Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 16, 2025, 6:05 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
441 6.8 警告
Physics
マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2019
Microsoft Windows Server 2022
Microsoft Windows Server 2025
Microsoft Window…
Windows モバイル ブロードバンド ドライバーの特権昇格の脆弱性 New CWE-125
CWE-191
CWE-noinfo
CVE-2024-49077 2025-01-14 16:20 2024-12-10 Show GitHub Exploit DB Packet Storm
442 6.8 警告
Physics
マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2019
Microsoft Windows Server 2022
Microsoft Windows Server 2025
Microsoft Window…
Windows モバイル ブロードバンド ドライバーの特権昇格の脆弱性 New CWE-125
CWE-noinfo
CVE-2024-49083 2025-01-14 16:20 2024-12-10 Show GitHub Exploit DB Packet Storm
443 6.6 警告
Physics
マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2019
Microsoft Windows Server 2022
Microsoft Windows Server 2025
Microsoft Window…
ワイヤレス広域ネットワーク サービス (WwanSvc) の特権昇格の脆弱性 New CWE-122
CWE-noinfo
CVE-2024-49094 2025-01-14 16:20 2024-12-10 Show GitHub Exploit DB Packet Storm
444 5.5 警告
Local
Linux Linux Kernel Linux の Linux Kernel におけるリソースのロックに関する脆弱性 New CWE-667
不適切なロック
CVE-2021-47055 2025-01-14 16:20 2021-03-28 Show GitHub Exploit DB Packet Storm
445 4.3 警告
Physics
マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2019
Microsoft Windows Server 2022
Microsoft Windows Server 2025
Microsoft Window…
Windows ワイヤレス ワイド エリア ネットワーク サービス (WwanSvc) の情報漏えいの脆弱性 New CWE-125
CWE-noinfo
CVE-2024-49099 2025-01-14 16:20 2024-12-10 Show GitHub Exploit DB Packet Storm
446 8.8 重要
Network
マイクロソフト Microsoft Windows Server 2016
Microsoft Windows 11
Microsoft Windows Server 2019
Microsoft Windows Server 2022
Microsoft Window…
Windows ルーティングとリモート アクセス サービス (RRAS) のリモートでコードが実行される脆弱性 New CWE-122
CWE-noinfo
CVE-2024-49104 2025-01-14 16:20 2024-12-10 Show GitHub Exploit DB Packet Storm
447 6.6 警告
Physics
マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2019
Microsoft Windows Server 2022
Microsoft Windows Server 2025
Microsoft Window…
ワイヤレス広域ネットワーク サービス (WwanSvc) の特権昇格の脆弱性 New CWE-125
CWE-noinfo
CVE-2024-49109 2025-01-14 16:20 2024-12-10 Show GitHub Exploit DB Packet Storm
448 4.3 警告
Network
Jegtheme Jeg Elementor Kit Jegtheme の WordPress 用 Jeg Elementor Kit における重要な情報のセキュアでない格納に関する脆弱性 New CWE-200
CWE-922
CVE-2024-8899 2025-01-14 16:18 2024-11-26 Show GitHub Exploit DB Packet Storm
449 6.5 警告
Network
argoproj argo cd argoproj の argo cd における脆弱性 New CWE-269
CWE-noinfo
CVE-2024-41666 2025-01-14 16:17 2024-07-24 Show GitHub Exploit DB Packet Storm
450 8.8 重要
Network
XWiki xwiki XWiki の xwiki における認証の欠如に関する脆弱性 New CWE-862
CWE-862
CVE-2024-31997 2025-01-14 16:17 2024-04-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 16, 2025, 4:15 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
276581 - gnu mailutils The imap4d server for GNU Mailutils 0.5 and 0.6, and other versions before 0.6.90, allows authenticated remote users to cause a denial of service (CPU consumption) via a large range value in the FETC… NVD-CWE-Other
CVE-2005-1522 2008-09-6 05:49 2005-05-26 Show GitHub Exploit DB Packet Storm
276582 - gnu mailutils Format string vulnerability in imap4d server in GNU Mailutils 0.5 and 0.6, and other versions before 0.6.90, allows remote attackers to execute arbitrary code via format string specifiers in the comm… NVD-CWE-Other
CVE-2005-1523 2008-09-6 05:49 2005-05-26 Show GitHub Exploit DB Packet Storm
276583 - battleaxe_software bttlxeforum forum.asp in bttlxeForum 2.0 allows remote attackers to obtain full path information via a certain hex-encoded argument to the page parameter, possibly due to a SQL injection vulnerability. NVD-CWE-Other
CVE-2005-1570 2008-09-6 05:49 2005-05-14 Show GitHub Exploit DB Packet Storm
276584 - wenig_and_spitzer-williams showoff_digital_media_software Multiple directory traversal vulnerabilities in ShowOff! 1.5.4 allow remote attackers to read arbitrary files via ".." sequences in arguments to the (1) ShowAlbum, (2) ShowVideo, or (3) ShowGraphic s… NVD-CWE-Other
CVE-2005-1571 2008-09-6 05:49 2005-05-14 Show GitHub Exploit DB Packet Storm
276585 - wenig_and_spitzer-williams showoff_digital_media_software ShowOff! 1.5.4 allows remote attackers to cause a denial of service (server crash) via a malformed request to port 8083. NVD-CWE-Other
CVE-2005-1572 2008-09-6 05:49 2005-05-11 Show GitHub Exploit DB Packet Storm
276586 - mozilla firefox The file download dialog in Mozilla Firefox 0.10.1 and 1.0 for Windows allows remote attackers to hide the real file types of downloaded files via the Content-Type HTTP header and a filename containi… NVD-CWE-Other
CVE-2005-1575 2008-09-6 05:49 2005-05-14 Show GitHub Exploit DB Packet Storm
276587 - mozilla firefox The file download dialog in Mozilla Firefox 0.10.1 and 1.0 for Windows uses the Content-Type HTTP header to determine the file type, but saves the original file extension when "Save to Disk" is selec… NVD-CWE-Other
CVE-2005-1576 2008-09-6 05:49 2005-05-12 Show GitHub Exploit DB Packet Storm
276588 - apg_technology classmaster APG Technology ClassMaster does not properly restrict access to sensitive folders, which allows remote attackers to access folders via a network share. NVD-CWE-Other
CVE-2005-1577 2008-09-6 05:49 2005-05-14 Show GitHub Exploit DB Packet Storm
276589 - guidance_software encase EnCase Forensic Edition 4.18a does not support Device Configuration Overlays (DCO), which allows attackers to hide information without detection. NVD-CWE-Other
CVE-2005-1578 2008-09-6 05:49 2005-05-13 Show GitHub Exploit DB Packet Storm
276590 - boastmachine boastmachine users.ini.php in BoastMachine 3.0 does not properly restrict the types of files that can be uploaded, which allows remote attackers to execute arbitrary code. NVD-CWE-Other
CVE-2005-1580 2008-09-6 05:49 2005-05-11 Show GitHub Exploit DB Packet Storm