Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
601 4.4 警告
Local 		デル vxrail g560 vcf ファームウェア
vxrail e460 ファームウェア
vxrail e560 ファームウェア
vxrail e660 ファームウェア
vxrail e665f ファームウェア
vxrail g560 ファ… 		複数のデル製品における認証情報の不十分な保護に関する脆弱性 CWE-256
CWE-522
CVE-2025-21102 2025-01-27 11:06 2025-01-8 Show GitHub Exploit DB Packet Storm
602 6.5 警告
Network 		Palo Alto Networks PAN-OS Palo Alto Networks の PAN-OS における XML 外部エンティティの脆弱性 CWE-611
CWE-611
CVE-2024-5919 2025-01-27 11:06 2024-11-14 Show GitHub Exploit DB Packet Storm
603 8.8 重要
Network 		EBM Technologies Uniweb/SoliPACS WebServer EBM Technologies の Uniweb/SoliPACS WebServer における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-26262 2025-01-27 10:59 2024-02-15 Show GitHub Exploit DB Packet Storm
604 9.8 緊急
Network 		ZyXEL NWAW1100-N ファームウェア ZyXEL の NWAW1100-N ファームウェアにおける OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2024-8234 2025-01-27 10:59 2024-08-30 Show GitHub Exploit DB Packet Storm
605 6.5 警告
Network 		TenWeb, Inc. WPS Telegram Chat TenWeb, Inc. の WordPress 用 WPS Telegram Chat における認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2024-9628 2025-01-27 10:59 2024-10-25 Show GitHub Exploit DB Packet Storm
606 7.8 重要
Local 		インテル Intel GPA Framework インテルの Intel GPA Framework における制御されていない検索パスの要素に関する脆弱性 CWE-427
CWE-427
CVE-2023-35192 2025-01-27 10:59 2023-10-25 Show GitHub Exploit DB Packet Storm
607 7.8 重要
Local 		インテル Intel GPA Framework インテルの Intel GPA Framework における制御されていない検索パスの要素に関する脆弱性 CWE-427
CWE-427
CVE-2024-21861 2025-01-27 10:59 2024-05-16 Show GitHub Exploit DB Packet Storm
608 7.2 重要
Network 		PLV8 PLV8 PLV8 における例外的な状態のチェックに関する脆弱性 CWE-394
CWE-754
CVE-2024-1713 2025-01-27 10:41 2024-03-14 Show GitHub Exploit DB Packet Storm
609 9.8 緊急
Network 		Brad Wenqiang HR Brad Wenqiang の HR における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-2478 2025-01-27 10:41 2024-03-15 Show GitHub Exploit DB Packet Storm
610 5.5 警告
Local 		ZyXEL NR7103 ファームウェア
NR5103EV2 ファームウェア
NR5103E ファームウェア
Nebula FWA510 ファームウェア
NR7102 ファームウェア
NR5307 ファームウェア
NR7101 ファームウェア
LTE3301-PLUS ファーム… 		複数の ZyXEL 製品における古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2024-0816 2025-01-27 10:30 2024-05-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 7, 2025, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1081 - - - A vulnerability in the web-based management interface of HPE Aruba Networking Fabric Composer could allow an authenticated low privilege operator user to perform operations not allowed by their privi… - CVE-2025-23054 2025-01-29 03:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1082 - - - A privilege escalation vulnerability exists in the web-based management interface of HPE Aruba Networking Fabric Composer. Successful exploitation could allow an authenticated low privilege operator … - CVE-2025-23053 2025-01-29 03:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1083 - - - CWE-79: Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability exists when an authenticated attacker modifies folder names within the context of the produc… CWE-79
Cross-site Scripting 		CVE-2024-8401 2025-01-29 02:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1084 - - - The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4, macOS Ventura 13.7.3, macOS Sonoma 14.7.3, visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3… - CVE-2025-24124 2025-01-29 02:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1085 - - - A downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in macOS Ventura 13.7.3, macOS Sequoia 15.3, macOS Sonoma 14.7.3. An app may be able to access sensitive… - CVE-2025-24109 2025-01-29 02:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1086 - - - An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.3. An app may be able to access protected user data. - CVE-2025-24108 2025-01-29 02:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1087 - - - This issue was addressed with additional entitlement checks. This issue is fixed in macOS Sonoma 14.7.2, macOS Sequoia 15.2, macOS Ventura 13.7.2. An app may be able to read and write files outside o… - CVE-2024-54537 2025-01-29 02:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1088 - - - A path handling issue was addressed with improved validation. This issue is fixed in macOS Sonoma 14.7.2, macOS Sequoia 15.2, macOS Ventura 13.7.2. An app may be able to overwrite arbitrary files. - CVE-2024-54520 2025-01-29 02:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1089 - - - The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.2, tvOS 18.2, watchOS 11.2, iOS 18.2 and iPadOS 18.2, iPadOS 17.7.3, macOS Sonoma 14.7.2, macOS Sequoia 15.2. A… - CVE-2024-54468 2025-01-29 02:15 2025-01-28 Show GitHub Exploit DB Packet Storm
1090 - - - gpac 2.4 contains a heap-buffer-overflow at isomedia/sample_descs.c:1799 in gf_isom_new_mpha_description in gpac/MP4Box. - CVE-2024-50664 2025-01-29 02:15 2025-01-24 Show GitHub Exploit DB Packet Storm