Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
681 5.3 警告
Network 		Fedora Project
Moodle		 Fedora
Moodle 		Moodle の Moodle 等複数ベンダの製品における脆弱性 CWE-233
CWE-noinfo
CVE-2024-25979 2025-01-24 12:25 2024-02-19 Show GitHub Exploit DB Packet Storm
682 5.3 警告
Network 		Fedora Project
Moodle		 Fedora
Moodle 		Moodle の Moodle 等複数ベンダの製品における脆弱性 CWE-284
CWE-noinfo
CVE-2024-25981 2025-01-24 12:25 2024-02-19 Show GitHub Exploit DB Packet Storm
683 9.8 緊急
Network 		PHOENIX CONTACT charx sec-3100 ファームウェア
charx sec-3050 ファームウェア
charx sec-3000 ファームウェア
charx sec-3150 ファームウェア 		複数の PHOENIX CONTACT 製品における同一生成元ポリシー違反に関する脆弱性 CWE-346
同一生成元ポリシー違反 		CVE-2024-25996 2025-01-24 12:25 2024-03-12 Show GitHub Exploit DB Packet Storm
684 4.8 警告
Network 		PHOENIX CONTACT charx sec-3100 ファームウェア
charx sec-3050 ファームウェア
charx sec-3000 ファームウェア
charx sec-3150 ファームウェア 		複数の PHOENIX CONTACT 製品における不完全なクリーンアップに関する脆弱性 CWE-459
不完全なクリーンアップ 		CVE-2024-26005 2025-01-24 12:25 2024-03-12 Show GitHub Exploit DB Packet Storm
685 5.4 警告
Network 		Leap13 premium addons Leap13 の WordPress 用 premium addons におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-1996 2025-01-24 12:06 2024-03-13 Show GitHub Exploit DB Packet Storm
686 9.8 緊急
Network 		abocms abo.cms abocms の abo.cms における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2024-25227 2025-01-24 12:06 2024-03-15 Show GitHub Exploit DB Packet Storm
687 5.4 警告
Network 		Basixonline NEX-Forms Basixonline の WordPress 用 NEX-Forms におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-25593 2025-01-24 12:06 2024-03-15 Show GitHub Exploit DB Packet Storm
688 7.2 重要
Network 		PaperCut Software International Pty PaperCut MF
PaperCut NG 		PaperCut Software International Pty の PaperCut MF および PaperCut NG における脆弱性 CWE-76
CWE-Other
CVE-2024-1882 2025-01-24 12:01 2024-03-14 Show GitHub Exploit DB Packet Storm
689 4.3 警告
Network 		themelooks enter addons themelooks の WordPress 用 enter addons におけるユーザ制御の鍵による認証回避に関する脆弱性 CWE-639
ユーザ制御の鍵による認証回避 		CVE-2024-10868 2025-01-24 12:01 2024-11-23 Show GitHub Exploit DB Packet Storm
690 7.5 重要
Network 		utarit SoliPay Mobile App utarit の SoliPay Mobile App における脆弱性 CWE-648
CWE-noinfo
CVE-2023-4993 2025-01-24 11:56 2023-09-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 1, 2025, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
621 - - - NVIDIA Container Toolkit contains an improper isolation vulnerability where a specially crafted container image could lead to untrusted code running in the host’s network namespace. This vulnerabilit… CWE-653
 Improper Isolation or Compartmentalization 		CVE-2024-0137 2025-01-28 12:15 2025-01-28 Show GitHub Exploit DB Packet Storm
622 - - - NVIDIA Container Toolkit contains an improper isolation vulnerability where a specially crafted container image could lead to untrusted code obtaining read and write access to host devices. This vuln… CWE-653
 Improper Isolation or Compartmentalization 		CVE-2024-0136 2025-01-28 12:15 2025-01-28 Show GitHub Exploit DB Packet Storm
623 - - - NVIDIA Container Toolkit contains an improper isolation vulnerability where a specially crafted container image could lead to modification of a host binary. A successful exploit of this vulnerability… CWE-653
 Improper Isolation or Compartmentalization 		CVE-2024-0135 2025-01-28 12:15 2025-01-28 Show GitHub Exploit DB Packet Storm
624 4.0 MEDIUM
Local 		- - IBM Fusion and IBM Fusion HCI 2.3.0 through 2.8.2 is vulnerable to insecure network connection by allowing an attacker who gains access to a Fusion container to establish an external network connecti… CWE-923
 Improper Restriction of Communication Channel to Intended Endpoints 		CVE-2024-22315 2025-01-28 11:15 2025-01-28 Show GitHub Exploit DB Packet Storm
625 5.3 MEDIUM
Network 		- - IBM Sterling B2B Integrator 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.1 could allow an authenticated user to obtain sensitive information from the dashboard UI using man in the middle techniq… CWE-300
 Channel Accessible by Non-Endpoint 		CVE-2024-27263 2025-01-28 10:15 2025-01-28 Show GitHub Exploit DB Packet Storm
626 - - - Buffer overflow in XPS data font processing of Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being unres… - CVE-2024-12649 2025-01-28 10:15 2025-01-28 Show GitHub Exploit DB Packet Storm
627 - - - Buffer overflow in TIFF data EXIF tag processing of Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being … - CVE-2024-12648 2025-01-28 10:15 2025-01-28 Show GitHub Exploit DB Packet Storm
628 - - - Buffer overflow in CPCA font download processing of Small Office Multifunction Printers and Laser Printers(*) which may allow an attacker on the network segment to trigger the affected product being … - CVE-2024-12647 2025-01-28 10:15 2025-01-28 Show GitHub Exploit DB Packet Storm
629 6.3 MEDIUM
Network 		- - IBM Sterling B2B Integrator 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.1 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the at… CWE-89
SQL Injection 		CVE-2023-50316 2025-01-28 10:15 2025-01-28 Show GitHub Exploit DB Packet Storm
630 6.5 MEDIUM
Adjacent 		- - IBM QRadar SIEM 7.5 transmits sensitive or security-critical data in cleartext in a communication channel that could be obtained by an unauthorized actor using man in the middle techniques. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2024-28786 2025-01-28 09:15 2025-01-28 Show GitHub Exploit DB Packet Storm