Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 31, 2025, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
751	5.3	警告 Network	aio-libs project	aiosmtpd	aio-libs project の aiosmtpd におけるデータの信頼性についての不十分な検証に関する脆弱性	CWE-345 CWE-345	CVE-2024-27305	2025-01-23 14:45	2024-03-12	Show	GitHub Exploit DB Packet Storm

752	6	警告 Local	フォーティネット	FortiAnalyzer-BigData FortiManager FortiAnalyzer	複数のフォーティネット製品におけるパストラバーサルの脆弱性	CWE-22 CWE-23	CVE-2024-32116	2025-01-23 14:43	2024-11-12	Show	GitHub Exploit DB Packet Storm

753	8.8	重要 Network	フォーティネット	FortiAnalyzer-BigData FortiManager FortiAnalyzer	複数のフォーティネット製品における脆弱性	CWE-602 CWE-Other	CVE-2024-23666	2025-01-23 14:42	2024-11-12	Show	GitHub Exploit DB Packet Storm

754	4.1	警告 Network	フォーティネット	FortiAnalyzer-BigData FortiManager FortiAnalyzer	複数のフォーティネット製品における脆弱性	CWE-359 CWE-Other	CVE-2023-44255	2025-01-23 14:38	2023-09-27	Show	GitHub Exploit DB Packet Storm

755	9.8	緊急 Network	Kabir Alhasan	Student Management System	code-projects の Student Management System における SQL インジェクションの脆弱性	CWE-74 CWE-89 CWE-89	CVE-2025-0203	2025-01-23 14:33	2025-01-4	Show	GitHub Exploit DB Packet Storm

756	6.1	警告 Network	code-projects	Exam Form Submission	code-projects の Exam Form Submission におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2023-42307	2025-01-23 14:29	2023-09-8	Show	GitHub Exploit DB Packet Storm

757	4.3	警告 Network	マイクロソフト	Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2008 Microsoft Windows Server 2012 Microso…	MapUrlToZone セキュリティ機能のバイパスの脆弱性	CWE-41 CWE-noinfo	CVE-2025-21328	2025-01-23 13:57	2025-01-14	Show	GitHub Exploit DB Packet Storm

758	5.5	警告 Local	マイクロソフト	Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows 10 Microsoft Windows 11 Microsoft Windows Server&…	Windows カーネルメモリの情報漏えいの脆弱性	CWE-532 CWE-noinfo	CVE-2025-21323	2025-01-23 13:54	2025-01-14	Show	GitHub Exploit DB Packet Storm

759	7.5	重要 Network	フォーティネット	FortiSOAR	フォーティネットの FortiSOAR における過度な認証試行の不適切な制限に関する脆弱性	CWE-307 過度な認証試行の不適切な制限	CVE-2024-45327	2025-01-23 13:50	2024-09-10	Show	GitHub Exploit DB Packet Storm

760	5.5	警告 Local	マイクロソフト	Microsoft Windows Server 2022 Microsoft Windows Server 2016 Microsoft Windows Server 2012 Microsoft Windows 10 Microsoft Window…	Windows カーネルメモリの情報漏えいの脆弱性	CWE-532 CWE-noinfo	CVE-2025-21321	2025-01-23 13:50	2025-01-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 31, 2025, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
280401	-	dave_airlie luke_kenneth_casson_leighton	pam_smb pam_ntdom	Buffer overflow in pam_smb and pam_ntdom pluggable authentication modules (PAM) allow remote attackers to execute arbitrary commands via a login with a long user name.	NVD-CWE-Other	CVE-2000-0843	2008-09-6 05:22	2000-11-14	Show	GitHub Exploit DB Packet Storm

280402	-	digital	unix	kdebug daemon (kdebugd) in Digital Unix 4.0F allows remote attackers to read arbitrary files by specifying the full file name in the initialization packet.	NVD-CWE-Other	CVE-2000-0845	2008-09-6 05:22	2000-11-14	Show	GitHub Exploit DB Packet Storm

280403	-	xs4all_data	xs4all_data_sunftp	SunFTP build 9(1) allows remote attackers to cause a denial of service by connecting to the server and disconnecting before sending a newline.	NVD-CWE-Other	CVE-2000-0855	2008-09-6 05:22	2000-11-14	Show	GitHub Exploit DB Packet Storm

280404	-	xs4all_data	xs4all_data_sunftp	Buffer overflow in SunFTP build 9(1) allows remote attackers to cause a denial of service or possibly execute arbitrary commands via a long GET request.	NVD-CWE-Other	CVE-2000-0856	2008-09-6 05:22	2000-11-14	Show	GitHub Exploit DB Packet Storm

280405	-	intel	express_510t express_520t express_550f express_550t	Intel Express 500 series switches allow a remote attacker to cause a denial of service via a malformed ICMP packet, which causes the CPU to crash.	NVD-CWE-Other	CVE-2000-0882	2008-09-6 05:22	2000-11-14	Show	GitHub Exploit DB Packet Storm

280406	-	sgi	irix	The presence of the Distributed GL Daemon (dgld) service on port 5232 on SGI IRIX systems allows remote attackers to identify the target host as an SGI system.	NVD-CWE-Other	CVE-2000-0893	2008-09-6 05:22	2001-02-16	Show	GitHub Exploit DB Packet Storm

280407	-	qnx	voyager	Directory traversal vulnerability in Voyager web server 2.01B in the demo disks for QNX 405 allows remote attackers to read arbitrary files via a .. (dot dot) attack.	NVD-CWE-Other	CVE-2000-0903	2008-09-6 05:22	2000-12-19	Show	GitHub Exploit DB Packet Storm

280408	-	qnx	voyager	Voyager web server 2.01B in the demo disks for QNX 405 stores sensitive web client information in the .photon directory in the web document root, which allows remote attackers to obtain that informat…	NVD-CWE-Other	CVE-2000-0904	2008-09-6 05:22	2000-12-19	Show	GitHub Exploit DB Packet Storm

280409	-	qnx	voyager	QNX Embedded Resource Manager in Voyager web server 2.01B in the demo disks for QNX 405 allows remote attackers to read sensitive system statistics information via the embedded.html web page.	NVD-CWE-Other	CVE-2000-0905	2008-09-6 05:22	2000-12-19	Show	GitHub Exploit DB Packet Storm

280410	-	etype	eserv	EServ 2.92 Build 2982 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via long HELO and MAIL FROM commands.	NVD-CWE-Other	CVE-2000-0907	2008-09-6 05:22	2000-12-19	Show	GitHub Exploit DB Packet Storm