Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
941 7.8 重要
Local
マイクロソフト Microsoft 365 Apps
Microsoft Office
Microsoft Office のセキュリティ機能のバイパスの脆弱性 CWE-693
CWE-noinfo
CVE-2025-21346 2025-01-22 18:14 2025-01-14 Show GitHub Exploit DB Packet Storm
942 9.8 緊急
Network
The Biosig Project
Fedora Project
libbiosig
Fedora
The Biosig Project の libbiosig 等複数ベンダの製品における境界外書き込みに関する脆弱性 CWE-122
CWE-787
CVE-2024-21795 2025-01-22 18:12 2024-02-20 Show GitHub Exploit DB Packet Storm
943 7.5 重要
Network
マイクロソフト Microsoft Windows 11 Windows Web Threat Defense ユーザー サービスの情報漏えいの脆弱性 CWE-269
CWE-noinfo
CVE-2025-21343 2025-01-22 18:11 2025-01-14 Show GitHub Exploit DB Packet Storm
944 8.8 重要
Network
マイクロソフト Microsoft Windows 11
Microsoft Windows Server 2022
Microsoft Windows Server 2012
Microsoft Windows 10
Microsoft Windows Server&…
Windows テレフォニー サービスのリモートでコードが実行される脆弱性 CWE-122
CWE-noinfo
CVE-2025-21339 2025-01-22 18:06 2025-01-14 Show GitHub Exploit DB Packet Storm
945 7.8 重要
Local
Linux Linux Kernel Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用
CVE-2024-57896 2025-01-22 18:03 2024-12-6 Show GitHub Exploit DB Packet Storm
946 7.8 重要
Local
Linux Linux Kernel Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用
CVE-2024-57892 2025-01-22 18:00 2024-12-30 Show GitHub Exploit DB Packet Storm
947 5.5 警告
Local
Linux Linux Kernel Linux の Linux Kernel における有効期限後のメモリの解放の欠如に関する脆弱性 CWE-401
有効期限後のメモリの解放の欠如
CVE-2024-57841 2025-01-22 17:57 2024-12-23 Show GitHub Exploit DB Packet Storm
948 5.5 警告
Local
Linux Linux Kernel Linux の Linux Kernel における初期化されていないリソースの使用に関する脆弱性 CWE-908
初期化されていないリソースの使用
CVE-2024-57802 2025-01-22 17:54 2024-12-23 Show GitHub Exploit DB Packet Storm
949 8.8 重要
Network
フォーティネット FortiOS フォーティネットの FortiOS における境界外書き込みに関する脆弱性 CWE-121
CWE-787
CVE-2020-12820 2025-01-22 17:44 2020-09-24 Show GitHub Exploit DB Packet Storm
950 6.5 警告
Local
フォーティネット FortiWLC フォーティネットの FortiWLC における初期化されていないポインタのアクセスに関する脆弱性 CWE-824
初期化されていないポインタのアクセス
CVE-2021-26093 2025-01-22 17:44 2021-01-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 25, 2025, 4:06 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
275821 - cisco cli
cbos
ids
ios
ios_xr
Unspecified vulnerability in Cisco IOS 12.0 through 12.4 allows context-dependent attackers to cause a denial of service (device restart and BGP routing table rebuild) via certain regular expressions… NVD-CWE-noinfo
CWE-20
 Improper Input Validation 
CVE-2007-4430 2011-05-18 13:00 2007-08-21 Show GitHub Exploit DB Packet Storm
275822 - aertherwide exiftags Unspecified vulnerability in exiftags before 1.01 has unknown impact and attack vectors, resulting from a "field offset overflow" that triggers an "illegal memory access," a different vulnerability t… NVD-CWE-noinfo
CVE-2007-6354 2011-05-13 13:00 2007-12-19 Show GitHub Exploit DB Packet Storm
275823 - aertherwide exiftags Integer overflow in exiftags before 1.01 has unknown impact and attack vectors, resulting from a "field offset overflow" that triggers an "illegal memory access," a different vulnerability than CVE-2… NVD-CWE-noinfo
CWE-189
Numeric Errors
CVE-2007-6355 2011-05-13 13:00 2007-12-19 Show GitHub Exploit DB Packet Storm
275824 - ibm db2 IBM DB2 UDB 9.1 before Fixpak 4 does not properly manage storage of a list containing authentication information, which might allow attackers to cause a denial of service (instance crash) or trigger … CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2007-5652 2011-05-12 13:00 2007-10-24 Show GitHub Exploit DB Packet Storm
275825 - zeus zeus_web_server Zeus Web Server before 4.3r5 does not use random transaction IDs for DNS requests, which makes it easier for remote attackers to spoof DNS responses. CWE-310
Cryptographic Issues
CVE-2010-0362 2011-05-6 13:00 2010-01-21 Show GitHub Exploit DB Packet Storm
275826 - arco_van_geest goof_fotoboek Directory traversal vulnerability in the Photo Book (goof_fotoboek) extension 1.7.14 and earlier for TYPO3 has unknown impact and remote attack vectors. CWE-22
Path Traversal
CVE-2010-0350 2011-05-2 13:00 2010-01-16 Show GitHub Exploit DB Packet Storm
275827 - typo3 kiddog_mysqldumper Unspecified vulnerability in the kiddog_mysqldumper (kiddog_mysqldumper) extension 0.0.3 and earlier for TYPO3 allows remote attackers to obtain sensitive information via unknown attack vectors. NVD-CWE-noinfo
CVE-2010-0336 2011-04-29 13:00 2010-01-16 Show GitHub Exploit DB Packet Storm
275828 - typo3 dl3_tt_news_alerts SQL injection vulnerability in the tt_news Mail alert (dl3_tt_news_alerts) extension 0.2.0 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. CWE-89
SQL Injection
CVE-2010-0337 2011-04-29 13:00 2010-01-16 Show GitHub Exploit DB Packet Storm
275829 - typo3 vm19_userlinks SQL injection vulnerability in the User Links (vm19_userlinks) extension 0.1.1 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. CWE-89
SQL Injection
CVE-2010-0339 2011-04-29 13:00 2010-01-16 Show GitHub Exploit DB Packet Storm
275830 - typo3 mjseventpro SQL injection vulnerability in the MJS Event Pro (mjseventpro) extension 0.2.1 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. CWE-89
SQL Injection
CVE-2010-0340 2011-04-29 13:00 2010-01-16 Show GitHub Exploit DB Packet Storm