Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 22, 2025, 6:04 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
801	4.3	警告 Network	DesDev Inc.	DedeCMS	DesDev Inc. の DedeCMS におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2024-3144	2025-01-16 15:48	2024-04-2	Show	GitHub Exploit DB Packet Storm

802	6.5	警告 Network	Themeum	Tutor LMS	Themeum の WordPress 用 Tutor LMS における認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2024-3553	2025-01-16 15:48	2024-05-2	Show	GitHub Exploit DB Packet Storm

803	9	緊急 Network	FreeScout	FreeScout	FreeScout における OS コマンドインジェクションの脆弱性	CWE-78 CWE-78	CVE-2024-29185	2025-01-16 15:48	2024-03-22	Show	GitHub Exploit DB Packet Storm

804	7.8	重要 Local	クアルコム	Snapdragon 8cx Compute Platform ファームウェア snapdragon 8cx gen 3 ファームウェア QCA6391 ファームウェア fastconnect 6900 ファームウェア Snapdragon 8cx&nb…	複数のクアルコム製品における境界外書き込みに関する脆弱性	CWE-120 CWE-787	CVE-2023-43540	2025-01-16 15:46	2023-09-19	Show	GitHub Exploit DB Packet Storm

805	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における初期化されていないリソースの使用に関する脆弱性	CWE-908 初期化されていないリソースの使用	CVE-2021-47554	2025-01-16 15:46	2021-11-24	Show	GitHub Exploit DB Packet Storm

806	7.8	重要 Local	クアルコム	APQ8030 ファームウェア APQ8064 ファームウェア 9206 lte modem ファームウェア c-v2x 9150 ファームウェア 9207 lte modem ファームウェア CSRA6640 ファームウェア APQ8037 …	複数のクアルコム製品における境界外書き込みに関する脆弱性	CWE-787 CWE-823	CVE-2023-33066	2025-01-16 15:43	2023-05-17	Show	GitHub Exploit DB Packet Storm

807	7.8	重要 Local	マイクロソフト	Microsoft Windows 10 Microsoft Windows Server 2022 Microsoft Windows 11 Microsoft Windows Server 2025	Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability	CWE-416 解放済みメモリの使用	CVE-2025-21335	2025-01-16 15:43	2025-01-14	Show	GitHub Exploit DB Packet Storm

808	7.3	重要 Local	マイクロソフト	Azure Data Studio	Azure Data Studio の特権の昇格の脆弱性	CWE-284 CWE-noinfo	CVE-2024-26203	2025-01-16 15:38	2024-03-12	Show	GitHub Exploit DB Packet Storm

809	8.8	重要 Network	マイクロソフト	Microsoft OLE DB Driver Microsoft SQL Server	SQL Server 用 Microsoft OLE DB ドライバーのリモートでコードが実行される脆弱性	CWE-209 CWE-noinfo	CVE-2024-28939	2025-01-16 15:34	2024-04-9	Show	GitHub Exploit DB Packet Storm

810	8.8	重要 Network	マイクロソフト	Microsoft OLE DB Driver Microsoft SQL Server	SQL Server 用 Microsoft OLE DB ドライバーのリモートでコードが実行される脆弱性	CWE-122 CWE-noinfo	CVE-2024-29044	2025-01-16 15:31	2024-04-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 23, 2025, 5:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
275611	-	enlightenment	imlib	Imlib before 1.9.13 sometimes uses the NetPBM package to load trusted images, which could allow attackers to cause a denial of service (crash) and possibly execute arbitrary code via certain weakness…	NVD-CWE-Other	CVE-2002-0167	2008-09-11 09:00	2002-04-22	Show	GitHub Exploit DB Packet Storm

275612	-	enlightenment	imlib	Vulnerability in Imlib before 1.9.13 allows attackers to cause a denial of service (crash) and possibly execute arbitrary code by manipulating arguments that are passed to malloc, which results in a …	NVD-CWE-Other	CVE-2002-0168	2008-09-11 09:00	2002-04-22	Show	GitHub Exploit DB Packet Storm

275613	-	redhat	docbook_stylesheets docbook_utils	The default stylesheet for DocBook on Red Hat Linux 6.2 through 7.2 is installed with an insecure option enabled, which could allow users to overwrite files outside of the current directory from an u…	NVD-CWE-Other	CVE-2002-0169	2008-09-11 09:00	2002-05-29	Show	GitHub Exploit DB Packet Storm

275614	-	sgi	irisconsole	IRISconsole 2.0 may allow users to log into the icadmin account with an incorrect password in some circumstances, which could allow users to gain privileges.	NVD-CWE-Other	CVE-2002-0171	2008-09-11 09:00	2002-05-16	Show	GitHub Exploit DB Packet Storm

275615	-	sgi	irix	/dev/ipfilter on SGI IRIX 6.5 is installed by /dev/MAKEDEV with insecure default permissions (644), which could allow a local user to cause a denial of service (traffic disruption).	NVD-CWE-Other	CVE-2002-0172	2008-09-11 09:00	2002-05-16	Show	GitHub Exploit DB Packet Storm

275616	-	sgi	irix	Buffer overflow in cpr for the eoe.sw.cpr SGI Checkpoint-Restart Software package on SGI IRIX 6.5.10 and earlier may allow local users to gain root privileges.	NVD-CWE-Other	CVE-2002-0173	2008-09-11 09:00	2002-05-16	Show	GitHub Exploit DB Packet Storm

275617	-	sgi	irix	nsd on SGI IRIX before 6.5.11 allows local users to overwrite arbitrary files and gain root privileges via a symlink attack on the nsd.dump file.	NVD-CWE-Other	CVE-2002-0174	2008-09-11 09:00	2002-05-29	Show	GitHub Exploit DB Packet Storm

275618	-	avaya	libsafe	libsafe 2.0-11 and earlier allows attackers to bypass protection against format string vulnerabilities via format strings that use the "'" and "I" characters, which are implemented in libc but not li…	NVD-CWE-Other	CVE-2002-0175	2008-09-11 09:00	2002-04-22	Show	GitHub Exploit DB Packet Storm

275619	-	avaya	libsafe	The printf wrappers in libsafe 2.0-11 and earlier do not properly handle argument indexing specifiers, which could allow attackers to exploit certain function calls through arguments that are not ver…	NVD-CWE-Other	CVE-2002-0176	2008-09-11 09:00	2002-04-22	Show	GitHub Exploit DB Packet Storm

275620	-	acd_incorporated	cwpapi	GetRelativePath in ACD Incorporated CwpAPI 1.1 only verifies if the server root is somewhere within the path, which could allow remote attackers to read or write files outside of the web root, in oth…	NVD-CWE-Other	CVE-2002-0196	2008-09-11 09:00	2002-05-16	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed