Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
481	6.5	警告 Network	Fedora Project F5 Networks	NGINX plus Fedora nginx open source	F5 Networks の nginx open source 等複数ベンダの製品における境界外書き込みに関する脆弱性	CWE-787 CWE-787	CVE-2024-32760	2025-01-27 17:58	2024-05-29	Show	GitHub Exploit DB Packet Storm

482	5.3	警告 Network	Fedora Project F5 Networks	NGINX plus Fedora nginx open source	F5 Networks の nginx open source 等複数ベンダの製品における解放済みメモリの使用に関する脆弱性	CWE-416 CWE-416	CVE-2024-34161	2025-01-27 17:58	2024-05-29	Show	GitHub Exploit DB Packet Storm

483	9.8	緊急 Network	マイクロソフト	Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Windows Server 2025	Windows NTLM V1 Elevation of Privilege Vulnerability	CWE-303 CWE-noinfo	CVE-2025-21311	2025-01-27 17:52	2025-01-14	Show	GitHub Exploit DB Packet Storm

484	8.8	重要 Network	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows 11 Microsoft Windows Server 2008 Microsoft Windows Server 2019 Microsoft Window…	Windows テレフォニーサービスのリモートでコードが実行される脆弱性	CWE-122 CWE-noinfo	CVE-2025-21306	2025-01-27 17:49	2025-01-14	Show	GitHub Exploit DB Packet Storm

485	8.8	重要 Network	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows 11 Microsoft Windows Server 2008 Microsoft Windows Server 2019 Microsoft Window…	Windows テレフォニーサービスのリモートでコードが実行される脆弱性	CWE-122 CWE-noinfo	CVE-2025-21302	2025-01-27 17:45	2025-01-14	Show	GitHub Exploit DB Packet Storm

486	8.8	重要 Network	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows 11 Microsoft Windows Server 2008 Microsoft Windows Server 2019 Microsoft Window…	Windows テレフォニーサービスのリモートでコードが実行される脆弱性	CWE-190 CWE-noinfo	CVE-2025-21243	2025-01-27 17:45	2025-01-14	Show	GitHub Exploit DB Packet Storm

487	8.8	重要 Network	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows 11 Microsoft Windows Server 2008 Microsoft Windows Server 2019 Microsoft Window…	Windows テレフォニーサービスのリモートでコードが実行される脆弱性	CWE-122 CWE-125 CWE-noinfo	CVE-2025-21245	2025-01-27 17:45	2025-01-14	Show	GitHub Exploit DB Packet Storm

488	8.8	重要 Network	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows 11 Microsoft Windows Server 2019 Microsoft Windows 10 Microsoft Windows Server&…	Windows テレフォニーサービスのリモートでコードが実行される脆弱性	CWE-122 CWE-noinfo	CVE-2025-21248	2025-01-27 17:45	2025-01-14	Show	GitHub Exploit DB Packet Storm

489	8.8	重要 Network	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows 11 Microsoft Windows Server 2019 Microsoft Windows Server 2012 Microsoft Window…	Active Directory Domain Services Elevation of Privilege Vulnerability	CWE-284 CWE-noinfo	CVE-2025-21293	2025-01-27 17:45	2025-01-14	Show	GitHub Exploit DB Packet Storm

490	7.5	重要 Adjacent	マイクロソフト	Microsoft Windows Server 2016 Microsoft Windows 11 Microsoft Windows Server 2008 Microsoft Windows Server 2019 Microsoft Window…	BranchCache のリモートでコードが実行される脆弱性	CWE-416 CWE-noinfo	CVE-2025-21296	2025-01-27 17:45	2025-01-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 13, 2025, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1381	-	-	-	Incorrect Privilege Assignment vulnerability in NotFound Admin and Site Enhancements (ASE) Pro allows Privilege Escalation. This issue affects Admin and Site Enhancements (ASE) Pro: from n/a through …	CWE-266 Incorrect Privilege Assignment	CVE-2024-43333	2025-02-4 00:15	2025-02-4	Show	GitHub Exploit DB Packet Storm

1382	-	-	-	The Social Share Buttons for WordPress plugin through 2.7 allows an unauthenticated user to upload arbitrary images and change the path where they are uploaded	-	CVE-2024-13117	2025-02-4 00:15	2025-01-27	Show	GitHub Exploit DB Packet Storm

1383	-	-	-	The Crelly Slider WordPress plugin before 1.4.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks …	-	CVE-2024-13116	2025-02-4 00:15	2025-01-27	Show	GitHub Exploit DB Packet Storm

1384	-	-	-	SourceCodester Packers and Movers Management System v1.0 is vulnerable to Cross Site Scripting (XSS) in Users.php. An attacker can inject a malicious script into the username or name field during use…	-	CVE-2024-57522	2025-02-3 22:15	2025-02-3	Show	GitHub Exploit DB Packet Storm

1385	-	-	-	No proper validation of the length of user input in http_server_get_content_type_from_extension.	-	CVE-2024-10395	2025-02-3 16:15	2025-02-3	Show	GitHub Exploit DB Packet Storm

1386	-	-	-	nDPI through 4.12 has a potential stack-based buffer overflow in ndpi_address_cache_restore in lib/ndpi_cache.c.	-	CVE-2025-25066	2025-02-3 15:15	2025-02-3	Show	GitHub Exploit DB Packet Storm

1387	-	-	-	An XSS issue was discovered in Backdrop CMS 1.28.x before 1.28.5 and 1.29.x before 1.29.3. It does not sufficiently validate uploaded SVG images to ensure they do not contain potentially dangerous SV…	-	CVE-2025-25063	2025-02-3 13:15	2025-02-3	Show	GitHub Exploit DB Packet Storm

1388	-	-	-	An XSS issue was discovered in Backdrop CMS 1.28.x before 1.28.5 and 1.29.x before 1.29.3. It doesn't sufficiently isolate long text content when the CKEditor 5 rich text editor is used. This allows …	-	CVE-2025-25062	2025-02-3 13:15	2025-02-3	Show	GitHub Exploit DB Packet Storm

1389	-	-	-	In network HW, there is a possible system hang due to an uncaught exception. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed…	-	CVE-2025-20637	2025-02-3 13:15	2025-02-3	Show	GitHub Exploit DB Packet Storm

1390	-	-	-	In secmem, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User…	-	CVE-2025-20636	2025-02-3 13:15	2025-02-3	Show	GitHub Exploit DB Packet Storm