1.2 and 6.x-1.x-dev before April 13, 2009, a module for Drupal, allows remote attackers to inject arbitrary web script o…	CWE-79 Cross-site Scripting	CVE-2009-1501	2009-05-13 14:28	2009-05-2	Show	GitHub Exploit DB Packet Storm

275009	-	drupal	nodeaccess_userreference	The Node Access User Reference module 5.x before 5.x-2.0-beta4 and 6.x before 6.x-2.0-beta6, a module for Drupal, interprets an empty CCK user reference as a reference to the anonymous user, which mi…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2009-1507	2009-05-13 14:28	2009-05-2	Show	GitHub Exploit DB Packet Storm

275010	-	r020	tematres	Multiple SQL injection vulnerabilities in TemaTres 1.031, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) id_correo_electronico and (2) id_pass…	CWE-89 SQL Injection	CVE-2009-1585	2009-05-13 14:28	2009-05-8	Show	GitHub Exploit DB Packet Storm