Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 11, 2025, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
61	6.7	警告 Local	デル	EMC PowerScale OneFS	デルの EMC PowerScale OneFS における脆弱性 New	CWE-269 CWE-noinfo	CVE-2024-25961	2025-01-10 16:28	2024-03-28	Show	GitHub Exploit DB Packet Storm

62	7.5	重要 Network	デル	EMC PowerScale OneFS	デルの EMC PowerScale OneFS における脆弱性 New	CWE-385 CWE-Other	CVE-2024-25964	2025-01-10 16:28	2024-03-25	Show	GitHub Exploit DB Packet Storm

63	7.5	重要 Network	デル	EMC PowerScale OneFS	デルの EMC PowerScale OneFS における脆弱性 New	CWE-241 CWE-Other	CVE-2024-25966	2025-01-10 16:28	2024-05-14	Show	GitHub Exploit DB Packet Storm

64	6.5	警告 Network	デル	EMC PowerScale OneFS	デルの EMC PowerScale OneFS における脆弱性 New	CWE-20 CWE-noinfo	CVE-2024-25970	2025-01-10 16:28	2024-05-14	Show	GitHub Exploit DB Packet Storm

65	7.2	重要 Network	phpMyFAQ	phpMyFAQ	phpMyFAQ における危険なタイプのファイルの無制限アップロードに関する脆弱性 New	CWE-434 CWE-434	CVE-2024-28105	2025-01-10 16:28	2024-03-25	Show	GitHub Exploit DB Packet Storm

66	8.8	重要 Network	phpMyFAQ	phpMyFAQ	phpMyFAQ における SQL インジェクションの脆弱性 New	CWE-89 CWE-89	CVE-2024-28107	2025-01-10 16:28	2024-03-25	Show	GitHub Exploit DB Packet Storm

67	6.1	警告 Adjacent	cilium	cilium	cilium における重要な情報の平文での送信に関する脆弱性 New	CWE-311 CWE-319	CVE-2024-28249	2025-01-10 16:28	2024-03-18	Show	GitHub Exploit DB Packet Storm

68	7.5	重要 Network	sigstore	cosign	sigstore の cosign における制限またはスロットリング無しのリソースの割り当てに関する脆弱性 New	CWE-770 CWE-770	CVE-2024-29903	2025-01-10 16:28	2024-04-10	Show	GitHub Exploit DB Packet Storm

69	4.9	警告 Network	XWiki	xwiki	XWiki の xwiki における強度が不十分なパスワードハッシュの使用に関する脆弱性 New	CWE-200 CWE-916	CVE-2024-31464	2025-01-10 16:28	2024-04-10	Show	GitHub Exploit DB Packet Storm

70	9	緊急 Adjacent	argoproj	argo cd	argoproj の argo cd における暗号アルゴリズムの使用に関する脆弱性 New	CWE-327 CWE-327	CVE-2024-31989	2025-01-10 16:28	2024-05-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 11, 2025, 5:03 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
151	6.5	MEDIUM Adjacent	-	-	An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated adjacent attacker sending… New	CWE-755 Improper Handling of Exceptional Conditions	CVE-2025-21602	2025-01-10 02:15	2025-01-10	Show	GitHub Exploit DB Packet Storm

152	6.5	MEDIUM Adjacent	-	-	An Out-of-Bounds Read vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, logically adjacent BGP peer sending a specifi… New	CWE-125 Out-of-bounds Read	CVE-2025-21600	2025-01-10 02:15	2025-01-10	Show	GitHub Exploit DB Packet Storm

153	-		-	-	A vulnerability has been found in SEMCMS up to 4.8 and classified as critical. Affected by this vulnerability is an unknown functionality of the file SEMCMS_Images.php of the component Image Library … New	-	CVE-2024-13193	2025-01-10 02:15	2025-01-9	Show	GitHub Exploit DB Packet Storm

154	-		-	-	A vulnerability, which was classified as problematic, was found in ZeroWdd myblog 1.0. Affected is the function update of the file src/main/java/com/wdd/myblog/controller/admin/BlogController.java. T… New	-	CVE-2024-13192	2025-01-10 02:15	2025-01-9	Show	GitHub Exploit DB Packet Storm

155	-		-	-	A vulnerability, which was classified as critical, has been found in ZeroWdd myblog 1.0. This issue affects the function upload of the file src/main/java/com/wdd/myblog/controller/admin/uploadControl… New	-	CVE-2024-13191	2025-01-10 02:15	2025-01-9	Show	GitHub Exploit DB Packet Storm

156	7.5	HIGH Network	-	-	A Missing Release of Memory after Effective Lifetime vulnerability in the Juniper Tunnel Driver (jtd) of Juniper Networks Junos OS Evolved allows an unauthenticated network-based attacker to cause De… New	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2025-21599	2025-01-10 02:15	2025-01-10	Show	GitHub Exploit DB Packet Storm

157	5.5	MEDIUM Local	-	-	An Improper Handling of Exceptional Conditions vulnerability in the command-line processing of Juniper Networks Junos OS on SRX1500, SRX4100, and SRX4200 devices allows a local, low-privileged authen… New	CWE-755 Improper Handling of Exceptional Conditions	CVE-2025-21596	2025-01-10 02:15	2025-01-10	Show	GitHub Exploit DB Packet Storm

158	6.5	MEDIUM Adjacent	-	-	An Improper Control of a Resource Through its Lifetime vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated network-based att… New	CWE-664 Improper Control of a Resource Through its Lifetime	CVE-2025-21593	2025-01-10 02:15	2025-01-10	Show	GitHub Exploit DB Packet Storm

159	5.5	MEDIUM Local	-	-	An Exposure of Sensitive Information to an Unauthorized Actor vulnerability in the command-line interface (CLI) of Juniper Networks Junos OS on SRX Series devices allows a local, low-privileged user … New	CWE-200 Information Exposure	CVE-2025-21592	2025-01-10 02:15	2025-01-10	Show	GitHub Exploit DB Packet Storm

160	-		-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Joomag. WP Joomag allows DOM-Based XSS.This issue affects WP Joomag: from n/a through 2.5.2. New	CWE-79 Cross-site Scripting	CVE-2025-22827	2025-01-10 01:16	2025-01-10	Show	GitHub Exploit DB Packet Storm