Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 31, 2025, 4:03 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
821 5.5 警告
Local
マイクロソフト Microsoft Windows 11
Microsoft Windows 10
Microsoft Windows Server 2022
Microsoft Windows Server 2025
Windows カーネル メモリの情報漏えいの脆弱性 CWE-532
CWE-noinfo
CVE-2025-21317 2025-01-23 13:46 2025-01-14 Show GitHub Exploit DB Packet Storm
822 9 緊急
Network
フォーティネット FortiNAC フォーティネットの FortiNAC におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2024-31488 2025-01-23 13:43 2024-05-14 Show GitHub Exploit DB Packet Storm
823 8.8 重要
Network
Mozilla Foundation
Debian
Mozilla Thunderbird
Mozilla Firefox
Debian GNU/Linux
Mozilla Foundation の Mozilla Firefox 等複数ベンダの製品における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み
CVE-2024-4777 2025-01-23 13:41 2024-05-14 Show GitHub Exploit DB Packet Storm
824 8.8 重要
Network
フォーティネット FortiSOAR フォーティネットの FortiSOAR における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2023-23775 2025-01-23 13:35 2023-01-18 Show GitHub Exploit DB Packet Storm
825 4.3 警告
Network
07fly 07FlyCms 07fly の 07FlyCms におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2024-57161 2025-01-23 12:46 2025-01-16 Show GitHub Exploit DB Packet Storm
826 7.8 重要
Local
マイクロソフト Microsoft Windows Server 2022
Microsoft Windows Server 2025
Internet Explorer のリモートでコードが実行される脆弱性 CWE-843
CWE-noinfo
CVE-2025-21326 2025-01-23 12:16 2025-01-14 Show GitHub Exploit DB Packet Storm
827 5.5 警告
Local
マイクロソフト Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows Server 2008
Microsoft Windows Server 2012
Microso…
Windows カーネル メモリの情報漏えいの脆弱性 CWE-532
CWE-noinfo
CVE-2025-21319 2025-01-23 12:11 2025-01-14 Show GitHub Exploit DB Packet Storm
828 5.5 警告
Local
マイクロソフト Microsoft Windows Server 2022
Microsoft Windows Server 2016
Microsoft Windows Server 2012
Microsoft Windows 10
Microsoft Window…
Windows カーネル メモリの情報漏えいの脆弱性 CWE-532
CWE-noinfo
CVE-2025-21316 2025-01-23 12:06 2025-01-14 Show GitHub Exploit DB Packet Storm
829 6.5 警告
Network
Mozilla Foundation Mozilla Firefox Mozilla Foundation の Mozilla Firefox における脆弱性 CWE-noinfo
情報不足
CVE-2024-4774 2025-01-23 12:02 2024-05-14 Show GitHub Exploit DB Packet Storm
830 4.3 警告
Network
フォーティネット FortiManager フォーティネットの FortiManager における脆弱性 CWE-200
CWE-noinfo
CVE-2024-33506 2025-01-23 12:00 2024-10-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 2, 2025, 4:09 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
591 - - - This issue was addressed with additional entitlement checks. This issue is fixed in macOS Sonoma 14.7.2, macOS Sequoia 15.2, macOS Ventura 13.7.2. An app may be able to read and write files outside o… - CVE-2024-54537 2025-01-29 02:15 2025-01-28 Show GitHub Exploit DB Packet Storm
592 - - - A path handling issue was addressed with improved validation. This issue is fixed in macOS Sonoma 14.7.2, macOS Sequoia 15.2, macOS Ventura 13.7.2. An app may be able to overwrite arbitrary files. - CVE-2024-54520 2025-01-29 02:15 2025-01-28 Show GitHub Exploit DB Packet Storm
593 - - - The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.2, tvOS 18.2, watchOS 11.2, iOS 18.2 and iPadOS 18.2, iPadOS 17.7.3, macOS Sonoma 14.7.2, macOS Sequoia 15.2. A… - CVE-2024-54468 2025-01-29 02:15 2025-01-28 Show GitHub Exploit DB Packet Storm
594 - - - gpac 2.4 contains a heap-buffer-overflow at isomedia/sample_descs.c:1799 in gf_isom_new_mpha_description in gpac/MP4Box. - CVE-2024-50664 2025-01-29 02:15 2025-01-24 Show GitHub Exploit DB Packet Storm
595 - - - KWHotel 0.47 is vulnerable to CSV Formula Injection in the invoice adding function. - CVE-2023-46401 2025-01-29 02:15 2025-01-24 Show GitHub Exploit DB Packet Storm
596 - - - Hyperbridge is a hyper-scalable coprocessor for verifiable, cross-chain interoperability. A critical vulnerability was discovered in the ismp-grandpa crate, that allowed a malicious prover easily con… CWE-347
CWE-670
 Improper Verification of Cryptographic Signature
 Always-Incorrect Control Flow Implementation
CVE-2025-24800 2025-01-29 01:15 2025-01-29 Show GitHub Exploit DB Packet Storm
597 - - - In JetBrains ReSharper before 2024.3.4, 2024.2.8, and 2024.1.7, Rider before 2024.3.4, 2024.2.8, and 2024.1.7, dotTrace before 2024.3.4, 2024.2.8, and 2024.1.7, ETW Host Service before 16.43, Local P… CWE-114
 Process Control
CVE-2025-23385 2025-01-29 01:15 2025-01-29 Show GitHub Exploit DB Packet Storm
598 - - - Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. The file upload feature allows to upload arbitrary files, including html and svg. Both can contain… CWE-434
 Unrestricted Upload of File with Dangerous Type 
CVE-2025-23213 2025-01-29 01:15 2025-01-29 Show GitHub Exploit DB Packet Storm
599 - - - Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. The external storage feature allows any user to enumerate the name and content of files on the ser… CWE-200
Information Exposure
CVE-2025-23212 2025-01-29 01:15 2025-01-29 Show GitHub Exploit DB Packet Storm
600 - - - Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. A Jinja2 SSTI vulnerability allows any user to execute commands on the server. In the case of the … CWE-1336
 Improper Neutralization of Special Elements Used in a Template Engine
CVE-2025-23211 2025-01-29 01:15 2025-01-29 Show GitHub Exploit DB Packet Storm