Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 14, 2025, 6:04 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
391	7.3	重要 Local	Eclipse Foundation	Eclipse OpenJ9	Eclipse Foundation の Eclipse OpenJ9 における境界外読み取りに関する脆弱性	CWE-125 CWE-125 CWE-787 CWE-787 CWE-805	CVE-2024-3933	2025-01-10 11:19	2024-05-27	Show	GitHub Exploit DB Packet Storm

392	5.5	警告 Local	マイクロソフト	Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Windows Server 2012 Microsoft Windows Server 2016 Microsoft Window…	Windows Remote Access Connection Manager の情報漏えいの脆弱性	CWE-125 CWE-126	CVE-2024-28902	2025-01-10 11:13	2024-04-9	Show	GitHub Exploit DB Packet Storm

393	6.3	警告 Adjacent	マイクロソフト	Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Windows Server 2012 Microsoft Windows Server 2016 Microsoft Window…	セキュアブートのセキュリティ機能のバイパスの脆弱性	CWE-121 CWE-noinfo	CVE-2024-28898	2025-01-10 11:11	2024-04-9	Show	GitHub Exploit DB Packet Storm

394	6.8	警告 Physics	マイクロソフト	Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Windows Server 2012 Microsoft Windows Server 2016 Microsoft Window…	Windows rndismp6.sys のリモートでコードが実行される脆弱性	CWE-20 CWE-noinfo	CVE-2024-26253	2025-01-10 11:07	2024-04-9	Show	GitHub Exploit DB Packet Storm

395	6.6	警告 Network	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft Windows Server 2022	Windows DNS サーバーのリモートでコードが実行される脆弱性	CWE-416 CWE-noinfo	CVE-2024-26233	2025-01-10 11:04	2024-04-9	Show	GitHub Exploit DB Packet Storm

396	6.6	警告 Network	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft Windows Server 2022	Windows DNS サーバーのリモートでコードが実行される脆弱性	CWE-416 CWE-noinfo	CVE-2024-26222	2025-01-10 11:02	2024-04-9	Show	GitHub Exploit DB Packet Storm

397	7.5	重要 Network	マイクロソフト	Microsoft Windows Server 2022 Microsoft Windows Server 2012 Microsoft Windows Server 2016 Microsoft Windows Server 2008 Microso…	DHCP Server サービスのサービス拒否の脆弱性	CWE-400 CWE-noinfo	CVE-2024-26215	2025-01-10 10:59	2024-04-9	Show	GitHub Exploit DB Packet Storm

398	8.8	重要 Network	マイクロソフト	Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Windows Server 2012 Microsoft Windows Server 2016 Microsoft Window…	Windows ルーティングとリモートアクセスサービス (RRAS) のリモートでコードが実行される脆弱性	CWE-122 CWE-noinfo	CVE-2024-26200	2025-01-10 10:54	2024-04-9	Show	GitHub Exploit DB Packet Storm

399	7.2	重要 Network	マイクロソフト	Microsoft Windows Server 2022 Microsoft Windows Server 2012 Microsoft Windows Server 2016 Microsoft Windows Server 2008 Microso…	DHCP Server Service のリモートでコードが実行される脆弱性	CWE-122 CWE-noinfo	CVE-2024-26195	2025-01-10 10:51	2024-04-9	Show	GitHub Exploit DB Packet Storm

400	7.1	重要 Adjacent	マイクロソフト	Microsoft Windows Server 2012	セキュアブートのセキュリティ機能のバイパスの脆弱性	CWE-121 CWE-noinfo	CVE-2024-20688	2025-01-10 10:48	2024-04-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 14, 2025, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
276231	-	apache	james	Spooler in Apache Foundation James 2.2.0 allows local users to cause a denial of service (memory consumption) by triggering various error conditions in the retrieve function, which prevents a lock fr…	NVD-CWE-Other	CVE-2004-2650	2008-09-6 05:44	2004-12-31	Show	GitHub Exploit DB Packet Storm

276232	-	pd9_software	megabbs	Unspecified vulnerability in PD9 Software MegaBBS 2.0 and 2.1 allows attackers to gain privileges via unknown vectors involving (1) admin/userlevelmembers-edit.asp and (2) admin/edit-groups.asp.	NVD-CWE-Other	CVE-2004-2653	2008-09-6 05:44	2004-12-31	Show	GitHub Exploit DB Packet Storm

276233	-	squid	squid	The clientAbortBody function in client_side.c in Squid Web Proxy Cache before 2.6 STABLE6 allows remote attackers to cause a denial of service (segmentation fault) via unspecified vectors that trigge…	NVD-CWE-Other	CVE-2004-2654	2008-09-6 05:44	2004-12-31	Show	GitHub Exploit DB Packet Storm

276234	-	suse	suse_linux	resmgr in SUSE CORE 9 does not properly identify terminal names, which allows local users to spoof terminals and login types.	NVD-CWE-Other	CVE-2004-2658	2008-09-6 05:44	2004-12-31	Show	GitHub Exploit DB Packet Storm

276235	-	soft3304	04webserver	Soft3304 04WebServer before 1.41 does not properly check file names, which allows remote attackers to obtain sensitive information (CGI source code).	NVD-CWE-Other	CVE-2004-2661	2008-09-6 05:44	2004-12-31	Show	GitHub Exploit DB Packet Storm

276236	-	soft3304	04webserver	Soft3304 04WebServer before 1.41 allows remote attackers to cause a denial of service (resource consumption or crash) via certain data related to OpenSSL, which causes a thread to terminate but conti…	NVD-CWE-Other	CVE-2004-2662	2008-09-6 05:44	2004-12-31	Show	GitHub Exploit DB Packet Storm

276237	-	john_lim	adodb	John Lim ADOdb Library for PHP before 4.23 allows remote attackers to obtain sensitive information via direct requests to certain scripts that result in an undefined value of ADODB_DIR, which reveals…	NVD-CWE-Other	CVE-2004-2664	2008-09-6 05:44	2004-12-31	Show	GitHub Exploit DB Packet Storm

276238	-	john_lim	adodb	This vulnerability is addressed in the following product release: John Lim, ADOdb, 4.23	NVD-CWE-Other	CVE-2004-2664	2008-09-6 05:44	2004-12-31	Show	GitHub Exploit DB Packet Storm

276239	-	mantis	mantis	Mantis before 20041016 provides a complete Issue History (Bug History) in the web interface regardless of view_history_threshold, which allows remote attackers to obtain sensitive information (privat…	NVD-CWE-Other	CVE-2004-2666	2008-09-6 05:44	2004-12-31	Show	GitHub Exploit DB Packet Storm

276240	-	-	-	Cross-site scripting (XSS) vulnerability in Lotus Domino 6.0.x before 6.0.4 and 6.5.x before 6.5.2 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors.	NVD-CWE-Other	CVE-2004-2667	2008-09-6 05:44	2004-12-31	Show	GitHub Exploit DB Packet Storm