Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 19, 2025, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
591 8.8 重要
Network 		Shenzhen Tenda Technology Co.,Ltd. AC18 ファームウェア Shenzhen Tenda Technology Co.,Ltd. の AC18 ファームウェアにおける境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2024-2486 2025-01-15 13:36 2024-03-15 Show GitHub Exploit DB Packet Storm
592 8.8 重要
Network 		Synology Inc. Surveillance Station Synology Inc. の Surveillance Station における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-29238 2025-01-15 13:36 2024-03-28 Show GitHub Exploit DB Packet Storm
593 7.8 重要
Local 		クアルコム fastconnect 7800 ファームウェア
wsa8845h ファームウェア
sc8380xp ファームウェア
WCD9385 ファームウェア
wsa8845 ファームウェア
fastconnect 6900 ファームウェア
wsa8840 ファームウェア
W… 		複数のクアルコム製品における配列インデックスの検証に関する脆弱性 CWE-129
配列インデックスの不適切な検証 		CVE-2024-45550 2025-01-15 13:36 2024-09-2 Show GitHub Exploit DB Packet Storm
594 6.7 警告
Local 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows 10
Microsoft Windows Server 2012
Microsoft Windows Server 2016
Microsoft Window… 		セキュア ブートのセキュリティ機能のバイパスの脆弱性 CWE-693
CWE-noinfo
CVE-2024-26250 2025-01-15 12:39 2024-04-9 Show GitHub Exploit DB Packet Storm
595 7.8 重要
Local 		マイクロソフト Microsoft Windows 10 Windows SMB の特権の昇格の脆弱性 CWE-125
CWE-noinfo
CVE-2024-26245 2025-01-15 12:35 2024-04-9 Show GitHub Exploit DB Packet Storm
596 7.8 重要
Local 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows 10
Microsoft Windows Server 2012
Microsoft Windows Server 2016
Microsoft Window… 		Windows Telephony Server の特権の昇格の脆弱性 CWE-122
CWE-noinfo
CVE-2024-26239 2025-01-15 12:31 2024-04-9 Show GitHub Exploit DB Packet Storm
597 7.8 重要
Local 		マイクロソフト Microsoft Windows Server 2022 Windows Update スタックの特権の昇格の脆弱性 CWE-306
CWE-noinfo
CVE-2024-26235 2025-01-15 12:26 2024-04-9 Show GitHub Exploit DB Packet Storm
598 6.6 警告
Network 		マイクロソフト Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows Server 2019 		Windows DNS サーバーのリモートでコードが実行される脆弱性 CWE-416
CWE-noinfo
CVE-2024-26231 2025-01-15 12:10 2024-04-9 Show GitHub Exploit DB Packet Storm
599 7.5 重要
Network 		IBM IBM Maximo Application Suite IBM の IBM Maximo Application Suite におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2024-22328 2025-01-15 12:10 2024-04-5 Show GitHub Exploit DB Packet Storm
600 7.8 重要
Local 		IBM IBM Security Guardium IBM の IBM Security Guardium における重要なリソースに対する不適切なパーミッションの割り当てに関する脆弱性 CWE-732
重要なリソースに対する不適切なパーミッションの割り当て 		CVE-2023-47712 2025-01-15 12:10 2023-11-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 19, 2025, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
81 - - - Microsoft Edge (Chromium-based) Update Elevation of Privilege Vulnerability New - CVE-2025-21399 2025-01-18 06:15 2025-01-18 Show GitHub Exploit DB Packet Storm
82 - - - Wegia < 3.2.0 is vulnerable to Cross Site Scripting (XSS) in /geral/documentos_funcionario.php via the id parameter. New - CVE-2024-57030 2025-01-18 06:15 2025-01-18 Show GitHub Exploit DB Packet Storm
83 - - - A vulnerability was found in 1000 Projects Campaign Management System Platform for Women 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /Code/log… New - CVE-2025-0534 2025-01-18 06:15 2025-01-18 Show GitHub Exploit DB Packet Storm
84 - - - A vulnerability was found in 1000 Projects Campaign Management System Platform for Women 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file … New - CVE-2025-0533 2025-01-18 06:15 2025-01-18 Show GitHub Exploit DB Packet Storm
85 6.5 MEDIUM
Network 		fortinet fortios A null pointer dereference in FortiOS versions 7.4.0 through 7.4.1, 7.2.0 through 7.2.5, 7.0 all versions, 6.4 all versions , 6.2 all versions and 6.0 all versions allows attacker to trigger a denial… Update CWE-476
 NULL Pointer Dereference 		CVE-2023-42786 2025-01-18 05:42 2025-01-14 Show GitHub Exploit DB Packet Storm
86 6.5 MEDIUM
Network 		fortinet fortios A null pointer dereference in FortiOS versions 7.4.0 through 7.4.1, 7.2.0 through 7.2.5, 7.0 all versions, 6.4 all versions , 6.2 all versions and 6.0 all versions allows attacker to trigger a denial… Update CWE-476
 NULL Pointer Dereference 		CVE-2023-42785 2025-01-18 05:42 2025-01-14 Show GitHub Exploit DB Packet Storm
87 7.8 HIGH
Local 		microsoft autoupdate Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability Update NVD-CWE-noinfo
CVE-2025-21360 2025-01-18 05:40 2025-01-15 Show GitHub Exploit DB Packet Storm
88 7.8 HIGH
Local 		microsoft office
outlook 		Microsoft Outlook Remote Code Execution Vulnerability Update NVD-CWE-noinfo
CVE-2025-21361 2025-01-18 05:39 2025-01-15 Show GitHub Exploit DB Packet Storm
89 8.4 HIGH
Local 		microsoft 365_apps
office
excel
office_online_server 		Microsoft Excel Remote Code Execution Vulnerability Update NVD-CWE-noinfo
CVE-2025-21362 2025-01-18 05:38 2025-01-15 Show GitHub Exploit DB Packet Storm
90 7.8 HIGH
Local 		adobe substance_3d_stager Substance3D - Stager versions 3.0.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of … Update CWE-787
 Out-of-bounds Write 		CVE-2025-21132 2025-01-18 05:37 2025-01-15 Show GitHub Exploit DB Packet Storm