Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
441	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	i21 ファームウェア	Shenzhen Tenda Technology Co.,Ltd. の i21 ファームウェアにおける境界外書き込みに関する脆弱性	CWE-121 CWE-787	CVE-2024-4246	2025-01-28 11:40	2024-04-27	Show	GitHub Exploit DB Packet Storm

442	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	i21 ファームウェア	Shenzhen Tenda Technology Co.,Ltd. の i21 ファームウェアにおける境界外書き込みに関する脆弱性	CWE-121 CWE-787	CVE-2024-4250	2025-01-28 11:40	2024-04-27	Show	GitHub Exploit DB Packet Storm

443	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	i22 ファームウェア	Shenzhen Tenda Technology Co.,Ltd. の i22 ファームウェアにおける境界外書き込みに関する脆弱性	CWE-121 CWE-787	CVE-2024-4252	2025-01-28 11:40	2024-04-27	Show	GitHub Exploit DB Packet Storm

444	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	i21 ファームウェア	Shenzhen Tenda Technology Co.,Ltd. の i21 ファームウェアにおける境界外書き込みに関する脆弱性	CWE-121 CWE-787	CVE-2024-4496	2025-01-28 11:40	2024-05-5	Show	GitHub Exploit DB Packet Storm

445	6.5	警告 Adjacent	Magma	Magma	Linux Foundation の Magma における NULL ポインタデリファレンスに関する脆弱性	CWE-476 CWE-476	CVE-2023-37038	2025-01-28 11:39	2023-06-28	Show	GitHub Exploit DB Packet Storm

446	7.5	重要 Network	クアルコム	CSR8811 ファームウェア immersive home 318 ファームウェア IPQ5010 ファームウェア flight rb5 5g ファームウェア ipq8070a ファームウェア IPQ8072A ファームウェア IPQ8071A ファ…	複数のクアルコム製品における境界外読み取りに関する脆弱性	CWE-125 CWE-126	CVE-2023-43537	2025-01-28 11:39	2023-09-19	Show	GitHub Exploit DB Packet Storm

447	7.8	重要 Local	クアルコム	FSM10056 ファームウェア CSRA6620 ファームウェア fastconnect 6800 ファームウェア QCA4004 ファームウェア flight rb5 5g ファームウェア 9205 lte modem ファームウェア fastco…	複数のクアルコム製品における古典的バッファオーバーフローの脆弱性	CWE-120 CWE-120	CVE-2023-43542	2025-01-28 11:39	2023-09-19	Show	GitHub Exploit DB Packet Storm

448	5.3	警告 Network	PPWP	Password Protect WordPress	PPWP の WordPress 用 Password Protect WordPress における脆弱性	CWE-noinfo 情報不足	CVE-2024-0620	2025-01-28 11:38	2024-02-29	Show	GitHub Exploit DB Packet Storm

449	5.5	警告 Local	openatom	openharmony	openatom の openharmony における解放済みメモリの使用に関する脆弱性	CWE-416 CWE-416	CVE-2024-22180	2025-01-28 11:38	2024-04-2	Show	GitHub Exploit DB Packet Storm

450	7.5	重要 Network	Magma	Magma	Linux Foundation の Magma における古典的バッファオーバーフローの脆弱性	CWE-120 CWE-120	CVE-2024-24418	2025-01-28 11:38	2024-01-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 22, 2025, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1441	8.8	HIGH Network	-	-	A vulnerability has been identified in SIMATIC PCS neo V4.0 (All versions), SIMATIC PCS neo V4.1 (All versions < V4.1 Update 2), SIMATIC PCS neo V5.0 (All versions < V5.0 Update 1), SIMOCODE ES V19 (…	CWE-613 Insufficient Session Expiration	CVE-2024-45386	2025-02-11 20:15	2025-02-11	Show	GitHub Exploit DB Packet Storm

1442	5.3	MEDIUM Network	-	-	A vulnerability has been identified in SCALANCE WAB762-1 (6GK5762-1AJ00-6AA0) (All versions < V3.0.0), SCALANCE WAM763-1 (6GK5763-1AL00-7DA0) (All versions < V3.0.0), SCALANCE WAM763-1 (ME) (6GK5763-…	CWE-400 Uncontrolled Resource Consumption	CVE-2024-23814	2025-02-11 20:15	2025-02-11	Show	GitHub Exploit DB Packet Storm

1443	6.8	MEDIUM Adjacent	-	-	SolarWinds Platform is vulnerable to a reflected cross-site scripting vulnerability. This was caused by an insufficient sanitation of input parameters. This vulnerability requires authentication by a…	CWE-79 Cross-site Scripting	CVE-2024-52612	2025-02-11 17:15	2025-02-11	Show	GitHub Exploit DB Packet Storm

1444	3.5	LOW Adjacent	-	-	The SolarWinds Platform is vulnerable to an information disclosure vulnerability through an error message. While the data does not provide anything sensitive, the information could assist an attacker…	CWE-209 Information Exposure Through an Error Message	CVE-2024-52611	2025-02-11 17:15	2025-02-11	Show	GitHub Exploit DB Packet Storm

1445	3.5	LOW Adjacent	-	-	SolarWinds Platform is affected by server-side request forgery vulnerability. Proper input sanitation was not applied allowing for the possibility of a malicious web request.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2024-52606	2025-02-11 17:15	2025-02-11	Show	GitHub Exploit DB Packet Storm

1446	4.6	MEDIUM Local	-	-	Sensitive data could be exposed to non- privileged users in a configuration file. Local access to the computer with a low- privileged account is required to access the configuration file containing …	CWE-312 Cleartext Storage of Sensitive Information	CVE-2024-45718	2025-02-11 17:15	2025-02-11	Show	GitHub Exploit DB Packet Storm

1447	5.5	MEDIUM Local	-	-	SolarWinds Web Help Desk was found to have a hardcoded cryptographic key that could allow the disclosure of sensitive information from the software.	CWE-321 Use of Hard-coded Cryptographic Key	CVE-2024-28989	2025-02-11 17:15	2025-02-11	Show	GitHub Exploit DB Packet Storm

1448	8.8	HIGH Network	-	-	The Zox News - Professional WordPress News & Magazine Theme plugin for WordPress is vulnerable to unauthorized data modification. This vulnerability can lead to privilege escalation and denial of ser…	CWE-862 Missing Authorization	CVE-2024-13643	2025-02-11 17:15	2025-02-11	Show	GitHub Exploit DB Packet Storm

1449	-		-	-	rust-openssl is a set of OpenSSL bindings for the Rust programming language. In affected versions `ssl::select_next_proto` can return a slice pointing into the `server` argument's buffer but with a l…	-	CVE-2025-24898	2025-02-11 17:15	2025-02-4	Show	GitHub Exploit DB Packet Storm

1450	9.8	CRITICAL Network	-	-	The WP Foodbakery plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 4.7. This is due to the plugin not properly validating a user's…	CWE-288 Authentication Bypass Using an Alternate Path or Channel	CVE-2025-0181	2025-02-11 16:15	2025-02-11	Show	GitHub Exploit DB Packet Storm