Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Jan. 21, 2025, 4:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 451 | 7.1 |
重要
Local |
Linux | Linux Kernel | Linux の Linux Kernel における境界外読み取りに関する脆弱性 |
CWE-125
境界外読み取り |
CVE-2021-47191 | 2025-01-17 15:49 | 2021-10-18 | Show | GitHub Exploit DB Packet Storm |
| 452 | 6.8 |
警告
Physics |
マイクロソフト |
Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Windows Server 2019 Microsoft Windows Server 2025 Microsoft Window… |
Windows モバイル ブロードバンド ドライバーの特権昇格の脆弱性 |
CWE-125 CWE-noinfo |
CVE-2024-49092 | 2025-01-17 15:49 | 2024-12-10 | Show | GitHub Exploit DB Packet Storm |
| 453 | 7.2 |
重要
Network |
マイクロソフト |
Microsoft Windows Server 2022 Microsoft Windows Server 2019 Microsoft Windows Server 2025 Microsoft Windows Server 2012 Microso… |
Windows ドメイン ネーム サービスのリモートでコードが実行される脆弱性 |
CWE-591 CWE-noinfo |
CVE-2024-49091 | 2025-01-17 15:47 | 2024-12-10 | Show | GitHub Exploit DB Packet Storm |
| 454 | 7.4 |
重要
Network |
Hitachi Energy |
FOXMAN-UN UNEM foxman un |
複数の Hitachi Energy 製品における証明書検証に関する脆弱性 |
CWE-295
不正な証明書検証 |
CVE-2024-28021 | 2025-01-17 15:47 | 2024-06-11 | Show | GitHub Exploit DB Packet Storm |
| 455 | 7.2 |
重要
Network |
マイクロソフト |
Microsoft Windows Server 2008 Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Windows Server 2019 Microsoft Window… |
Windows ルーティングとリモート アクセス サービス (RRAS) のリモートでコードが実行される脆弱性 |
CWE-122 CWE-190 CWE-noinfo |
CVE-2024-49089 | 2025-01-17 15:45 | 2024-12-10 | Show | GitHub Exploit DB Packet Storm |
| 456 | 9.9 |
緊急
Network |
Hitachi Energy |
FOXMAN-UN UNEM |
Hitachi Energy の FOXMAN-UN および UNEM における脆弱性 |
CWE-286 CWE-noinfo |
CVE-2024-28020 | 2025-01-17 15:43 | 2024-06-11 | Show | GitHub Exploit DB Packet Storm |
| 457 | 8.8 |
重要
Network |
マイクロソフト |
Microsoft Windows Server 2008 Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Windows Server 2019 Microsoft Window… |
Windows IP Routing Management Snapin のリモートでコードが実行される脆弱性 |
CWE-122 CWE-noinfo |
CVE-2024-49080 | 2025-01-17 15:42 | 2024-12-10 | Show | GitHub Exploit DB Packet Storm |
| 458 | 7.8 |
重要
Local |
マイクロソフト |
Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Windows Server 2019 Microsoft Windows Server 2025 Microsoft Window… |
Windows 仮想化ベースのセキュリティ (VBS) エンクレーブの特権昇格の脆弱性 |
CWE-287 CWE-noinfo |
CVE-2024-49076 | 2025-01-17 15:39 | 2024-12-10 | Show | GitHub Exploit DB Packet Storm |
| 459 | 9.8 |
緊急
Network Hitachi Energy |
FOXMAN-UN |
UNEM
Hitachi Energy の FOXMAN-UN および UNEM における境界外書き込みに関する脆弱性
|
CWE-787
|
境界外書き込み
CVE-2024-2011
|
2025-01-17 15:35 |
2024-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 460 | 6.8 |
警告
Physics |
マイクロソフト |
Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Windows Server 2019 Microsoft Windows Server 2025 Microsoft Window… |
Windows モバイル ブロードバンド ドライバーの特権昇格の脆弱性 |
CWE-20 CWE-noinfo |
CVE-2024-49073 | 2025-01-17 15:33 | 2024-12-10 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:Jan. 21, 2025, 4:11 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 441 | 8.8 |
HIGH
Network |
chrome | Out of bounds read in Metrics in Google Chrome prior to 132.0.6834.83 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) |
CWE-125
Out-of-bounds Read |
CVE-2025-0437 | 2025-01-17 05:35 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm | |
| 442 | 8.8 |
HIGH
Network |
microsoft |
windows_server_2008 windows_server_2012 windows_server_2022_23h2 windows_11_23h2 windows_10_1607 windows_10_1809 windows_10_1507 windows_10_21h2 windows_10_22h2 windows_11_… |
Windows Telephony Service Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2025-21417 | 2025-01-17 05:34 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 443 | 8.8 |
HIGH
Network |
microsoft |
windows_server_2008 windows_server_2012 windows_server_2025 windows_server_2022_23h2 windows_10_1507 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows… |
Windows Telephony Service Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2025-21413 | 2025-01-17 05:33 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 444 | 8.8 |
HIGH
Network |
microsoft |
windows_server_2008 windows_server_2012 windows_server_2025 windows_server_2022_23h2 windows_10_1507 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows… |
Windows Telephony Service Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2025-21411 | 2025-01-17 05:33 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 445 | 8.8 |
HIGH
Network |
microsoft |
windows_server_2008 windows_server_2012 windows_server_2025 windows_server_2022_23h2 windows_10_1507 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows… |
Windows Telephony Service Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2025-21409 | 2025-01-17 05:33 | 2025-01-15 | Show | GitHub Exploit DB Packet Storm |
| 446 | - | - | - | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in carrotbits Greek Namedays Widget From Eortologio.Net allows Stored XSS.This issue affects Greek N… |
CWE-79
Cross-site Scripting |
CVE-2025-23783 | 2025-01-17 05:15 | 2025-01-17 | Show | GitHub Exploit DB Packet Storm | |
| 447 | - | - | - | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Revolutionart Marmoset Viewer allows Stored XSS.This issue affects Marmoset Viewer: from n/a thro… |
CWE-79
Cross-site Scripting |
CVE-2025-23767 | 2025-01-17 05:15 | 2025-01-17 | Show | GitHub Exploit DB Packet Storm | |
| 448 | - | - | - | Cross-Site Request Forgery (CSRF) vulnerability in Mahdi Khaksar mybb Last Topics allows Stored XSS.This issue affects mybb Last Topics: from n/a through 1.0. |
CWE-352
Origin Validation Error |
CVE-2025-23749 | 2025-01-17 05:15 | 2025-01-17 | Show | GitHub Exploit DB Packet Storm | |
| 449 | - | - | - | Cross-Site Request Forgery (CSRF) vulnerability in Tussendoor internet & marketing Call me Now allows Stored XSS.This issue affects Call me Now: from n/a through 1.0.5. |
CWE-352
Origin Validation Error |
CVE-2025-23745 | 2025-01-17 05:15 | 2025-01-17 | Show | GitHub Exploit DB Packet Storm | |
| 450 | - | - | - | Cross-Site Request Forgery (CSRF) vulnerability in Martijn Scheybeler Social Analytics allows Stored XSS.This issue affects Social Analytics: from n/a through 0.2. |
CWE-352
Origin Validation Error |
CVE-2025-23743 | 2025-01-17 05:15 | 2025-01-17 | Show | GitHub Exploit DB Packet Storm |