Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 22, 2025, 6:04 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
451 7.8 重要
Local
マイクロソフト Microsoft Windows 11
Microsoft Windows 10
Microsoft Windows Server 2008
Microsoft Windows Server 2019
Microsoft Windows Server&…
Windows Cryptographic Services のリモートでコードが実行される脆弱性 New CWE-197
CWE-295
CVE-2024-29050 2025-01-20 09:59 2024-04-9 Show GitHub Exploit DB Packet Storm
452 7.1 重要
Network
マイクロソフト Microsoft SQL Server Microsoft SQL Server ネイティブ スコアリングの情報漏えいの脆弱性 New CWE-125
CWE-noinfo
CVE-2024-37966 2025-01-20 09:59 2024-09-10 Show GitHub Exploit DB Packet Storm
453 8.8 重要
Network
マイクロソフト Microsoft Windows 11
Microsoft Windows 10
Microsoft Windows Server 2008
Microsoft Windows Server 2019
Microsoft Windows Server&…
Windows テレフォニー サービスのリモートでコードが実行される脆弱性 New CWE-122
CWE-noinfo
CVE-2025-21409 2025-01-20 09:59 2025-01-14 Show GitHub Exploit DB Packet Storm
454 8.8 重要
Network
マイクロソフト Microsoft Windows 11
Microsoft Windows 10
Microsoft Windows Server 2008
Microsoft Windows Server 2019
Microsoft Windows Server&…
Windows テレフォニー サービスのリモートでコードが実行される脆弱性 New CWE-122
CWE-noinfo
CVE-2025-21413 2025-01-20 09:59 2025-01-14 Show GitHub Exploit DB Packet Storm
455 6.5 警告
Network
IBM IBM Security Guardium IBM の IBM Security Guardium における危険なタイプのファイルの無制限アップロードに関する脆弱性 New CWE-434
危険なタイプのファイルの無制限アップロード
CVE-2023-47711 2025-01-20 09:53 2023-11-9 Show GitHub Exploit DB Packet Storm
456 6.4 警告
Network
IBM IBM Maximo Application Suite IBM の IBM Maximo Application Suite におけるクロスサイトスクリプティングの脆弱性 New CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2023-38723 2025-01-20 09:53 2023-08-1 Show GitHub Exploit DB Packet Storm
457 5.5 警告
Local
アドビシステムズ Adobe Acrobat Reader DC
Adobe Acrobat DC
Adobe Acrobat
Adobe Reader
複数のアドビ製品における NULL ポインタデリファレンスに関する脆弱性 New CWE-476
NULL ポインタデリファレンス
CVE-2024-49531 2025-01-20 09:53 2024-12-10 Show GitHub Exploit DB Packet Storm
458 7.8 重要
Local
アドビシステムズ Adobe Substance 3D Stager アドビの Adobe Substance 3D Stager における境界外書き込みに関する脆弱性 New CWE-787
境界外書き込み
CVE-2025-21132 2025-01-20 09:45 2025-01-14 Show GitHub Exploit DB Packet Storm
459 5.5 警告
Local
マイクロソフト Microsoft Windows 10
Microsoft Windows Server 2016
Microsoft Windows 11
Microsoft Windows Server 2019
Microsoft Windows Server&…
Windows DWM Core ライブラリの情報漏えいの脆弱性 CWE-191
CWE-noinfo
CVE-2024-30008 2025-01-17 22:38 2024-05-14 Show GitHub Exploit DB Packet Storm
460 8.8 重要
Network
マイクロソフト Microsoft ODBC Driver
Microsoft SQL Server
SQL Server 用 Microsoft ODBC ドライバーのリモートでコードが実行される脆弱性 CWE-416
CWE-noinfo
CVE-2024-29043 2025-01-17 22:35 2024-04-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 23, 2025, 5:11 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
277671 - jeuce jeuce_personal_web_server Jeuce Personal Webserver 2.13 allows remote attackers to cause a denial of service (server crash) via a long GET request, possibly triggering a buffer overflow. NVD-CWE-Other
CVE-2005-1661 2008-09-6 05:49 2005-05-18 Show GitHub Exploit DB Packet Storm
277672 - ubertec help_center_live Multiple cross-site scripting (XSS) vulnerabilities in Help Center Live allow remote attackers to inject arbitrary web script or HTML via the (1) find parameter to index.php, (2) name or (3) message … NVD-CWE-Other
CVE-2005-1672 2008-09-6 05:49 2005-05-19 Show GitHub Exploit DB Packet Storm
277673 - ubertec help_center_live Multiple SQL injection vulnerabilities in Help Center Live allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to index.php, (2) tid parameter to view.php, fid parameter… NVD-CWE-Other
CVE-2005-1673 2008-09-6 05:49 2005-05-19 Show GitHub Exploit DB Packet Storm
277674 - groove groove_workspace
virtual_office
Groove Virtual Office before 3.1 build 2338, before 3.1a build 2364, and Groove Workspace before 2.5n build 1871 installs the client installation directories with insecure EVERYBODY permissions, whic… NVD-CWE-Other
CVE-2005-1675 2008-09-6 05:49 2005-05-20 Show GitHub Exploit DB Packet Storm
277675 - groove groove_workspace
virtual_office
Multiple cross-site scripting (XSS) vulnerabilities in Groove Mobile Workspace in Groove Virtual Office before 3.1 build 2338, before 3.1a build 2364, and Groove Workspace before 2.5n build 1871 allo… NVD-CWE-Other
CVE-2005-1676 2008-09-6 05:49 2005-05-20 Show GitHub Exploit DB Packet Storm
277676 - groove groove_workspace
virtual_office
Unknown vulnerability in Groove Virtual Office before 3.1 build 2338, before 3.1a build 2364, and Groove Workspace before 2.5n build 1871 allows remote attackers to bypass restrictions on COM objects. NVD-CWE-Other
CVE-2005-1677 2008-09-6 05:49 2005-05-20 Show GitHub Exploit DB Packet Storm
277677 - groove groove_workspace
virtual_office
Groove Virtual Office before 3.1 build 2338, before 3.1a build 2364, and Groove Workspace before 2.5n build 1871 does not properly display file extensions on attached or embedded files in a compound … NVD-CWE-Other
CVE-2005-1678 2008-09-6 05:49 2005-05-20 Show GitHub Exploit DB Packet Storm
277678 - sap sap_r_3 Directory traversal vulnerability in Internet Graphics Server in SAP before 6.40 Patch 11 allows remote attackers to read arbitrary files via ".." sequences in an HTTP GET request. NVD-CWE-Other
CVE-2005-1691 2008-09-6 05:49 2005-07-26 Show GitHub Exploit DB Packet Storm
277679 - mailscanner mailscanner Unknown vulnerability in MailScanner 4.41.3 and earlier, related to "incomplete reporting of viruses in zip files," allows remote attackers to bypass virus detection. NVD-CWE-Other
CVE-2005-1706 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm
277680 - mailscanner mailscanner The vendor has released a fixed version (4.42.2) NVD-CWE-Other
CVE-2005-1706 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm