Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
651 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2024-57938 2025-01-24 15:08 2024-12-23 Show GitHub Exploit DB Packet Storm
652 4.9 警告
Network 		openautomationsoftware oas platform openautomationsoftware の oas platform における脆弱性 CWE-73
CWE-Other
CVE-2024-22178 2025-01-24 14:55 2024-04-3 Show GitHub Exploit DB Packet Storm
653 6.5 警告
Network 		Fortra GoAnywhere Managed File Transfer Fortra の GoAnywhere Managed File Transfer におけるパストラバーサルの脆弱性 CWE-22
CWE-22
CVE-2024-25156 2025-01-24 14:48 2024-03-14 Show GitHub Exploit DB Packet Storm
654 6.1 警告
Network 		Etoile Web Design Ultimate Reviews Etoile Web Design の WordPress 用 Ultimate Reviews におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-25597 2025-01-24 14:48 2024-03-15 Show GitHub Exploit DB Packet Storm
655 5.3 警告
Network 		Moodle
Fedora Project		 Moodle
Fedora 		Moodle の Moodle 等複数ベンダの製品におけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
CWE-639
CVE-2024-25983 2025-01-24 14:47 2024-02-19 Show GitHub Exploit DB Packet Storm
656 9.8 緊急
Network 		PHOENIX CONTACT charx sec-3000 ファームウェア
charx sec-3150 ファームウェア
charx sec-3050 ファームウェア
charx sec-3100 ファームウェア 		複数の PHOENIX CONTACT 製品における重要な機能に対する認証の欠如に関する脆弱性 CWE-306
重要な機能に対する認証の欠如 解説 		CVE-2024-25995 2025-01-24 14:47 2024-03-12 Show GitHub Exploit DB Packet Storm
657 7.3 重要
Network 		PHOENIX CONTACT charx sec-3000 ファームウェア
charx sec-3150 ファームウェア
charx sec-3050 ファームウェア
charx sec-3100 ファームウェア 		複数の PHOENIX CONTACT 製品におけるコマンドインジェクションの脆弱性 CWE-20
CWE-77
CVE-2024-25998 2025-01-24 14:47 2024-03-12 Show GitHub Exploit DB Packet Storm
658 9.8 緊急
Network 		PHOENIX CONTACT charx sec-3000 ファームウェア
charx sec-3150 ファームウェア
charx sec-3050 ファームウェア
charx sec-3100 ファームウェア 		複数の PHOENIX CONTACT 製品における境界外書き込みに関する脆弱性 CWE-20
CWE-787
CVE-2024-26001 2025-01-24 14:47 2024-03-12 Show GitHub Exploit DB Packet Storm
659 5.3 警告
Network 		Open Knowledge Foundation CKAN Open Knowledge Foundation の CKAN におけるログファイルからの情報漏えいに関する脆弱性 CWE-532
CWE-532
CVE-2024-27097 2025-01-24 14:47 2024-03-13 Show GitHub Exploit DB Packet Storm
660 7.8 重要
Local 		PHOENIX CONTACT charx sec-3000 ファームウェア
charx sec-3150 ファームウェア
charx sec-3050 ファームウェア
charx sec-3100 ファームウェア 		複数の PHOENIX CONTACT 製品における信頼できない検索パスに関する脆弱性 CWE-426
信頼性のない検索パス 		CVE-2024-28133 2025-01-24 14:47 2024-05-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 8, 2025, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1081 - - - The Snowflake Connector for Python provides an interface for developing Python applications that can connect to Snowflake and perform all standard operations. Snowflake discovered and remediated a vu… CWE-502
 Deserialization of Untrusted Data 		CVE-2025-24794 2025-01-30 06:15 2025-01-30 Show GitHub Exploit DB Packet Storm
1082 - - - The Snowflake Connector for Python provides an interface for developing Python applications that can connect to Snowflake and perform all standard operations. Snowflake discovered and remediated a vu… CWE-89
SQL Injection 		CVE-2025-24793 2025-01-30 06:15 2025-01-30 Show GitHub Exploit DB Packet Storm
1083 - - - snowflake-connector-net is the Snowflake Connector for .NET. Snowflake discovered and remediated a vulnerability in the Snowflake Connector for .NET in which files downloaded from stages are temporar… CWE-276
Incorrect Default Permissions  		CVE-2025-24788 2025-01-30 06:15 2025-01-30 Show GitHub Exploit DB Packet Storm
1084 7.3 HIGH
Network 		- - A vulnerability has been found in Aridius XYZ up to 20240927 on OpenCart and classified as critical. This vulnerability affects the function loadMore of the component News. The manipulation leads to … CWE-20
CWE-502
 Improper Input Validation 
 Deserialization of Untrusted Data 		CVE-2025-0841 2025-01-30 06:15 2025-01-30 Show GitHub Exploit DB Packet Storm
1085 - - - 7-Zip Mark-of-the-Web Bypass Vulnerability. This vulnerability allows remote attackers to bypass the Mark-of-the-Web protection mechanism on affected installations of 7-Zip. User interaction is requi… - CVE-2025-0411 2025-01-30 06:15 2025-01-25 Show GitHub Exploit DB Packet Storm
1086 - - - mySCADA myPRO does not properly neutralize POST requests sent to a specific port with email information. This vulnerability could be exploited by an attacker to execute arbitrary commands on the affe… CWE-78
OS Command  		CVE-2025-20061 2025-01-30 05:15 2025-01-30 Show GitHub Exploit DB Packet Storm
1087 - - - mySCADA myPRO does not properly neutralize POST requests sent to a specific port with version information. This vulnerability could be exploited by an attacker to execute arbitrary commands on the af… CWE-78
OS Command  		CVE-2025-20014 2025-01-30 05:15 2025-01-30 Show GitHub Exploit DB Packet Storm
1088 5.0 MEDIUM
Network 		- - A vulnerability, which was classified as problematic, was found in GNU Binutils up to 2.43. This affects the function disassemble_bytes of the file binutils/objdump.c. The manipulation of the argumen… CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow 		CVE-2025-0840 2025-01-30 05:15 2025-01-30 Show GitHub Exploit DB Packet Storm
1089 - - - Insertion of Sensitive Information into Log File vulnerability observed in FLEXON. Some information may be improperly disclosed through https access. This issue affects FLXEON through <= 9.3.4. CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2024-48852 2025-01-30 04:15 2025-01-30 Show GitHub Exploit DB Packet Storm
1090 - - - Missing Origin Validation in WebSockets vulnerability in FLXEON. Session management was not sufficient to prevent unauthorized HTTPS requests. This issue affects FLXEON: through <= 9.3.4. CWE-1385
 Missing Origin Validation in WebSockets 		CVE-2024-48849 2025-01-30 04:15 2025-01-30 Show GitHub Exploit DB Packet Storm