Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 15, 2025, 6:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
441	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2024-56711	2025-01-10 17:10	2024-12-13	Show	GitHub Exploit DB Packet Storm

442	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2024-56696	2025-01-10 17:08	2024-11-27	Show	GitHub Exploit DB Packet Storm

443	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2024-56689	2025-01-10 16:58	2024-11-16	Show	GitHub Exploit DB Packet Storm

444	9.6	緊急 Network	マイクロソフト	Microsoft Copilot Studio	Microsoft Copilot Studio の特権昇格の脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2024-49038	2025-01-10 16:56	2024-11-26	Show	GitHub Exploit DB Packet Storm

445	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2024-56688	2025-01-10 16:56	2024-11-28	Show	GitHub Exploit DB Packet Storm

446	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2024-56612	2025-01-10 16:53	2024-12-5	Show	GitHub Exploit DB Packet Storm

447	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2024-56549	2025-01-10 16:45	2024-11-11	Show	GitHub Exploit DB Packet Storm

448	5.5	警告 Local	マイクロソフト	Azure AI Search	Azure AI 検索の情報漏えいの脆弱性	CWE-798 CWE-noinfo	CVE-2024-29063	2025-01-10 16:40	2024-04-9	Show	GitHub Exploit DB Packet Storm

449	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における例外的な状態のチェックに関する脆弱性	CWE-754 例外的な状態における不適切なチェック	CVE-2024-56777	2025-01-10 16:34	2024-09-23	Show	GitHub Exploit DB Packet Storm

450	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2024-56774	2025-01-10 16:31	2024-11-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 15, 2025, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
81	9.1	CRITICAL Network	-	-	Multiple buffer overflow vulnerabilities exist in the internet.cgi set_qos() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to stack-based buffer overfl… New	CWE-120 Classic Buffer Overflow	CVE-2024-39768	2025-01-15 00:15	2025-01-15	Show	GitHub Exploit DB Packet Storm

82	9.1	CRITICAL Network	-	-	Multiple OS command injection vulnerabilities exist in the internet.cgi set_add_routing() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary co… New	CWE-77 Command Injection	CVE-2024-39765	2025-01-15 00:15	2025-01-15	Show	GitHub Exploit DB Packet Storm

83	9.1	CRITICAL Network	-	-	Multiple OS command injection vulnerabilities exist in the internet.cgi set_add_routing() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary co… New	CWE-77 Command Injection	CVE-2024-39764	2025-01-15 00:15	2025-01-15	Show	GitHub Exploit DB Packet Storm

84	9.1	CRITICAL Network	-	-	Multiple OS command injection vulnerabilities exist in the internet.cgi set_add_routing() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary co… New	CWE-77 Command Injection	CVE-2024-39763	2025-01-15 00:15	2025-01-15	Show	GitHub Exploit DB Packet Storm

85	9.1	CRITICAL Network	-	-	Multiple OS command injection vulnerabilities exist in the internet.cgi set_add_routing() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary co… New	CWE-77 Command Injection	CVE-2024-39762	2025-01-15 00:15	2025-01-15	Show	GitHub Exploit DB Packet Storm

86	10.0	CRITICAL Network	-	-	Multiple OS command injection vulnerabilities exist in the login.cgi set_sys_init() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary code exe… New	CWE-77 Command Injection	CVE-2024-39761	2025-01-15 00:15	2025-01-15	Show	GitHub Exploit DB Packet Storm

87	10.0	CRITICAL Network	-	-	Multiple OS command injection vulnerabilities exist in the login.cgi set_sys_init() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary code exe… New	CWE-77 Command Injection	CVE-2024-39760	2025-01-15 00:15	2025-01-15	Show	GitHub Exploit DB Packet Storm

88	10.0	CRITICAL Network	-	-	Multiple OS command injection vulnerabilities exist in the login.cgi set_sys_init() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially crafted HTTP request can lead to arbitrary code exe… New	CWE-77 Command Injection	CVE-2024-39759	2025-01-15 00:15	2025-01-15	Show	GitHub Exploit DB Packet Storm

89	-		-	-	Howyar UEFI Application "Reloader" (32-bit and 64-bit) is vulnerable to execution of unsigned software in a hardcoded path. New	-	CVE-2024-7344	2025-01-15 00:15	2025-01-14	Show	GitHub Exploit DB Packet Storm

90	-		-	-	An improper neutralization of formula elements in a csv file in Fortinet FortiSOAR 7.2.1 through 7.4.1 allows attacker to execute unauthorized code or commands via manipulating csv file New	CWE-1236 Improper Neutralization of Formula Elements in a CSV File	CVE-2024-47572	2025-01-15 00:15	2025-01-14	Show	GitHub Exploit DB Packet Storm