Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 23, 2025, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
591	5.5	警告 Local	マイクロソフト	Microsoft Windows 10 Microsoft Windows Server 2016 Microsoft Windows 11 Microsoft Windows Server 2019 Microsoft Windows Server&…	Windows DWM Core ライブラリの情報漏えいの脆弱性	CWE-191 CWE-noinfo	CVE-2024-30008	2025-01-17 22:38	2024-05-14	Show	GitHub Exploit DB Packet Storm

592	8.8	重要 Network	マイクロソフト	Microsoft ODBC Driver Microsoft SQL Server	SQL Server 用 Microsoft ODBC ドライバーのリモートでコードが実行される脆弱性	CWE-416 CWE-noinfo	CVE-2024-29043	2025-01-17 22:35	2024-04-9	Show	GitHub Exploit DB Packet Storm

593	8.8	重要 Network	マイクロソフト	Microsoft SQL Server	SQL Server Native Client OLE DB プロバイダーのリモートコード実行に対する脆弱性	CWE-122 CWE-noinfo	CVE-2024-21414	2025-01-17 22:32	2024-07-9	Show	GitHub Exploit DB Packet Storm

594	8.8	重要 Network	マイクロソフト	Microsoft SQL Server	SQL Server Native Client OLE DB プロバイダーのリモートコード実行に対する脆弱性	CWE-122 CWE-noinfo	CVE-2024-21373	2025-01-17 22:29	2024-07-9	Show	GitHub Exploit DB Packet Storm

595	8.8	重要 Network	マイクロソフト	Microsoft SQL Server	SQL Server Native Client OLE DB プロバイダーのリモートコード実行に対する脆弱性	CWE-416 CWE-noinfo	CVE-2024-21308	2025-01-17 22:26	2024-07-9	Show	GitHub Exploit DB Packet Storm

596	9.8	緊急 Network	フォーティネット	FortiOS FortiProxy	フォーティネットの FortiProxy および FortiOS における脆弱性	CWE-288 CWE-Other	CVE-2024-55591	2025-01-17 22:21	2024-12-9	Show	GitHub Exploit DB Packet Storm

597	8.8	重要 Network	マイクロソフト	Microsoft SQL Server Microsoft OLE DB Driver	SQL Server 用 Microsoft OLE DB ドライバーのリモートでコードが実行される脆弱性	CWE-122 CWE-noinfo	CVE-2024-28927	2025-01-17 22:16	2024-04-9	Show	GitHub Exploit DB Packet Storm

598	8.8	重要 Network	マイクロソフト	Microsoft SQL Server Microsoft OLE DB Driver	SQL Server 用 Microsoft OLE DB ドライバーのリモートでコードが実行される脆弱性	CWE-122 CWE-noinfo	CVE-2024-28940	2025-01-17 22:14	2024-04-9	Show	GitHub Exploit DB Packet Storm

599	8.8	重要 Network	マイクロソフト	Microsoft SQL Server Microsoft OLE DB Driver	SQL Server 用 Microsoft OLE DB ドライバーのリモートでコードが実行される脆弱性	CWE-122 CWE-noinfo	CVE-2024-29046	2025-01-17 22:00	2024-04-9	Show	GitHub Exploit DB Packet Storm

600	8.8	重要 Network	マイクロソフト	Microsoft ODBC Driver Microsoft SQL Server Microsoft Visual Studio	SQL Server 用 Microsoft ODBC ドライバーのリモートでコードが実行される脆弱性	CWE-122 CWE-noinfo	CVE-2024-28937	2025-01-17 21:55	2024-04-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 24, 2025, 4:45 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
491	7.8	HIGH Local	adobe	substance_3d_designer	Substance3D - Designer versions 14.0 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitat… Update	CWE-787 Out-of-bounds Write	CVE-2025-21137	2025-01-22 02:49	2025-01-15	Show	GitHub Exploit DB Packet Storm

492	7.8	HIGH Local	adobe	substance_3d_designer	Substance3D - Designer versions 14.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of… Update	CWE-787 Out-of-bounds Write	CVE-2025-21136	2025-01-22 02:49	2025-01-15	Show	GitHub Exploit DB Packet Storm

493	7.8	HIGH Local	adobe	illustrator	Illustrator on iPad versions 3.0.7 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user… Update	CWE-191 Integer Underflow (Wrap or Wraparound)	CVE-2025-21133	2025-01-22 02:49	2025-01-15	Show	GitHub Exploit DB Packet Storm

494	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ksmbd: set ATTR_CTIME flags when setting mtime David reported that the new warning from setattr_copy_mgtime is coming like the fo… Update	NVD-CWE-noinfo	CVE-2024-57895	2025-01-22 02:47	2025-01-15	Show	GitHub Exploit DB Packet Storm

495	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ila: serialize calls to nf_register_net_hooks() syzbot found a race in ila_add_mapping() [1] commit 031ae72825ce ("ila: call nf_… Update	CWE-416 Use After Free	CVE-2024-57900	2025-01-22 02:45	2025-01-15	Show	GitHub Exploit DB Packet Storm

496	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: btrfs: flush delalloc workers queue before stopping cleaner kthread during unmount During the unmount path, at close_ctree(), we … Update	CWE-416 Use After Free	CVE-2024-57896	2025-01-22 02:45	2025-01-15	Show	GitHub Exploit DB Packet Storm

497	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix slab-use-after-free due to dangling pointer dqi_priv When mounting ocfs2 and then remounting it as read-only, a slab-u… Update	CWE-416 Use After Free	CVE-2024-57892	2025-01-22 02:41	2025-01-15	Show	GitHub Exploit DB Packet Storm

498	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: RDMA/uverbs: Prevent integer overflow issue In the expression "cmd.wqe_size * cmd.wr_count", both variables are u32 values that c… Update	CWE-190 Integer Overflow or Wraparound	CVE-2024-57890	2025-01-22 02:41	2025-01-15	Show	GitHub Exploit DB Packet Storm

499	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm: adv7511: Fix use-after-free in adv7533_attach_dsi() The host_node pointer was assigned and freed in adv7533_parse_dt(), and … Update	CWE-416 Use After Free	CVE-2024-57887	2025-01-22 02:40	2025-01-15	Show	GitHub Exploit DB Packet Storm

500	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: mptcp: fix TCP options overflow. Syzbot reported the following splat: Oops: general protection fault, probably for non-canonical… Update	CWE-476 NULL Pointer Dereference	CVE-2024-57882	2025-01-22 02:39	2025-01-15	Show	GitHub Exploit DB Packet Storm