Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
381 5.5 警告
Local
マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 11
Microsoft Windows Server 2022
Microsoft Windows Server 2025
Microsoft Window…
Windows Virtual Trusted Platform Module のサービス拒否の脆弱性 CWE-20
CWE-noinfo
CVE-2025-21284 2025-01-28 14:47 2025-01-14 Show GitHub Exploit DB Packet Storm
382 5.5 警告
Local
マイクロソフト Microsoft Windows Server 2019
Microsoft Windows Server 2012
Microsoft Windows 11
Microsoft Windows Server 2022
Microsoft Window…
Windows イベント トレーシングのサービス拒否の脆弱性 CWE-59
CWE-noinfo
CVE-2025-21274 2025-01-28 14:46 2025-01-14 Show GitHub Exploit DB Packet Storm
383 8.8 重要
Network
マイクロソフト Microsoft Windows Server 2019
Microsoft Windows Server 2012
Microsoft Windows 11
Microsoft Windows Server 2022
Microsoft Window…
Windows テレフォニー サービスのリモートでコードが実行される脆弱性 CWE-122
CWE-noinfo
CVE-2025-21266 2025-01-28 14:43 2025-01-14 Show GitHub Exploit DB Packet Storm
384 8.8 重要
Network
マイクロソフト Microsoft Windows Server 2019
Microsoft Windows Server 2012
Microsoft Windows 11
Microsoft Windows Server 2022
Microsoft Window…
Windows テレフォニー サービスのリモートでコードが実行される脆弱性 CWE-122
CWE-noinfo
CVE-2025-21282 2025-01-28 14:42 2025-01-14 Show GitHub Exploit DB Packet Storm
385 6.6 警告
Physics
マイクロソフト Microsoft Windows Server 2019
Microsoft Windows Server 2012
Microsoft Windows 11
Microsoft Windows Server 2022
Microsoft Window…
Windows デジタル メディアの特権昇格の脆弱性 CWE-125
CWE-noinfo
CVE-2025-21261 2025-01-28 14:42 2025-01-14 Show GitHub Exploit DB Packet Storm
386 5.5 警告
Local
マイクロソフト Microsoft Windows Server 2019
Microsoft Windows 11
Microsoft Windows Server 2022
Microsoft Windows Server 2025
Microsoft Window…
Windows WLAN AutoConfig Service の情報漏えいの脆弱性 CWE-125
CWE-noinfo
CVE-2025-21257 2025-01-28 14:40 2025-01-14 Show GitHub Exploit DB Packet Storm
387 5.5 警告
Local
マイクロソフト Microsoft Windows Server 2019
Microsoft Windows Server 2012
Microsoft Windows 11
Microsoft Windows Server 2022
Microsoft Window…
Windows リモート デスクトップ ゲートウェイ (RD ゲートウェイ) のサービス拒否の脆弱性 CWE-362
CWE-noinfo
CVE-2025-21278 2025-01-28 14:38 2025-01-14 Show GitHub Exploit DB Packet Storm
388 5.9 警告
Network
マイクロソフト Microsoft Windows Server 2019
Microsoft Windows Server 2016
Microsoft Windows Server 2022
Microsoft Windows Server 2025
Windows リモート デスクトップ ゲートウェイ (RD ゲートウェイ) のサービス拒否の脆弱性 CWE-843
CWE-noinfo
CVE-2025-21225 2025-01-28 14:38 2025-01-14 Show GitHub Exploit DB Packet Storm
389 8.8 重要
Network
Shenzhen Tenda Technology Co.,Ltd. tx9 pro ファームウェア Shenzhen Tenda Technology Co.,Ltd. の tx9 pro ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-4113 2025-01-28 14:37 2024-04-24 Show GitHub Exploit DB Packet Storm
390 8.8 重要
Network
Shenzhen Tenda Technology Co.,Ltd. i21 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の i21 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-4245 2025-01-28 14:37 2024-04-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 23, 2025, 4:07 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
280211 - taskfreak taskfreak Multiple unspecified vulnerabilities in TaskFreak! before 0.1.4 have unknown impact and attack vectors. NVD-CWE-Other
CVE-2006-7097 2008-09-6 06:16 2007-03-3 Show GitHub Exploit DB Packet Storm
280212 - putty putty PuTTY 0.59 and earlier uses weak file permissions for (1) ppk files containing private keys generated by puttygen and (2) session logs created by putty, which allows local users to gain sensitive inf… NVD-CWE-Other
CVE-2006-7162 2008-09-6 06:16 2007-03-8 Show GitHub Exploit DB Packet Storm
280213 - dreameesoft password_master DreameeSoft Password Master 1.0 stores the database in an unencrypted format when the master password is set, which allows attackers with physical access to read the database contents via an unspecif… NVD-CWE-Other
CVE-2006-7163 2008-09-6 06:16 2007-03-10 Show GitHub Exploit DB Packet Storm
280214 - ibm websphere_application_server SimpleFileServlet in IBM WebSphere Application Server 5.0.1 through 5.0.2.7 on Linux and UNIX does not block certain invalid URIs and does not issue a security challenge, which allows remote attacker… NVD-CWE-Other
CVE-2006-7164 2008-09-6 06:16 2007-03-20 Show GitHub Exploit DB Packet Storm
280215 - prorat server Unspecified vulnerability in ProRat Server 1.9 Fix2 allows remote attackers to bypass the authentication mechanism for remote login via unspecified vectors. NOTE: the provenance of this information … NVD-CWE-Other
CVE-2006-7167 2008-09-6 06:16 2007-03-20 Show GitHub Exploit DB Packet Storm
280216 - sendmail sendmail The version of Sendmail 8.13.1-2 on Red Hat Enterprise Linux 4 Update 4 and earlier does not allow the administrator to disable SSLv2 encryption, which could cause less secure channels to be used tha… NVD-CWE-Other
CVE-2006-7175 2008-09-6 06:16 2007-03-28 Show GitHub Exploit DB Packet Storm
280217 - photography-on-the-net exhibit_engine_2 Multiple PHP remote file inclusion vulnerabilities in Exhibit Engine (EE) 1.22, and possibly earlier, allow remote attackers to execute arbitrary PHP code via a URL in the toroot parameter to (1) fet… NVD-CWE-Other
CVE-2006-7184 2008-09-6 06:16 2007-03-31 Show GitHub Exploit DB Packet Storm
280218 - web-app.net webapp cgi-lib/subs.pl in web-app.net WebAPP before 0.9.9.3.5 allows attackers to open list files in "profile and other functions," a different vulnerability than CVE-2005-0927. NVD-CWE-Other
CVE-2006-7186 2008-09-6 06:16 2007-04-3 Show GitHub Exploit DB Packet Storm
280219 - web-app.net webapp Cross-site scripting (XSS) vulnerability in the show_recent_searches function in cgi-lib/user-lib/search.pl in web-app.net WebAPP before 20060909 allows remote attackers to inject arbitrary web scrip… NVD-CWE-Other
CVE-2006-7187 2008-09-6 06:16 2007-04-3 Show GitHub Exploit DB Packet Storm
280220 - web-app.net webapp The search function in cgi-lib/user-lib/search.pl in web-app.net WebAPP before 20060909 allows remote attackers to read internal forum posts via certain requests, possibly related to the $info{'forum… NVD-CWE-Other
CVE-2006-7188 2008-09-6 06:16 2007-04-3 Show GitHub Exploit DB Packet Storm