Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
731 7.8 重要
Local 		インテル graphics performance analyzers インテルの graphics performance analyzers における不適切なデフォルトパーミッションに関する脆弱性 CWE-276
CWE-276
CVE-2023-43629 2025-01-24 11:54 2023-10-12 Show GitHub Exploit DB Packet Storm
732 7.8 重要
Local 		インテル graphics performance analyzers インテルの graphics performance analyzers における制御されていない検索パスの要素に関する脆弱性 CWE-427
CWE-427
CVE-2024-21788 2025-01-24 11:54 2024-05-16 Show GitHub Exploit DB Packet Storm
733 7.5 重要
Network 		F5 Networks BIG-IP Application Security Manager (ASM)
BIG-IP Advanced Web Application Firewall (WAF) 		F5 Networks の BIG-IP Advanced Web Application Firewall (WAF) および BIG-IP Application Security Manager (ASM) におけるバッファサイズの計算の誤りに関する脆弱性 CWE-131
CWE-131
CVE-2024-23805 2025-01-24 11:45 2024-02-14 Show GitHub Exploit DB Packet Storm
734 5.4 警告
Network 		Themeisle otter blocks ThemeIsle の WordPress 用 otter blocks におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-2841 2025-01-24 11:32 2024-03-29 Show GitHub Exploit DB Packet Storm
735 5.4 警告
Network 		properfraction profilepress properfraction の WordPress 用 profilepress におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-3210 2025-01-24 11:32 2024-04-10 Show GitHub Exploit DB Packet Storm
736 9.8 緊急
Network 		ZyXEL NAS 326 ファームウェア
NAS 542 ファームウェア 		ZyXEL の NAS 326 ファームウェアおよび NAS 542 ファームウェアにおける危険なタイプのファイルの無制限アップロードに関する脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード 		CVE-2024-29974 2025-01-24 11:32 2024-06-4 Show GitHub Exploit DB Packet Storm
737 8.8 重要
Network 		webangon the pack elementor addons webangon の WordPress 用 the pack elementor addons におけるパストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2024-38768 2025-01-24 11:32 2024-08-1 Show GitHub Exploit DB Packet Storm
738 5.4 警告
Network 		themelooks enter addons themelooks の WordPress 用 enter addons におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-43225 2025-01-24 11:31 2024-08-12 Show GitHub Exploit DB Packet Storm
739 4.8 警告
Network 		webangon the pack elementor addons webangon の WordPress 用 the pack elementor addons におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2024-47383 2025-01-24 11:31 2024-10-5 Show GitHub Exploit DB Packet Storm
740 8.8 重要
Network 		GLPI-PROJECT.ORG GLPI GLPI-PROJECT.ORG の GLPI における脆弱性 CWE-284
CWE-noinfo
CVE-2024-47760 2025-01-24 11:31 2024-12-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 8, 2025, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1161 - - - A reachable assertion in the ogs_kdf_hash_mme function of Open5GS <= 2.6.4 allows attackers to cause a Denial of Service (DoS) via a crafted NAS packet. - CVE-2024-24432 2025-01-29 07:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1162 - - - Open5GS MME versions <= 2.6.4 contain a buffer overflow in the ASN.1 deserialization function of the S1AP handler. This buffer overflow causes type confusion in decoded fields, leading to invalid par… - CVE-2023-37008 2025-01-29 07:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1163 - - - Open5GS MME versions <= 2.6.4 contain an assertion that can be remotely triggered via a malformed ASN.1 packet over the S1AP interface. An attacker may send a `Handover Cancel` message missing a requ… - CVE-2023-37007 2025-01-29 07:15 2025-01-23 Show GitHub Exploit DB Packet Storm
1164 - - - Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Snap Deploy (Windows) before build 4625. CWE-276
Incorrect Default Permissions  		CVE-2025-24826 2025-01-29 06:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1165 - - - A Local Code Injection Vulnerability exists in the product and version listed above. The vulnerability is due to incorrect default permissions and allows for DLLs to be executed with higher level per… - CVE-2025-24482 2025-01-29 06:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1166 - - - An Incorrect Permission Assignment Vulnerability exists in the product and version listed above. The vulnerability is due to incorrect permissions being assigned to the remote debugger port and can a… - CVE-2025-24481 2025-01-29 06:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1167 - - - In shouldSkipForInitialSUW of AdvancedPowerUsageDetail.java, there is a possible way to bypass factory reset protections due to a missing permission check. This could lead to local escalation of priv… - CVE-2024-40677 2025-01-29 06:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1168 - - - In onCreate of ChooserActivity.java, there is a possible way to bypass factory reset protections due to a missing permission check. This could lead to local escalation of privilege with no additional… - CVE-2024-40672 2025-01-29 06:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1169 - - - In TBD of TBD, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not nee… - CVE-2024-40670 2025-01-29 06:15 2025-01-29 Show GitHub Exploit DB Packet Storm
1170 - - - In TBD of TBD, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not nee… - CVE-2024-40669 2025-01-29 06:15 2025-01-29 Show GitHub Exploit DB Packet Storm