Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Jan. 15, 2025, 6:03 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
81	6.5	警告 Network	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows Server 2022 Microsoft Windows Server 2008 Microsoft Windows Server 2012 Microso…	Windows 展開サービスの情報漏えいの脆弱性 New	CWE-41 CWE-noinfo	CVE-2024-30036	2025-01-15 14:22	2024-05-14	Show	GitHub Exploit DB Packet Storm

82	4.6	警告 Physics	Huawei	Mate 20 ファームウェア	Huawei の Mate 20 ファームウェアにおける脆弱性 New	CWE-200 CWE-noinfo	CVE-2020-9082	2025-01-15 14:18	2020-02-18	Show	GitHub Exploit DB Packet Storm

83	8.8	重要 Network	Shenzhen Tenda Technology Co.,Ltd.	FH1202 ファームウェア	Shenzhen Tenda Technology Co.,Ltd. の FH1202 ファームウェアにおける境界外書き込みに関する脆弱性 New	CWE-121 CWE-787	CVE-2024-2987	2025-01-15 14:18	2024-03-27	Show	GitHub Exploit DB Packet Storm

84	7.8	重要 Local	クアルコム	qam8650p ファームウェア qca6698aq ファームウェア SA8155P ファームウェア fastconnect 6900 ファームウェア QCA6595AU ファームウェア qam8775p ファームウェア QCA6574A ファームウェア fastconnec…	複数のクアルコム製品における解放済みメモリの使用に関する脆弱性 New	CWE-416 CWE-416	CVE-2024-21472	2025-01-15 14:18	2024-04-1	Show	GitHub Exploit DB Packet Storm

85	7.7	重要 Network	Synology Inc.	Surveillance Station	Synology Inc. の Surveillance Station における認証の欠如に関する脆弱性 New	CWE-862 認証の欠如	CVE-2024-29228	2025-01-15 14:18	2024-03-28	Show	GitHub Exploit DB Packet Storm

86	7.5	重要 Network	Huawei	EMUI HarmonyOS	Huawei の EMUI および HarmonyOS における脆弱性 New	CWE-672 CWE-noinfo	CVE-2024-56434	2025-01-15 14:18	2024-12-26	Show	GitHub Exploit DB Packet Storm

87	6.5	警告 Network	マイクロソフト	Microsoft SharePoint Server Microsoft SharePoint Enterprise Server	Microsoft SharePoint の情報漏えいの脆弱性 New	CWE-23 CWE-noinfo	CVE-2024-49062	2025-01-15 14:17	2024-12-10	Show	GitHub Exploit DB Packet Storm

88	9.8	緊急 Network	株式会社ワイズ	STEALTHONE D440 STEALTHONE D220 STEALTHONE D340	ワイズ製 STEALTHONE D220/D340/D440 における複数の脆弱性 New	CWE-78 CWE-89	CVE-2025-20016 CVE-2025-20055 CVE-2025-20620	2025-01-15 14:07	2025-01-14	Show	GitHub Exploit DB Packet Storm

89	6.6	警告 Network	オムロン株式会社	マシンオートメーションコントローラ NX シリーズマシンオートメーションコントローラ NJ シリーズ	オムロン製マシンオートメーションコントローラ NJ/NX シリーズにおけるパストラバーサルの脆弱性 New	CWE-22 パス・トラバーサル	CVE-2024-12083	2025-01-15 14:07	2025-01-14	Show	GitHub Exploit DB Packet Storm

90	7.8	重要 Local	マイクロソフト	Microsoft Windows Server 2019 Microsoft Windows 11 Microsoft Windows 10 Microsoft Windows Server 2022 Microsoft Windows Server&…	Windows CNG キー分離サービスの特権の昇格の脆弱性 New	CWE-362 CWE-416	CVE-2024-30031	2025-01-15 14:03	2024-05-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Jan. 15, 2025, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
391	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Eniture Technology Distance Based Shipping Calculator allows Reflected XSS.This issue affects Dis… New	CWE-79 Cross-site Scripting	CVE-2024-56301	2025-01-13 23:15	2025-01-13	Show	GitHub Exploit DB Packet Storm

392	-	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Saleswonder.biz Team WP2LEADS allows Reflected XSS.This issue affects WP2LEADS: from n/a through … New	CWE-79 Cross-site Scripting	CVE-2024-56065	2025-01-13 23:15	2025-01-13	Show	GitHub Exploit DB Packet Storm

393	-	-	-	A vulnerability was found in liujianview gymxmjpa 1.0. It has been rated as critical. Affected by this issue is the function LoosDaoImpl of the file src/main/java/com/liujian/gymxmjpa/controller/Loos… New	-	CVE-2025-0408	2025-01-13 23:15	2025-01-13	Show	GitHub Exploit DB Packet Storm

394	-	-	-	CloudStack users can add and read comments (annotations) on resources they are authorised to access. Due to an access validation issue that affects Apache CloudStack versions from 4.16.0, users who… New	CWE-200 Information Exposure	CVE-2025-22828	2025-01-13 22:16	2025-01-13	Show	GitHub Exploit DB Packet Storm

395	-	-	-	Kernel software installed and running inside a Guest VM may post improper commands to the GPU Firmware to write data outside the Guest's virtualised GPU memory. New	-	CVE-2024-52936	2025-01-13 20:15	2025-01-13	Show	GitHub Exploit DB Packet Storm

396	-	-	-	Kernel software installed and running inside a Guest VM may exploit memory shared with the GPU Firmware to write data outside the Guest's virtualised GPU memory. New	-	CVE-2024-52935	2025-01-13 20:15	2025-01-13	Show	GitHub Exploit DB Packet Storm

397	-	-	-	Software installed and run as a non-privileged user may conduct improper GPU system calls resulting in platform instability and reboots. New	-	CVE-2024-47897	2025-01-13 20:15	2025-01-13	Show	GitHub Exploit DB Packet Storm

398	-	-	-	Kernel software installed and running inside a Guest VM may post improper commands to the GPU Firmware to read data outside the Guest's virtualised GPU memory. New	-	CVE-2024-47895	2025-01-13 20:15	2025-01-13	Show	GitHub Exploit DB Packet Storm

399	-	-	-	Kernel software installed and running inside a Guest VM may post improper commands to the GPU Firmware to read data outside the Guest's virtualised GPU memory. New	-	CVE-2024-47894	2025-01-13 20:15	2025-01-13	Show	GitHub Exploit DB Packet Storm

400	-	-	-	Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2024. N… New	-	CVE-2024-51728	2025-01-13 19:15	2025-01-13	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed