Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
441 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. i21 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の i21 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-4246 2025-01-28 11:40 2024-04-27 Show GitHub Exploit DB Packet Storm
442 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. i21 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の i21 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-4250 2025-01-28 11:40 2024-04-27 Show GitHub Exploit DB Packet Storm
443 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. i22 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の i22 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-4252 2025-01-28 11:40 2024-04-27 Show GitHub Exploit DB Packet Storm
444 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. i21 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の i21 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-4496 2025-01-28 11:40 2024-05-5 Show GitHub Exploit DB Packet Storm
445 6.5 警告
Adjacent 		Magma Magma Linux Foundation の Magma における NULL ポインタデリファレンスに関する脆弱性 CWE-476
CWE-476
CVE-2023-37038 2025-01-28 11:39 2023-06-28 Show GitHub Exploit DB Packet Storm
446 7.5 重要
Network 		クアルコム CSR8811 ファームウェア
immersive home 318 ファームウェア
IPQ5010 ファームウェア
flight rb5 5g ファームウェア
ipq8070a ファームウェア
IPQ8072A ファームウェア
IPQ8071A ファ… 		複数のクアルコム製品における境界外読み取りに関する脆弱性 CWE-125
CWE-126
CVE-2023-43537 2025-01-28 11:39 2023-09-19 Show GitHub Exploit DB Packet Storm
447 7.8 重要
Local 		クアルコム FSM10056 ファームウェア
CSRA6620 ファームウェア
fastconnect 6800 ファームウェア
QCA4004 ファームウェア
flight rb5 5g ファームウェア
9205 lte modem ファームウェア
fastco… 		複数のクアルコム製品における古典的バッファオーバーフローの脆弱性 CWE-120
CWE-120
CVE-2023-43542 2025-01-28 11:39 2023-09-19 Show GitHub Exploit DB Packet Storm
448 5.3 警告
Network 		PPWP Password Protect WordPress PPWP の WordPress 用 Password Protect WordPress における脆弱性 CWE-noinfo
情報不足 		CVE-2024-0620 2025-01-28 11:38 2024-02-29 Show GitHub Exploit DB Packet Storm
449 5.5 警告
Local 		openatom openharmony openatom の openharmony における解放済みメモリの使用に関する脆弱性 CWE-416
CWE-416
CVE-2024-22180 2025-01-28 11:38 2024-04-2 Show GitHub Exploit DB Packet Storm
450 7.5 重要
Network 		Magma Magma Linux Foundation の Magma における古典的バッファオーバーフローの脆弱性 CWE-120
CWE-120
CVE-2024-24418 2025-01-28 11:38 2024-01-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 24, 2025, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1531 3.5 LOW
Adjacent 		- - SolarWinds Platform is affected by server-side request forgery vulnerability. Proper input sanitation was not applied allowing for the possibility of a malicious web request. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2024-52606 2025-02-11 17:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1532 4.6 MEDIUM
Local 		- - Sensitive data could be exposed to non- privileged users in a configuration file. Local access to the computer with a low- privileged account is required to access the configuration file containing … CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2024-45718 2025-02-11 17:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1533 5.5 MEDIUM
Local 		- - SolarWinds Web Help Desk was found to have a hardcoded cryptographic key that could allow the disclosure of sensitive information from the software. CWE-321
 Use of Hard-coded Cryptographic Key 		CVE-2024-28989 2025-02-11 17:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1534 8.8 HIGH
Network 		- - The Zox News - Professional WordPress News & Magazine Theme plugin for WordPress is vulnerable to unauthorized data modification. This vulnerability can lead to privilege escalation and denial of ser… CWE-862
 Missing Authorization 		CVE-2024-13643 2025-02-11 17:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1535 - - - rust-openssl is a set of OpenSSL bindings for the Rust programming language. In affected versions `ssl::select_next_proto` can return a slice pointing into the `server` argument's buffer but with a l… - CVE-2025-24898 2025-02-11 17:15 2025-02-4 Show GitHub Exploit DB Packet Storm
1536 9.8 CRITICAL
Network 		- - The WP Foodbakery plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 4.7. This is due to the plugin not properly validating a user's… CWE-288
Authentication Bypass Using an Alternate Path or Channel 		CVE-2025-0181 2025-02-11 16:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1537 5.0 MEDIUM
Network 		- - A vulnerability was found in GNU Binutils 2.43. It has been rated as critical. Affected by this issue is the function bfd_putl64 of the file bfd/libbfd.c of the component ld. The manipulation leads t… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2025-1179 2025-02-11 16:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1538 9.8 CRITICAL
Network 		- - The WP Foodbakery plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 3.3. This is due to the plugin not properly restricting what user meta can be update… CWE-269
 Improper Privilege Management 		CVE-2025-0180 2025-02-11 16:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1539 6.3 MEDIUM
Network 		- - A vulnerability was found in dayrui XunRuiCMS 4.6.3. It has been classified as critical. Affected is the function import_add of the file dayrui/Fcms/Control/Admin/Linkage.php. The manipulation leads … CWE-20
CWE-502
 Improper Input Validation 
 Deserialization of Untrusted Data 		CVE-2025-1177 2025-02-11 15:15 2025-02-11 Show GitHub Exploit DB Packet Storm
1540 5.0 MEDIUM
Network 		- - A vulnerability was found in GNU Binutils 2.43 and classified as critical. This issue affects the function _bfd_elf_gc_mark_rsec of the file elflink.c of the component ld. The manipulation leads to h… CWE-119
CWE-122
Incorrect Access of Indexable Resource ('Range Error') 
Heap-based Buffer Overflow 		CVE-2025-1176 2025-02-11 15:15 2025-02-11 Show GitHub Exploit DB Packet Storm