Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 19, 2025, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
701 6.6 警告
Physics 		マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2019
Microsoft Windows Server 2022
Microsoft Windows Server 2025
Microsoft Window… 		ワイヤレス広域ネットワーク サービス (WwanSvc) の特権昇格の脆弱性 CWE-122
CWE-noinfo
CVE-2024-49094 2025-01-14 16:20 2024-12-10 Show GitHub Exploit DB Packet Storm
702 5.5 警告
Local 		Linux Linux Kernel Linux の Linux Kernel におけるリソースのロックに関する脆弱性 CWE-667
不適切なロック 		CVE-2021-47055 2025-01-14 16:20 2021-03-28 Show GitHub Exploit DB Packet Storm
703 4.3 警告
Physics 		マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2019
Microsoft Windows Server 2022
Microsoft Windows Server 2025
Microsoft Window… 		Windows ワイヤレス ワイド エリア ネットワーク サービス (WwanSvc) の情報漏えいの脆弱性 CWE-125
CWE-noinfo
CVE-2024-49099 2025-01-14 16:20 2024-12-10 Show GitHub Exploit DB Packet Storm
704 8.8 重要
Network 		マイクロソフト Microsoft Windows Server 2016
Microsoft Windows 11
Microsoft Windows Server 2019
Microsoft Windows Server 2022
Microsoft Window… 		Windows ルーティングとリモート アクセス サービス (RRAS) のリモートでコードが実行される脆弱性 CWE-122
CWE-noinfo
CVE-2024-49104 2025-01-14 16:20 2024-12-10 Show GitHub Exploit DB Packet Storm
705 6.6 警告
Physics 		マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2019
Microsoft Windows Server 2022
Microsoft Windows Server 2025
Microsoft Window… 		ワイヤレス広域ネットワーク サービス (WwanSvc) の特権昇格の脆弱性 CWE-125
CWE-noinfo
CVE-2024-49109 2025-01-14 16:20 2024-12-10 Show GitHub Exploit DB Packet Storm
706 4.3 警告
Network 		Jegtheme Jeg Elementor Kit Jegtheme の WordPress 用 Jeg Elementor Kit における重要な情報のセキュアでない格納に関する脆弱性 CWE-200
CWE-922
CVE-2024-8899 2025-01-14 16:18 2024-11-26 Show GitHub Exploit DB Packet Storm
707 6.5 警告
Network 		argoproj argo cd argoproj の argo cd における脆弱性 CWE-269
CWE-noinfo
CVE-2024-41666 2025-01-14 16:17 2024-07-24 Show GitHub Exploit DB Packet Storm
708 8.8 重要
Network 		XWiki xwiki XWiki の xwiki における認証の欠如に関する脆弱性 CWE-862
CWE-862
CVE-2024-31997 2025-01-14 16:17 2024-04-10 Show GitHub Exploit DB Packet Storm
709 6.5 警告
Local 		cilium cilium cilium における脆弱性 CWE-200
CWE-noinfo
CVE-2024-37307 2025-01-14 16:17 2024-06-13 Show GitHub Exploit DB Packet Storm
710 7.5 重要
Network 		デル EMC PowerScale OneFS デルの EMC PowerScale OneFS における暗号アルゴリズムの使用に関する脆弱性 CWE-327
不完全、または危険な暗号アルゴリズムの使用 		CVE-2024-25963 2025-01-14 16:16 2024-03-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 19, 2025, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
277611 - - - Successful exploitation requires that the RemoveServerHeader option is enabled. NVD-CWE-Other
CVE-2003-1306 2008-09-6 05:36 2003-12-31 Show GitHub Exploit DB Packet Storm
277612 - fvwm fvwm CRLF injection vulnerability in fvwm-menu-directory for fvwm 2.5.x before 2.5.10 and 2.4.x before 2.4.18 allows local users to execute arbitrary commands via carriage returns in a filename. NVD-CWE-Other
CVE-2003-1308 2008-09-6 05:36 2003-12-31 Show GitHub Exploit DB Packet Storm
277613 - - - siteminderagent/SmMakeCookie.ccc in Netegrity SiteMinder does not ensure that the TARGET parameter names a valid redirection resource, which allows remote attackers to construct a URL that might tric… NVD-CWE-Other
CVE-2003-1311 2008-09-6 05:36 2003-12-31 Show GitHub Exploit DB Packet Storm
277614 - - - siteminderagent/SmMakeCookie.ccc in Netegrity SiteMinder places a session ID string in the value of the SMSESSION parameter in a URL, which might allow remote attackers to obtain the ID by sniffing, … NVD-CWE-Other
CVE-2003-1312 2008-09-6 05:36 2003-12-31 Show GitHub Exploit DB Packet Storm
277615 - eternalmart mailing_list_manager Multiple PHP remote file inclusion vulnerabilities in EternalMart Mailing List Manager (EMLM) 1.32 allow remote attackers to execute arbitrary PHP code via a URL in (1) the emml_admin_path parameter … NVD-CWE-Other
CVE-2003-1313 2008-09-6 05:36 2003-12-31 Show GitHub Exploit DB Packet Storm
277616 - sonicwall firmware SonicWALL firmware before 6.4.0.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted Internet Key Exchange (IKE) response packets, possibly including… CWE-399
 Resource Management Errors 		CVE-2003-1320 2008-09-6 05:36 2003-12-31 Show GitHub Exploit DB Packet Storm
277617 - atrium_software mercur_mailserver Multiple stack-based buffer overflows in Atrium MERCUR IMAPD in MERCUR Mailserver before 4.2.15.0 allow remote attackers to execute arbitrary code via a long (1) EXAMINE, (2) DELETE, (3) SUBSCRIBE, (… NVD-CWE-Other
CVE-2003-1322 2008-09-6 05:36 2003-12-31 Show GitHub Exploit DB Packet Storm
277618 - elm_development_group elm Elm ME+ 2.4 before PL109S, when installed setgid mail and the operating system lacks POSIX saved ID support, allows local users to read and modify certain files with the privileges of the mail group … NVD-CWE-Other
CVE-2003-1323 2008-09-6 05:36 2003-12-31 Show GitHub Exploit DB Packet Storm
277619 - elmme-mailer elm_me\+ Race condition in the can_open function in Elm ME+ 2.4, when installed setgid mail and the operating system lacks POSIX saved ID support, allows local users to read and modify certain files with the … NVD-CWE-Other
CVE-2003-1324 2008-09-6 05:36 2003-12-31 Show GitHub Exploit DB Packet Storm
277620 - valve_software half-life_cstrike_dedicated_server The SV_CheckForDuplicateNames function in Valve Software Half-Life CSTRIKE Dedicated Server 1.1.1.0 and earlier allows remote authenticated users to cause a denial of service (infinite loop and daemo… NVD-CWE-Other
CVE-2003-1325 2008-09-6 05:36 2003-12-31 Show GitHub Exploit DB Packet Storm