Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 29, 2025, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
851	7.8	重要 Local	マイクロソフト	Microsoft 365 Apps Microsoft Office Microsoft Access	Microsoft Access のリモートコードが実行される脆弱性	CWE-416 CWE-noinfo	CVE-2025-21366	2025-01-22 10:06	2025-01-14	Show	GitHub Exploit DB Packet Storm

852	8.4	重要 Local	マイクロソフト	Microsoft Office Microsoft Office Online Server Microsoft Excel Microsoft 365 Apps	Microsoft Excel のリモートでコードが実行される脆弱性	CWE-416 CWE-noinfo	CVE-2025-21362	2025-01-22 09:48	2025-01-14	Show	GitHub Exploit DB Packet Storm

853	7.8	重要 Local	マイクロソフト	Microsoft AutoUpdate	Microsoft AutoUpdate (MAU) の特権昇格の脆弱性	CWE-269 CWE-noinfo	CVE-2025-21360	2025-01-22 09:43	2025-01-14	Show	GitHub Exploit DB Packet Storm

854	7.8	重要 Local	クアルコム	fastconnect 7800 ファームウェア sc8180x-ad ファームウェア QCA6391 ファームウェア fastconnect 6800 ファームウェア QCA6420 ファームウェア sc8380xp ファームウェア SC8180XP-ACAF ファーム…	複数のクアルコム製品における整数オーバーフローの脆弱性	CWE-190 CWE-680	CVE-2024-21470	2025-01-21 18:09	2024-04-1	Show	GitHub Exploit DB Packet Storm

855	7.8	重要 Local	クアルコム	WSA8830 ファームウェア WSA8835 ファームウェア fastconnect 7800 ファームウェア fastconnect 6900 ファームウェア Snapdragon 8 Gen 1 Mobile ファームウェア WCD9380 …	複数のクアルコム製品における古典的バッファオーバーフローの脆弱性	CWE-120 CWE-120	CVE-2023-43515	2025-01-21 18:09	2023-09-19	Show	GitHub Exploit DB Packet Storm

856	7.5	重要 Network	クアルコム	c-v2x 9150 ファームウェア Snapdragon Auto 4G Modem ファームウェア snapdragon auto 5g modem-rf ファームウェア	複数のクアルコム製品における整数オーバーフローの脆弱性	CWE-190 CWE-680	CVE-2024-21454	2025-01-21 17:35	2024-04-1	Show	GitHub Exploit DB Packet Storm

857	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2024-56682	2025-01-21 15:29	2024-11-16	Show	GitHub Exploit DB Packet Storm

858	5.5	警告 Local	Linux	Linux Kernel	Linux の Linux Kernel における脆弱性	CWE-Other その他	CVE-2024-53202	2025-01-21 15:27	2024-11-13	Show	GitHub Exploit DB Packet Storm

859	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2024-35979	2025-01-21 15:25	2024-03-8	Show	GitHub Exploit DB Packet Storm

860	7.8	重要 Local	Linux	Linux Kernel	Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2024-26892	2025-01-21 15:24	2024-02-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 29, 2025, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
276531	-	oracle	database_server oracle9i	SQL*NET listener for Oracle Net Oracle9i 9.0.x and 9.2 allows remote attackers to cause a denial of service (crash) via certain debug requests that are not properly handled by the debugging feature.	NVD-CWE-Other	CVE-2002-0856	2008-09-11 04:13	2002-09-5	Show	GitHub Exploit DB Packet Storm

276532	-	l2tpd	l2tpd	l2tpd 0.67 does not initialize the random number generator, which allows remote attackers to hijack sessions.	NVD-CWE-Other	CVE-2002-0872	2008-09-11 04:13	2002-09-5	Show	GitHub Exploit DB Packet Storm

276533	-	l2tpd	l2tpd	Vulnerability in l2tpd 0.67 allows remote attackers to overwrite the vendor field via a long value in an attribute/value pair, possibly via a buffer overflow.	NVD-CWE-Other	CVE-2002-0873	2008-09-11 04:13	2002-09-5	Show	GitHub Exploit DB Packet Storm

276534	-	redhat	interchange	Vulnerability in Interchange 4.8.6, 4.8.3, and other versions, when running in INET mode, allows remote attackers to read arbitrary files.	NVD-CWE-Other	CVE-2002-0874	2008-09-11 04:13	2002-09-5	Show	GitHub Exploit DB Packet Storm

276535	-	sgi debian	fam irix debian_linux	Vulnerability in FAM 2.6.8, 2.6.6, and other versions allows unprivileged users to obtain the names of files whose access is restricted to the root group.	NVD-CWE-Other	CVE-2002-0875	2008-09-11 04:13	2002-09-5	Show	GitHub Exploit DB Packet Storm

276536	-	cgiscript.net	cspassword	CGIScript.net csPassword.cgi stores usernames and unencrypted passwords in the password.cgi.tmp temporary file while modifying data, which could allow local users (and possibly remote attackers) to g…	NVD-CWE-Other	CVE-2002-0920	2008-09-11 04:13	2002-10-4	Show	GitHub Exploit DB Packet Storm

276537	-	cgiscript.net	csnews	CGIScript.net csNews.cgi allows remote authenticated users to execute arbitrary Perl code via terminating quotes and metacharacters in text fields of the "Advanced Settings" capability.	NVD-CWE-Other	CVE-2002-0924	2008-09-11 04:13	2002-10-4	Show	GitHub Exploit DB Packet Storm

276538	-	ncipher	mscapi_csp	The Install Wizard for nCipher MSCAPI CSP 5.50 does not use Operator Card Set protected keys when the user requests them but does not generate the Operator Card Set, which results in a lower protecti…	NVD-CWE-Other	CVE-2002-0939	2008-09-11 04:13	2002-10-4	Show	GitHub Exploit DB Packet Storm

276539	-	ncipher	mscapi_csp	domesticinstall.exe for nCipher MSCAPI CSP 5.50 and 5.54 does not use Operator Card Set protected keys when the user requests them but does not generate the Operator Card Set, which results in a lowe…	NVD-CWE-Other	CVE-2002-0940	2008-09-11 04:13	2002-10-4	Show	GitHub Exploit DB Packet Storm

276540	-	scripts_for_educators	makebook	Scripts For Educators MakeBook 2.2 CGI program allows remote attackers to execute script as other visitors, or execute server-side includes (SSI) as the web server, via the (1) Name or (2) Email para…	NVD-CWE-Other	CVE-2002-0948	2008-09-11 04:13	2002-10-4	Show	GitHub Exploit DB Packet Storm