Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 15, 2025, 6:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
331	5.5	警告 Local	クアルコム	WCD9385 ファームウェア fastconnect 6700 ファームウェア fastconnect 7800 ファームウェア wsa8845 ファームウェア wsa8840 ファームウェア sc8380xp ファームウェア WSA8830 ファームウェア sn…	複数のクアルコム製品における境界外読み取りに関する脆弱性 New	CWE-125 CWE-126	CVE-2023-33078	2025-01-14 13:35	2023-05-17	Show	GitHub Exploit DB Packet Storm

332	5.3	警告 Network	IBM	IBM CICS TX	IBM の IBM CICS TX における観測可能な不一致に関する脆弱性 New	CWE-203 CWE-204	CVE-2023-38362	2025-01-14 13:30	2023-11-3	Show	GitHub Exploit DB Packet Storm

333	6.5	警告 Network	Mozilla Foundation	Mozilla Firefox	Mozilla Foundation の Mozilla Firefox における脆弱性 New	CWE-Other その他	CVE-2024-10941	2025-01-14 13:22	2024-05-14	Show	GitHub Exploit DB Packet Storm

334	8.8	重要 Network	マイクロソフト	Microsoft SQL Server Microsoft OLE DB Driver	SQL Server 用 Microsoft OLE DB ドライバーのリモートでコードが実行される脆弱性 New	CWE-122 CWE-noinfo	CVE-2024-28912	2025-01-14 13:22	2024-04-9	Show	GitHub Exploit DB Packet Storm

335	7.2	重要 Network	マイクロソフト	Azure Database for PostgreSQL Flexible Server	Azure Database for PostgreSQL フレキシブルサーバー拡張機能の特権昇格の脆弱性 New	CWE-77 CWE-noinfo	CVE-2024-43613	2025-01-14 13:22	2024-11-12	Show	GitHub Exploit DB Packet Storm

336	6.2	警告 Adjacent	マイクロソフト	Azure Arc Cluster microsoft.azure.hybridnetwork Extension Azure Arc Cluster microsoft.azstackhci.operator Extension Azure Arc Cluster micr…	Azure Arc 対応 Kubernetes 拡張機能クラスタースコープの特権昇格の脆弱性 New	CWE-284 CWE-noinfo	CVE-2024-28917	2025-01-14 13:22	2024-04-9	Show	GitHub Exploit DB Packet Storm

337	4.6	警告 Physics	Linux	Linux Kernel	Linux の Linux Kernel における境界条件の判定に関する脆弱性 New	CWE-193 境界条件の判定	CVE-2024-53149	2025-01-14 12:04	2024-11-10	Show	GitHub Exploit DB Packet Storm

338	5.3	警告 Network	Huawei	USG6000V ファームウェア NGFW Module ファームウェア Secospace USG6600 ファームウェア NIP6800 ファームウェア Secospace USG6500 ファームウェア NIP6300 ファームウェア IPS Module…	複数の Huawei 製品における境界外読み取りに関する脆弱性 New	CWE-125 CWE-125	CVE-2020-1819	2025-01-14 11:48	2024-12-27	Show	GitHub Exploit DB Packet Storm

339	4.3	警告 Network	WPDeveloper	Essential Addons for Elementor	WPDeveloper の WordPress 用 Essential Addons for Elementor における認証の欠如に関する脆弱性 New	CWE-862 認証の欠如	CVE-2021-4446	2025-01-14 11:48	2024-10-16	Show	GitHub Exploit DB Packet Storm

340	7.5	重要 Network	クアルコム	CSRB31024 ファームウェア AR8035 ファームウェア fastconnect 6900 ファームウェア QCA6391 ファームウェア QCA6564AU ファームウェア fastconnect 6700 ファームウェア QCA6426 ファームウェア …	複数のクアルコム製品における有効期限後のメモリの解放の欠如に関する脆弱性 New	CWE-401 CWE-401	CVE-2023-33086	2025-01-14 11:48	2023-05-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 16, 2025, 4:15 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
275541	-	cisco	ios	Off-by-one error in Cisco IOS allows remote attackers to execute arbitrary code via unspecified vectors that trigger a heap-based buffer overflow. NOTE: as of 20071016, the only disclosure is a vagu…	NVD-CWE-Other	CVE-2007-5551	2008-09-6 06:31	2007-10-19	Show	GitHub Exploit DB Packet Storm

275542	-	cisco	ios	Integer overflow in Cisco IOS allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable informat…	CWE-189 Numeric Errors	CVE-2007-5552	2008-09-6 06:31	2007-10-19	Show	GitHub Exploit DB Packet Storm

275543	-	oracle	database_server	Oracle allows remote attackers to obtain server memory contents via crafted packets, aka Oracle reference number 7892711. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no ac…	CWE-200 Information Exposure	CVE-2007-5554	2008-09-6 06:31	2007-10-19	Show	GitHub Exploit DB Packet Storm

275544	-	symantec	altiris_deployment_solution	Unspecified vulnerability in Symantec Altiris Deployment Solution allows attackers to obtain authentication credentials via unknown vectors, aka "Authentication Credentials Information Leakage in Alt…	CWE-200 Information Exposure	CVE-2007-5555	2008-09-6 06:31	2007-10-19	Show	GitHub Exploit DB Packet Storm

275545	-	avaya	voip_handset	Unspecified vulnerability in the Avaya VoIP Handset allows remote attackers to cause a denial of service (reboot) via crafted packets. NOTE: as of 20071016, the only disclosure is a vague pre-advisor…	CWE-20 Improper Input Validation	CVE-2007-5556	2008-09-6 06:31	2007-10-19	Show	GitHub Exploit DB Packet Storm

275546	-	lg_electronics	lg_mobile_handset	Integer overflow in the LG Mobile handset allows remote attackers to cause a denial of service (reboot) via a crafted HTTP packet. NOTE: as of 20071016, the only disclosure is a vague pre-advisory w…	CWE-189 Numeric Errors	CVE-2007-5558	2008-09-6 06:31	2007-10-19	Show	GitHub Exploit DB Packet Storm

275547	-	ibm	thinkvantage_tpm	Heap-based buffer overflow in the IBM ThinkVantage TPM Service allows remote attackers to execute arbitrary code via a crafted HTTP packet. NOTE: as of 20071016, the only disclosure is a vague pre-ad…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2007-5559	2008-09-6 06:31	2007-10-19	Show	GitHub Exploit DB Packet Storm

275548	-	juniper	http_service	Heap-based buffer overflow in the Juniper HTTP Service allows remote attackers to execute arbitrary code via a crafted HTTP packet. NOTE: as of 20071016, the only disclosure is a vague pre-advisory …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2007-5560	2008-09-6 06:31	2007-10-19	Show	GitHub Exploit DB Packet Storm

275549	-	oracle	enterprise_grid_console_server opmn_daemon	Format string vulnerability in the logging function in the Oracle OPMN daemon, as used on Oracle Enterprise Grid Console server 10.2.0.1, allows remote attackers to execute arbitrary code via format …	CWE-134 Use of Externally-Controlled Format String	CVE-2007-5561	2008-09-6 06:31	2007-10-19	Show	GitHub Exploit DB Packet Storm

275550	-	xscreensaver	xscreensaver	xscreensaver 5.03 and earlier, when running without xscreensaver-gl-extras (GL extras) installed, crashes when /usr/bin/xscreensaver-gl-helper does not exist and a user attempts to unlock the screen,…	CWE-399 Resource Management Errors	CVE-2007-5585	2008-09-6 06:31	2007-10-20	Show	GitHub Exploit DB Packet Storm