Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
431	7.5	重要 Network	openatom	openharmony	openatom の openharmony における脆弱性	CWE-20 CWE-noinfo	CVE-2024-28226	2025-01-28 13:06	2024-04-2	Show	GitHub Exploit DB Packet Storm

432	6.5	警告 Adjacent	Linux Foundation	Magma	Linux Foundation の Magma における NULL ポインタデリファレンスに関する脆弱性	CWE-476 CWE-476	CVE-2023-37037	2025-01-28 12:54	2023-06-28	Show	GitHub Exploit DB Packet Storm

433	7.5	重要 Network	クアルコム	QCA6420 ファームウェア qcm4325 ファームウェア QCA6426 ファームウェア fastconnect 6200 ファームウェア fastconnect 6700 ファームウェア AQT1000 ファームウェア QCA6574A ファームウェア fa…	複数のクアルコム製品における境界外読み取りに関する脆弱性	CWE-125 CWE-126	CVE-2023-43555	2025-01-28 12:54	2023-09-19	Show	GitHub Exploit DB Packet Storm

434	4.8	警告 Network	Rahe	Simple Image Sizes	WordPress用プラグインSimple Image Sizesにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-24810	2025-01-28 12:15	2025-01-28	Show	GitHub Exploit DB Packet Storm

435	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2024-26649	2025-01-28 11:49	2024-01-18	Show	GitHub Exploit DB Packet Storm

436	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2021-47183	2025-01-28 11:46	2021-10-20	Show	GitHub Exploit DB Packet Storm

437	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2024-26866	2025-01-28 11:45	2024-03-12	Show	GitHub Exploit DB Packet Storm

438	5.5	警告 Local	Debian Linux	Debian GNU/Linux Linux Kernel	Linux の Linux Kernel 等複数ベンダの製品における初期化されていないリソースの使用に関する脆弱性	CWE-908 初期化されていないリソースの使用	CVE-2024-26863	2025-01-28 11:43	2024-03-14	Show	GitHub Exploit DB Packet Storm

439	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	ax1806 ファームウェア	Shenzhen Tenda Technology Co.,Ltd. の ax1806 ファームウェアにおける境界外書き込みに関する脆弱性	CWE-121 CWE-787	CVE-2024-4238	2025-01-28 11:40	2024-04-26	Show	GitHub Exploit DB Packet Storm

440	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	w9 ファームウェア	Shenzhen Tenda Technology Co.,Ltd. の w9 ファームウェアにおける境界外書き込みに関する脆弱性	CWE-121 CWE-787	CVE-2024-4243	2025-01-28 11:40	2024-04-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 5, 2025, 4:56 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
280931	-	bajie	java_http_server	UploadServlet in Bajie HTTP JServer 0.78, and possibly other versions before 0.80, allows remote attackers to execute arbitrary commands by calling the servlet to upload a program, then using a ... (…	CWE-94 Code Injection	CVE-2001-0308	2008-09-6 05:23	2001-05-3	Show	GitHub Exploit DB Packet Storm

280932	-	ibm	websphere_plugin	IBM WebSphere plugin for Netscape Enterprise server allows remote attackers to read source code for JSP files via an HTTP request that contains a host header that references a host that is not in Web…	NVD-CWE-Other	CVE-2001-0312	2008-09-6 05:23	2001-06-2	Show	GitHub Exploit DB Packet Storm

280933	-	francisco_burzi	php-nuke	bb_smilies.php and bbcode_ref.php in PHP-Nuke 4.4 allows remote attackers to read arbitrary files and gain PHP administrator privileges by inserting a null character and .. (dot dot) sequences into a…	NVD-CWE-Other	CVE-2001-0320	2008-09-6 05:23	2001-05-3	Show	GitHub Exploit DB Packet Storm

280934	-	microsoft	windows_2000 windows_98	Windows 98 and Windows 2000 Java clients allow remote attackers to cause a denial of service via a Java applet that opens a large number of UDP sockets, which prevents the host from establishing any …	NVD-CWE-Other	CVE-2001-0324	2008-09-6 05:23	2001-05-3	Show	GitHub Exploit DB Packet Storm

280935	-	qnx	rtp	Buffer overflow in QNX RTP 5.60 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a large number of arguments to the stat command.	NVD-CWE-Other	CVE-2001-0325	2008-09-6 05:23	2001-05-3	Show	GitHub Exploit DB Packet Storm

280936	-	iplanet	iplanet_web_server	iPlanet Web Server Enterprise Edition 4.1 and earlier allows remote attackers to retrieve sensitive data from memory allocation pools, or cause a denial of service, via a URL-encoded Host: header in …	NVD-CWE-Other	CVE-2001-0327	2008-09-6 05:23	2001-07-2	Show	GitHub Exploit DB Packet Storm

280937	-	thenet	checkbo	TheNet CheckBO 1.56 allows remote attackers to cause a denial of service via a flood of characters to the TCP ports which it is listening on.	NVD-CWE-Other	CVE-2001-0354	2008-09-6 05:23	2001-07-2	Show	GitHub Exploit DB Packet Storm

280938	-	siemens	reliant_unix	ppd in Reliant Sinix allows local users to corrupt arbitrary files via a symlink attack in the /tmp/ppd.trace file.	NVD-CWE-Other	CVE-2001-0384	2008-09-6 05:23	2001-07-2	Show	GitHub Exploit DB Packet Storm

280939	-	ibm	net.commerce websphere_application_server	IBM Websphere/NetCommerce3 3.1.2 allows remote attackers to determine the real path of the server by directly calling the macro.d2w macro with a NOEXISTINGHTMLBLOCK argument.	NVD-CWE-Other	CVE-2001-0389	2008-09-6 05:23	2001-07-2	Show	GitHub Exploit DB Packet Storm

280940	-	ibm	net.commerce net.commerce_hosting_server websphere_application_server	IBM Websphere/NetCommerce3 3.1.2 allows remote attackers to cause a denial of service by directly calling the macro.d2w macro with a long string of %0a characters.	NVD-CWE-Other	CVE-2001-0390	2008-09-6 05:23	2001-07-2	Show	GitHub Exploit DB Packet Storm