Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 15, 2025, 6:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
371 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性 New CWE-476
NULL ポインタデリファレンス 		CVE-2024-56782 2025-01-14 10:07 2024-11-12 Show GitHub Exploit DB Packet Storm
372 8.8 重要
Local 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows Server 2019
Microsoft Windows 11
Microsoft Windows 10 		Windows Text Service Framework の特権昇格の脆弱性 New CWE-862
CWE-noinfo
CVE-2024-21417 2025-01-14 10:07 2024-07-9 Show GitHub Exploit DB Packet Storm
373 5.5 警告
Local 		マイクロソフト Microsoft Windows 10
Microsoft Windows Server 2022
Microsoft Windows Server 2019
Microsoft Windows 11
Microsoft Windows Server&… 		Windows Hyper-V のサービス拒否の脆弱性 New CWE-130
CWE-noinfo
CVE-2024-29064 2025-01-14 10:06 2024-04-9 Show GitHub Exploit DB Packet Storm
374 5.5 警告
Local 		アドビシステムズ Adobe Acrobat
Adobe Acrobat DC
Adobe Reader
Adobe Acrobat Reader DC 		複数のアドビ製品における境界外読み取りに関する脆弱性 New CWE-125
境界外読み取り 		CVE-2022-44516 2025-01-14 10:01 2022-04-12 Show GitHub Exploit DB Packet Storm
375 6.8 警告
Adjacent 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 11
Microsoft Windows Server 2012
Microsoft Windows 10
Microsoft Windows Server&… 		セキュア ブートのセキュリティ機能のバイパスの脆弱性 New CWE-20
CWE-noinfo
CVE-2024-28897 2025-01-14 09:54 2024-04-9 Show GitHub Exploit DB Packet Storm
376 7.1 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における境界外読み取りに関する脆弱性 New CWE-125
境界外読み取り 		CVE-2021-46965 2025-01-14 09:54 2021-03-11 Show GitHub Exploit DB Packet Storm
377 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における有効期限後のメモリの解放の欠如に関する脆弱性 New CWE-401
有効期限後のメモリの解放の欠如 		CVE-2021-46972 2025-01-14 09:54 2021-04-12 Show GitHub Exploit DB Packet Storm
378 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における脆弱性 New CWE-noinfo
情報不足 		CVE-2021-46977 2025-01-14 09:54 2021-05-7 Show GitHub Exploit DB Packet Storm
379 7.1 重要
Local 		Linux Linux Kernel Linux の Linux Kernel における脆弱性 New CWE-noinfo
情報不足 		CVE-2021-47004 2025-01-14 09:54 2021-03-26 Show GitHub Exploit DB Packet Storm
380 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における脆弱性 New CWE-noinfo
情報不足 		CVE-2021-47011 2025-01-14 09:54 2021-04-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 16, 2025, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
171 - - - MSFM before 2025.01.01 was discovered to contain a fastjson deserialization vulnerability via the component system/table/add. New - CVE-2024-57764 2025-01-15 09:15 2025-01-15 Show GitHub Exploit DB Packet Storm
172 - - - MSFM before 2025.01.01 was discovered to contain a fastjson deserialization vulnerability via the component system/table/addField. New - CVE-2024-57763 2025-01-15 09:15 2025-01-15 Show GitHub Exploit DB Packet Storm
173 - - - MSFM before v2025.01.01 was discovered to contain a deserialization vulnerability via the pom.xml configuration file. New - CVE-2024-57762 2025-01-15 09:15 2025-01-15 Show GitHub Exploit DB Packet Storm
174 - - - An arbitrary file upload vulnerability in the parserXML() method of JeeWMS before v2025.01.01 allows attackers to execute arbitrary code via uploading a crafted file. New - CVE-2024-57761 2025-01-15 09:15 2025-01-15 Show GitHub Exploit DB Packet Storm
175 - - - JeeWMS before v2025.01.01 was discovered to contain a SQL injection vulnerability via the ReportId parameter at /core/CGReportDao.java. New - CVE-2024-57760 2025-01-15 09:15 2025-01-15 Show GitHub Exploit DB Packet Storm
176 - - - JeeWMS before v2025.01.01 was discovered to contain a permission bypass in the component /interceptors/AuthInterceptor.cava. New - CVE-2024-57757 2025-01-15 09:15 2025-01-15 Show GitHub Exploit DB Packet Storm
177 - - - The ip_mod_dns_key_form.cgi request in GestioIP v3.5.7 is vulnerable to Stored XSS. An attacker can inject malicious code into the "TSIG Key" field, which is saved in the database and triggers XSS wh… New - CVE-2024-50861 2025-01-15 09:15 2025-01-15 Show GitHub Exploit DB Packet Storm
178 - - - The ip_import_acl_csv request in GestioIP v3.5.7 is vulnerable to Reflected XSS. When a user uploads an improperly formatted file, the content may be reflected in the HTML response, allowing the atta… New - CVE-2024-50859 2025-01-15 09:15 2025-01-15 Show GitHub Exploit DB Packet Storm
179 - - - Multiple endpoints in GestioIP v3.5.7 are vulnerable to Cross-Site Request Forgery (CSRF). An attacker can execute actions via the admin's browser by hosting a malicious URL, leading to data modifica… New - CVE-2024-50858 2025-01-15 09:15 2025-01-15 Show GitHub Exploit DB Packet Storm
180 - - - The ip_do_job request in GestioIP v3.5.7 is vulnerable to Cross-Site Scripting (XSS). It allows data exfiltration and enables CSRF attacks. The vulnerability requires specific user permissions within… New - CVE-2024-50857 2025-01-15 09:15 2025-01-15 Show GitHub Exploit DB Packet Storm