Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 24, 2025, 12:05 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
451 7.8 重要
Local
Linux Linux Kernel Linux の Linux Kernel における二重解放に関する脆弱性 CWE-415
二重解放
CVE-2024-26748 2025-01-21 10:24 2024-02-19 Show GitHub Exploit DB Packet Storm
452 5.5 警告
Local
Linux Linux Kernel Linux の Linux Kernel における有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如
CVE-2023-52662 2025-01-21 10:21 2023-12-4 Show GitHub Exploit DB Packet Storm
453 2.3
Local
フォーティネット FortiManager
FortiAnalyzer-BigData
FortiAnalyzer
複数のフォーティネット製品におけるパストラバーサルの脆弱性 CWE-22
CWE-23
CVE-2024-35274 2025-01-21 10:01 2024-11-12 Show GitHub Exploit DB Packet Storm
454 6.5 警告
Network
Jenkins プロジェクト MQ Notifier Plugin Jenkins プロジェクトの Jenkins 用 MQ Notifier Plugin における脆弱性 CWE-noinfo
情報不足
CVE-2024-28154 2025-01-21 09:59 2024-03-6 Show GitHub Exploit DB Packet Storm
455 7.2 重要
Network
SimpleHelp Ltd SimpleHelp SimpleHelp Ltd の SimpleHelp におけるリンク解釈に関する脆弱性 CWE-59
リンク解釈の問題
CVE-2024-57728 2025-01-21 09:51 2025-01-15 Show GitHub Exploit DB Packet Storm
456 8.8 重要
Network
FlyCms project FlyCms sunkaifei の FlyCms におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
CWE-352
CVE-2024-22939 2025-01-21 08:55 2024-02-29 Show GitHub Exploit DB Packet Storm
457 5.4 警告
Network
Primitiv Media PJ News Ticker Primitiv Media の WordPress 用 PJ News Ticker におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2024-25094 2025-01-21 08:55 2024-02-29 Show GitHub Exploit DB Packet Storm
458 5.4 警告
Network
bajorat-media PB oEmbed HTML5 Audio - with Cache Support bajorat-media の WordPress 用 PB oEmbed HTML5 Audio - with Cache Support におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2024-25098 2025-01-21 08:55 2024-02-29 Show GitHub Exploit DB Packet Storm
459 8.8 重要
Network
フォーティネット FortiClient フォーティネットの Linux 用 FortiClient におけるコードインジェクションの脆弱性 CWE-94
コード・インジェクション
CVE-2023-45590 2025-01-21 08:49 2023-10-9 Show GitHub Exploit DB Packet Storm
460 5.4 警告
Network
Outlook.com Microsoft Edge Chromium Microsoft Edge for Android (Chromium ベース) の情報漏えいの脆弱性 CWE-359
CWE-noinfo
CVE-2024-29986 2025-01-21 08:49 2024-04-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 24, 2025, 4:45 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
651 7.3 HIGH
Network
- - A vulnerability was found in Shiprocket Module 3/4 on OpenCart. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /index.php?route=extension/shi… CWE-89
CWE-74
SQL Injection
Injection
CVE-2025-0579 2025-01-20 12:15 2025-01-20 Show GitHub Exploit DB Packet Storm
652 4.5 MEDIUM
Local
- - A vulnerability has been found in obsproject OBS Studio up to 30.0.2 on Windows and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to un… CWE-426
 Untrusted Search Path
CVE-2024-13524 2025-01-20 12:15 2025-01-20 Show GitHub Exploit DB Packet Storm
653 6.1 MEDIUM
Network
- - The a+HRD from aEnrich Technology has a Reflected Cross-site Scripting vulnerability, allowing unauthenticated remote attackers to execute arbitrary JavaScript codes in user's browser through phishin… CWE-79
Cross-site Scripting
CVE-2025-0583 2025-01-20 11:15 2025-01-20 Show GitHub Exploit DB Packet Storm
654 3.5 LOW
Network
- - A vulnerability was found in Facile Sistemas Cloud Apps up to 20250107. It has been classified as problematic. Affected is an unknown function of the file /account/forgotpassword of the component Pas… CWE-79
CWE-94
Cross-site Scripting
Code Injection
CVE-2025-0578 2025-01-20 11:15 2025-01-20 Show GitHub Exploit DB Packet Storm
655 4.3 MEDIUM
Network
- - A vulnerability was found in Mobotix M15 4.3.4.83 and classified as problematic. This issue affects some unknown processing of the file /control/player?center&eventlist&pda&dummy_for_reload=173617763… CWE-79
CWE-94
Cross-site Scripting
Code Injection
CVE-2025-0576 2025-01-20 09:15 2025-01-20 Show GitHub Exploit DB Packet Storm
656 3.9 LOW
Local
- - A vulnerability has been found in Union Bank of India Vyom 8.0.34 on Android and classified as problematic. This vulnerability affects unknown code of the component Rooting Detection. The manipulatio… CWE-693
 Protection Mechanism Failure
CVE-2025-0575 2025-01-20 08:15 2025-01-20 Show GitHub Exploit DB Packet Storm
657 9.1 CRITICAL
Network
- - IBM Sterling Secure Proxy 6.0.0.0, 6.0.0.1, 6.0.0.2, 6.0.0.3, 6.1.0.0, and 6.2.0.0 could allow a privileged user to inject commands into the underlying operating system due to improper validation of … - CVE-2024-41783 2025-01-20 00:15 2025-01-20 Show GitHub Exploit DB Packet Storm
658 7.5 HIGH
Network
- - IBM TXSeries for Multiplatforms 10.1 could allow a remote attacker to cause a denial of service using persistent connections due to improper allocation of resources. CWE-770
 Allocation of Resources Without Limits or Throttling
CVE-2024-41743 2025-01-20 00:15 2025-01-20 Show GitHub Exploit DB Packet Storm
659 7.5 HIGH
Network
- - IBM TXSeries for Multiplatforms 10.1 is vulnerable to a denial of service, caused by improper enforcement of the timeout on individual read operations. By conducting a slowloris-type attacks, a remot… CWE-770
 Allocation of Resources Without Limits or Throttling
CVE-2024-41742 2025-01-20 00:15 2025-01-20 Show GitHub Exploit DB Packet Storm
660 9.1 CRITICAL
Network
- - IBM Sterling Secure Proxy 6.0.0.0, 6.0.0.1, 6.0.0.2, 6.0.0.3, 6.1.0.0, and 6.2.0.0 could allow an unauthorized attacker to retrieve or alter sensitive information contents due to incorrect permission… CWE-732
 Incorrect Permission Assignment for Critical Resource
CVE-2024-38337 2025-01-20 00:15 2025-01-20 Show GitHub Exploit DB Packet Storm