Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 16, 2025, 6:05 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
381	5.3	警告 Network	WPDeveloper	Essential Addons for Elementor	WPDeveloper の WordPress 用 Essential Addons for Elementor における重要な情報のセキュアでない格納に関する脆弱性 New	CWE-922 重要な情報のセキュアでない格納	CVE-2024-3733	2025-01-14 18:48	2024-04-25	Show	GitHub Exploit DB Packet Storm

382	6.5	警告 Network	lunary	lunary	lunary におけるユーザ制御の鍵による認証回避に関する脆弱性 New	CWE-639 CWE-821	CVE-2024-4154	2025-01-14 18:48	2024-05-21	Show	GitHub Exploit DB Packet Storm

383	5.3	警告 Network	GLPI-PROJECT.ORG	GLPI	GLPI-PROJECT.ORG の GLPI におけるセッションの固定化の脆弱性 New	CWE-287 CWE-384 CWE-79	CVE-2024-50339	2025-01-14 18:48	2024-12-12	Show	GitHub Exploit DB Packet Storm

384	7.1	重要 Local	Huawei	HarmonyOS EMUI	Huawei の EMUI および HarmonyOS における脆弱性 New	CWE-16 CWE-noinfo	CVE-2024-54099	2025-01-14 18:48	2024-12-12	Show	GitHub Exploit DB Packet Storm

385	5.3	警告 Network	Huawei	NIP6600 ファームウェア NIP6800 ファームウェア Secospace USG6500 ファームウェア NIP6300 ファームウェア IPS Module ファームウェア Secospace USG6300 ファームウェア USG6000V ファー…	複数の Huawei 製品における境界外読み取りに関する脆弱性 New	CWE-125 CWE-125	CVE-2020-1821	2025-01-14 18:48	2024-12-28	Show	GitHub Exploit DB Packet Storm

386	5.3	警告 Network	Huawei	NIP6600 ファームウェア NIP6800 ファームウェア Secospace USG6500 ファームウェア NIP6300 ファームウェア IPS Module ファームウェア Secospace USG6300 ファームウェア USG6000V ファー…	複数の Huawei 製品における境界外読み取りに関する脆弱性 New	CWE-125 CWE-125	CVE-2020-1823	2025-01-14 18:48	2024-12-28	Show	GitHub Exploit DB Packet Storm

387	7.2	重要 Network	Huawei	Mate 30 ファームウェア	Huawei の Mate 30 ファームウェアにおける境界外読み取りに関する脆弱性 New	CWE-125 CWE-125 CWE-787	CVE-2020-9211	2025-01-14 18:48	2020-02-18	Show	GitHub Exploit DB Packet Storm

388	9.8	緊急 Network		-	CSZ CMS における危険なタイプのファイルの無制限アップロードに関する脆弱性 New	CWE-434 危険なタイプのファイルの無制限アップロード	CVE-2024-25414	2025-01-14 18:48	2024-02-16	Show	GitHub Exploit DB Packet Storm

389	9.8	緊急 Network	マイクロソフト	Microsoft Update Catalog	Microsoft Update カタログの特権昇格の脆弱性 New	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2024-49147	2025-01-14 18:08	2024-12-12	Show	GitHub Exploit DB Packet Storm

390	9.8	緊急 Network	マイクロソフト	Microsoft Configuration Manager	Microsoft Configuration Manager のリモートでコードが実行される脆弱性 New	CWE-89 CWE-noinfo	CVE-2024-43468	2025-01-14 17:52	2024-10-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 16, 2025, 4:15 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
201	-		-	-	A flaw was found in rsync. It could allow a server to enumerate the contents of an arbitrary file from the client's machine. This issue occurs when files are being copied from a client to a server. D… New	-	CVE-2024-12086	2025-01-15 07:15	2025-01-15	Show	GitHub Exploit DB Packet Storm

202	-		-	-	IPv6-in-IPv4 tunneling (RFC 4213) allows an attacker to spoof and route traffic via an exposed network interface. New	-	CVE-2025-23019	2025-01-15 05:15	2025-01-15	Show	GitHub Exploit DB Packet Storm

203	-		-	-	IPv4-in-IPv6 and IPv6-in-IPv6 tunneling (RFC 2473) do not require the validation or verification of the source of a network packet, allowing an attacker to spoof and route arbitrary traffic via an ex… New	-	CVE-2025-23018	2025-01-15 05:15	2025-01-15	Show	GitHub Exploit DB Packet Storm

204	7.8	HIGH Local	-	-	Substance3D - Designer versions 14.0 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitat… New	CWE-122 Heap-based Buffer Overflow	CVE-2025-21139	2025-01-15 05:15	2025-01-15	Show	GitHub Exploit DB Packet Storm

205	7.8	HIGH Local	-	-	Substance3D - Designer versions 14.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of… New	CWE-787 Out-of-bounds Write	CVE-2025-21138	2025-01-15 05:15	2025-01-15	Show	GitHub Exploit DB Packet Storm

206	7.8	HIGH Local	-	-	Substance3D - Designer versions 14.0 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitat… New	CWE-122 Heap-based Buffer Overflow	CVE-2025-21137	2025-01-15 05:15	2025-01-15	Show	GitHub Exploit DB Packet Storm

207	7.8	HIGH Local	-	-	Substance3D - Designer versions 14.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of… New	CWE-787 Out-of-bounds Write	CVE-2025-21136	2025-01-15 05:15	2025-01-15	Show	GitHub Exploit DB Packet Storm

208	7.8	HIGH Local	-	-	Animate versions 24.0.6, 23.0.9 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. E… New	CWE-191 Integer Underflow (Wrap or Wraparound)	CVE-2025-21135	2025-01-15 05:15	2025-01-15	Show	GitHub Exploit DB Packet Storm

209	-		-	-	Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. New	-	CVE-2024-5175	2025-01-15 05:15	2025-01-15	Show	GitHub Exploit DB Packet Storm

210	-		-	-	TYPO3 is a free and open source Content Management Framework. Applications that use `TYPO3\CMS\Core\Http\Uri` to parse externally provided URLs (e.g., via a query parameter) and validate the host of … New	CWE-601 Open Redirect	CVE-2024-55892	2025-01-15 05:15	2025-01-15	Show	GitHub Exploit DB Packet Storm