Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
401 6.5 警告
Network 		デル PowerProtect Data Manager デルの PowerProtect Data Manager における XML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2024-25971 2025-01-28 14:30 2024-03-28 Show GitHub Exploit DB Packet Storm
402 4.3 警告
Network 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows Server 2012
Microsoft Windows 11
Microsoft Windows Server 2022
Microsoft Window… 		Windows HTML プラットフォームのセキュリティ機能のバイパスの脆弱性 CWE-41
CWE-noinfo
CVE-2025-21269 2025-01-28 14:28 2025-01-14 Show GitHub Exploit DB Packet Storm
403 6.5 警告
Adjacent 		Linux Foundation Magma Linux Foundation の Magma における NULL ポインタデリファレンスに関する脆弱性 CWE-476
CWE-476
CVE-2023-37030 2025-01-28 14:26 2023-06-28 Show GitHub Exploit DB Packet Storm
404 6.5 警告
Adjacent 		Linux Foundation Magma Linux Foundation の Magma における NULL ポインタデリファレンスに関する脆弱性 CWE-476
CWE-476
CVE-2023-37033 2025-01-28 14:26 2023-06-28 Show GitHub Exploit DB Packet Storm
405 7 重要
Local 		クアルコム sa8255p ファームウェア
snapdragon auto 5g modem-rf gen 2 ファームウェア
WSA8835 ファームウェア
sa8775p ファームウェア
qam8775p ファームウェア
qca6698aq ファームウェア
w… 		複数のクアルコム製品における解放済みメモリの使用に関する脆弱性 CWE-416
CWE-416
CVE-2023-43543 2025-01-28 14:26 2023-09-19 Show GitHub Exploit DB Packet Storm
406 5.4 警告
Network 		getshortcodes shortcodes ultimate getshortcodes の WordPress 用 shortcodes ultimate におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-0792 2025-01-28 14:26 2024-02-29 Show GitHub Exploit DB Packet Storm
407 6.6 警告
Physics 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows Server 2012
Microsoft Windows 11
Microsoft Windows Server 2022
Microsoft Window… 		Windows デジタル メディアの特権昇格の脆弱性 CWE-125
CWE-noinfo
CVE-2025-21265 2025-01-28 14:23 2025-01-14 Show GitHub Exploit DB Packet Storm
408 6.6 警告
Physics 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows Server 2012
Microsoft Windows 11
Microsoft Windows Server 2022
Microsoft Window… 		Windows デジタル メディアの特権昇格の脆弱性 CWE-125
CWE-noinfo
CVE-2025-21260 2025-01-28 14:19 2025-01-14 Show GitHub Exploit DB Packet Storm
409 7.8 重要
Local 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows 11
Microsoft Windows 10
Microsoft Windows Server 2025 		Windows アプリ パッケージ インストーラーの特権昇格の脆弱性 CWE-285
CWE-noinfo
CVE-2025-21275 2025-01-28 14:15 2025-01-14 Show GitHub Exploit DB Packet Storm
410 7.5 重要
Network 		マイクロソフト Microsoft Windows Server 2019
Microsoft Windows Server 2012
Microsoft Windows 11
Microsoft Windows Server 2022
Microsoft Window… 		Microsoft Message Queuing (MSMQ) のサービス拒否の脆弱性 CWE-400
CWE-noinfo
CVE-2025-21270 2025-01-28 14:07 2025-01-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 10, 2025, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
274141 - adobe coldfusion Unspecified vulnerability in Adobe ColdFusion 8 and 8.0.1 and ColdFusion MX 7.0.2 allows local users to bypass sandbox restrictions, and obtain sensitive information or possibly gain privileges, via … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-4831 2011-03-8 12:13 2008-11-10 Show GitHub Exploit DB Packet Storm
274142 - mybb mybb Cross-site scripting (XSS) vulnerability in the redirect function in functions.php in MyBB (aka MyBulletinBoard) 1.4.2 allows remote attackers to inject arbitrary web script or HTML via the url param… CWE-79
Cross-site Scripting 		CVE-2008-4928 2011-03-8 12:13 2008-11-5 Show GitHub Exploit DB Packet Storm
274143 - ultravnc ultravnc Multiple stack-based buffer overflows in multiple functions in vncviewer/FileTransfer.cpp in vncviewer for UltraVNC 1.0.2 and 1.0.4 before 01252008, when in LISTENING mode or when using the DSM plugi… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2008-5001 2011-03-8 12:13 2008-11-10 Show GitHub Exploit DB Packet Storm
274144 - invision_power_services invision_power_board SQL injection vulnerability in xmlout.php in Invision Power Board (IP.Board or IPB) 2.2.x and 2.3.x allows remote attackers to execute arbitrary SQL commands via the name parameter. CWE-89
SQL Injection 		CVE-2008-4171 2011-03-8 12:12 2008-09-23 Show GitHub Exploit DB Packet Storm
274145 - apple mac_os_x
mac_os_x_server 		Integer signedness error in BOM in Apple Mac OS X before 10.5.6 allows remote attackers to execute arbitrary code via the headers in a crafted CPIO archive, leading to a stack-based buffer overflow. CWE-189
Numeric Errors 		CVE-2008-4217 2011-03-8 12:12 2008-12-17 Show GitHub Exploit DB Packet Storm
274146 - apple mac_os_x
mac_os_x_server 		Multiple integer overflows in the kernel in Apple Mac OS X before 10.5.6 on Intel platforms allow local users to gain privileges via a crafted call to (1) i386_set_ldt or (2) i386_get_ldt. CWE-189
Numeric Errors 		CVE-2008-4218 2011-03-8 12:12 2008-12-17 Show GitHub Exploit DB Packet Storm
274147 - apple mac_os_x
mac_os_x_server 		The kernel in Apple Mac OS X before 10.5.6 allows local users to cause a denial of service (infinite loop and system halt) by running an application that is dynamically linked to libraries on an NFS … CWE-399
 Resource Management Errors 		CVE-2008-4219 2011-03-8 12:12 2008-12-17 Show GitHub Exploit DB Packet Storm
274148 - apple mac_os_x
mac_os_x_server 		Integer overflow in the inet_net_pton API in Libsystem in Apple Mac OS X before 10.5.6 allows context-dependent attackers to execute arbitrary code or cause a denial of service (application crash) vi… CWE-189
Numeric Errors 		CVE-2008-4220 2011-03-8 12:12 2008-12-17 Show GitHub Exploit DB Packet Storm
274149 - apple mac_os_x
mac_os_x_server 		The strptime API in Libsystem in Apple Mac OS X before 10.5.6 allows context-dependent attackers to cause a denial of service (memory corruption and application crash) or execute arbitrary code via a… CWE-399
 Resource Management Errors 		CVE-2008-4221 2011-03-8 12:12 2008-12-17 Show GitHub Exploit DB Packet Storm
274150 - apple mac_os_x
mac_os_x_server 		natd in network_cmds in Apple Mac OS X before 10.5.6, when Internet Sharing is enabled, allows remote attackers to cause a denial of service (infinite loop) via a crafted TCP packet. CWE-399
 Resource Management Errors 		CVE-2008-4222 2011-03-8 12:12 2008-12-17 Show GitHub Exploit DB Packet Storm