Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 22, 2025, 10:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
591	7.5	重要 Network	クアルコム	immersive home 3210 ファームウェア ipq5302 ファームウェア fastconnect 7800 ファームウェア fastconnect 6900 ファームウェア IPQ6000 ファームウェア IPQ6018 ファームウェア ipq53…	複数のクアルコム製品における境界外読み取りに関する脆弱性	CWE-125 CWE-126	CVE-2024-45558	2025-01-16 17:25	2024-09-2	Show	GitHub Exploit DB Packet Storm

592	7.5	重要 Network	Huawei	HarmonyOS	Huawei の HarmonyOS における脆弱性	CWE-264 CWE-noinfo	CVE-2024-56444	2025-01-16 17:25	2024-12-26	Show	GitHub Exploit DB Packet Storm

593	5.5	警告 Local	Huawei	HarmonyOS	Huawei の HarmonyOS における脆弱性	CWE-120 CWE-noinfo	CVE-2024-56454	2025-01-16 17:25	2024-12-26	Show	GitHub Exploit DB Packet Storm

594	7.5	重要 Network	クアルコム	qca6698aq ファームウェア snapdragon auto 5g modem-rf gen 2 ファームウェア QCA6584AU ファームウェア c-v2x 9150 ファームウェア Snapdragon Auto 4G Modem&…	複数のクアルコム製品における脆弱性	CWE-20 CWE-noinfo	CVE-2024-21452	2025-01-16 17:25	2024-04-1	Show	GitHub Exploit DB Packet Storm

595	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	FH1202 ファームウェア	Shenzhen Tenda Technology Co.,Ltd. の FH1202 ファームウェアにおける境界外書き込みに関する脆弱性	CWE-121 CWE-787	CVE-2024-2984	2025-01-16 17:25	2024-03-27	Show	GitHub Exploit DB Packet Storm

596	9	緊急 Network	Ivanti	connect secure neurons for zero-trust access policy secure	複数の Ivanti 製品における境界外書き込みに関する脆弱性	CWE-121 CWE-787	CVE-2025-0282	2025-01-16 17:25	2025-01-8	Show	GitHub Exploit DB Packet Storm

597	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	AC18 ファームウェア	Shenzhen Tenda Technology Co.,Ltd. の AC18 ファームウェアにおける境界外書き込みに関する脆弱性	CWE-121 CWE-787	CVE-2024-2490	2025-01-16 17:25	2024-03-15	Show	GitHub Exploit DB Packet Storm

598	8.8	重要 Network	マイクロソフト	Microsoft Visual Studio Microsoft SQL Server Microsoft ODBC Driver	SQL Server 用 Microsoft ODBC ドライバーのリモートでコードが実行される脆弱性	CWE-121 CWE-noinfo	CVE-2024-28934	2025-01-16 17:22	2024-04-9	Show	GitHub Exploit DB Packet Storm

599	5.5	警告 Local	Debian Linux	Linux Kernel Debian GNU/Linux	Linux の Linux Kernel 等複数ベンダの製品における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2024-36941	2025-01-16 17:19	2024-04-19	Show	GitHub Exploit DB Packet Storm

600	8.8	重要 Network	マイクロソフト	Microsoft Visual Studio Microsoft SQL Server Microsoft ODBC Driver	SQL Server 用 Microsoft ODBC ドライバーのリモートでコードが実行される脆弱性	CWE-190 CWE-noinfo	CVE-2024-28936	2025-01-16 17:18	2024-04-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 22, 2025, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
275471	-	masqmail	masqmail	Multiple buffer overflows in conf.c for Masqmail 0.1.x before 0.1.17, and 0.2.x before 0.2.15, allow local users to gain privileges via certain entries in the configuration file (-C option).	NVD-CWE-Other	CVE-2002-1279	2008-09-11 04:14	2002-11-29	Show	GitHub Exploit DB Packet Storm

275472	-	iss	realsecure_event_collector	Memory leak in RealSecure Event Collector 6.5 allows attackers to cause a denial of service (memory consumption and crash).	NVD-CWE-Other	CVE-2002-1280	2008-09-11 04:14	2002-05-17	Show	GitHub Exploit DB Packet Storm

275473	-	suse	suse_linux	runlpr in the LPRng package allows the local lp user to gain root privileges via certain command line arguments.	NVD-CWE-Other	CVE-2002-1285	2008-09-11 04:14	2002-11-29	Show	GitHub Exploit DB Packet Storm

275474	-	smb2www	smb2www	Unknown vulnerability in smb2www 980804-16 and earlier allows remote attackers to execute arbitrary commands.	NVD-CWE-Other	CVE-2002-1342	2008-09-11 04:14	2002-12-18	Show	GitHub Exploit DB Packet Storm

275475	-	per_magne_knutsen	cartman	Per Magne Knutsen's CartMan shopping cart (cartman.php) 1.04 and earlier allows remote attackers to modify product prices by changing the price parameter.	NVD-CWE-Other	CVE-2002-1352	2008-09-11 04:14	2003-09-17	Show	GitHub Exploit DB Packet Storm

275476	-	openldap	openldap	OpenLDAP2 (OpenLDAP 2) 2.2.0 and earlier allows remote or local attackers to execute arbitrary code when libldap reads the .ldaprc file within applications that are running with extra privileges.	NVD-CWE-Other	CVE-2002-1379	2008-09-11 04:14	2003-01-2	Show	GitHub Exploit DB Packet Storm

275477	-	debian	internet_message	Internet Message (IM) 141-18 and earlier uses predictable file and directory names, which allows local users to (1) obtain unauthorized directory permissions via a temporary directory used by impwage…	NVD-CWE-Other	CVE-2002-1395	2008-09-11 04:14	2003-01-17	Show	GitHub Exploit DB Packet Storm

275478	-	frederic_tyndiuk	eupload	eUpload 1.0 stores the password.txt password file in plaintext under the web document root, which allows remote attackers to overwrite arbitrary files by reading password.txt.	NVD-CWE-Other	CVE-2002-1449	2008-09-11 04:14	2002-07-31	Show	GitHub Exploit DB Packet Storm

275479	-	openldap	openldap	slapd in OpenLDAP2 (OpenLDAP 2) 2.2.0 and earlier allows local users to overwrite arbitrary files via a race condition during the creation of a log file for rejected replication requests.	NVD-CWE-Other	CVE-2002-1508	2008-09-11 04:14	2003-02-19	Show	GitHub Exploit DB Packet Storm

275480	-	redhat	linux	A patch for shadow-utils 20000902 causes the useradd command to create a mail spool files with read/write privileges of the new user's group (mode 660), which allows other users in the same group to …	NVD-CWE-Other	CVE-2002-1509	2008-09-11 04:14	2003-03-3	Show	GitHub Exploit DB Packet Storm