JVN iPedia

Database Search

Keyword search:	How to use Search
With Synonym:

Vendor:
Product:
Date Public:	/ - /
Date Last Updated:	/ - /
CVSS Severity (CVSSv3):	Critical:(9.0-10.0) High:(7.0-8.9) Medium:(4.0-6.9) Low:(0.1-3.9) None:(0)
CVSS Severity (CVSSv2):	High:(7.0-10.0) Medium:(4.0-6.9) Low:(0.0-3.9)
CWE:	What is CWE?

※「Vendor/Product search」button is available only in the Microsoft Edge(ie mode).

Results 1-99 of 99

ID	Title	CVSSv3	CVSSv2	Date Public	Date Last Updated
JVNDB-2025-000104 (JVN#76719218)	Multiple vulnerabilities in GNU Libmicrohttpd	7.5	-	2025/11/10	2025/11/10
JVNDB-2025-000103 (JVN#13754005)	Use of password hash with insufficient computational effort vulnerability in BUFFALO Wi-Fi router "WSR-1800AX4 series"	4.3	-	2025/11/07	2025/11/07
JVNDB-2025-000102 (JVN#59387134)	CLUSTERPRO X and EXPRESSCLUSTER X vulnerable to OS command injection	9.8	-	2025/11/07	2025/11/07
JVNDB-2025-000101 (JVN#95942191)	GROWI vulnerable to stored cross-site scripting	5.4	-	2025/11/06	2025/11/06
JVNDB-2025-017972 (JVNVU#98191201)	Multiple vulnerabilities in Century Systems FutureNet MA and IP-K series	7.2	-	2025/10/31	2025/11/04
JVNDB-2025-000100 (JVN#92563420)	Multiple Roboticsware products register Windows services with unquoted file paths	6.7	-	2025/11/04	2025/11/04
JVNDB-2025-000098 (JVN#81917433)	Optical Disc Archive Software (for Windows) registers a Windows service with an unquoted file path	6.7	-	2025/11/04	2025/11/04
JVNDB-2025-000099 (JVN#11276793)	Progress Flowmon vulnerable to authenticated OS command injection	7.2	-	2025/11/04	2025/11/04
JVNDB-2025-000096 (JVN#23394606) (Japan Vulnerability Notes JVNTA#91240916)	Installer of WTW EAGLE (for Windows) may insecurely load Dynamic Link Libraries	7.8	-	2025/10/29	2025/10/29
JVNDB-2025-000095 (JVN#00021602)	MZK-DP300N uses hard-coded credentials	8.8	-	2025/10/28	2025/10/28
JVNDB-2025-014793 (JVNVU#96989989)	NIHON KOHDEN Central Monitor CNS-6201 vulnerable to NULL pointer dereference	7.5	-	2025/09/30	2025/10/27
JVNDB-2025-000093 (JVN#20611740)	Multiple stored cross-site scripting vulnerabilities in Pleasanter	6.1	-	2025/10/24	2025/10/24
JVNDB-2025-000084 (JVN#46526244)	GROWI vulnerable to cross-site scripting	6.1	-	2025/10/22	2025/10/22
JVNDB-2025-000091 (JVN#03295012)	I-O DATA NarSuS App registers a Windows service with an unquoted file path	6.7	-	2025/10/22	2025/10/22
JVNDB-2025-000090 (JVN#24333679)	Multiple stored cross-site scripting vulnerabilities in Movable Type	4.8	-	2025/10/22	2025/10/22
JVNDB-2025-000088 (JVN#86318557)	Lanscope Endpoint Manager (On-Premises) vulnerable to improper verification of source of a communication channel	9.8	-	2025/10/20	2025/10/22
JVNDB-2025-000092 (JVN#44266462)	ETERNUS SF vulnerable to incorrect default permissions	8.8	-	2025/10/20	2025/10/20
JVNDB-2025-000089 (JVN#61182380) (Japan Vulnerability Notes JVNTA#91240916)	Installer of AutoDownloader may insecurely load Dynamic Link Libraries	7.8	-	2025/10/17	2025/10/17
JVNDB-2025-000074 (JVN#90757550)	Multiple vulnerabilities in desknet's NEO	6.1	-	2025/10/16	2025/10/16
JVNDB-2025-000076 (JVN#13030751)	Multiple vulnerabilities in ChatLuck	6.1	-	2025/10/16	2025/10/16
JVNDB-2025-000087 (JVN#72648885)	Ruijie Networks RG-EST300 undocumented SSH functionality	7.2	-	2025/10/16	2025/10/16
JVNDB-2025-016124 (JVNVU#96471278)	Buffalo Wi-Fi router WXR9300BE6P series vulnerable to path traversal	7.2	-	2025/10/15	2025/10/16
JVNDB-2025-000085 (JVN#22713803)	Multiple RSUPPORT products may insecurely load Dynamic Link Libraries	7.8	-	2025/10/15	2025/10/15
JVNDB-2025-000086 (JVN#42282226)	Phoenix Contact CHARX SEC-3xxx vulnerable to code injection	8.8	-	2025/10/15	2025/10/15
JVNDB-2025-000083 (JVN#69099112)	BUFFALO NAS Navigator2 registers a Windows service with an unquoted file path	6.7	-	2025/10/10	2025/10/10
JVNDB-2025-015451 (JVNVU#90008453)	Multiple vulnerabilities in FUJI Electric V-SFT	7.8	-	2025/10/08	2025/10/09
JVNDB-2025-000081 (JVN#23423519)	DataSpider Servista improper restriction of XML external entity references	8.2	-	2025/09/29	2025/10/07
JVNDB-2025-000082 (JVN#95806263) (JVN#72748502) (JVNTA#91240916)	The installers of DENSO TEN drive recorder viewer may insecurely load Dynamic Link Libraries	7.8	-	2025/10/06	2025/10/06
JVNDB-2025-015061 (JVNVU#95625951)	Trend Micro Antivirus for Mac vulnerable to Local Privilege Escalation	-	-	2025/10/03	2025/10/06
JVNDB-2025-014967 (JVNVU#97069449)	Multiple vulnerabilities in multiple Keyence products	7.8	-	2025/10/02	2025/10/03
JVNDB-2025-000044 (JVN#09924566)	Denial-of-service (DoS) vulnerabilities in multiple Apache products	5.3	-	2025/06/26	2025/10/01
JVNDB-2025-014642 (JVNVU#93104961)	Multiple vulnerabilities in Canon Printer Drivers for Production Printers, Office/Small Office Multifunction Printers and Laser Printers	5.9	-	2025/09/29	2025/09/30
JVNDB-2025-000066 (JVN#55678602)	Improper file access permission settings in multiple i-FILTER products	7.8	-	2025/08/27	2025/09/29
JVNDB-2025-000077 (JVN#75307484)	RICOH Streamline NX vulnerable to tampering with operation history	3.1	-	2025/09/08	2025/09/24
JVNDB-2025-007519 (JVNVU#90043828)	Multiple vulnerabilities in multiple BROTHER products	9.8	-	2025/06/25	2025/09/22
JVNDB-2025-014105 (JVNVU#93403671)	OMRON SOCIAL SOLUTIONS Uninterruptible Power Supply (UPS) management application registers a Windows service with an unquoted file path	-	-	2025/09/18	2025/09/19
JVNDB-2025-014104 (JVNVU#97490987)	Multiple vulnerabilities in I-O DATA wireless LAN routers	7.2	-	2025/09/17	2025/09/19
JVNDB-2025-014081 (JVNVU#93294882) (JVNVU#90043828)	Multiple Brother and its OEM products with weak initial administrator passwords	-	-	2025/09/17	2025/09/19
JVNDB-2025-000079 (JVN#95938761)	UNIVERGE IX/IX-R/IX-V series routers provided by NEC Corporation vulnerable to cross-site scripting	6.1	-	2025/09/18	2025/09/18
JVNDB-2025-000078 (JVN#84697061)	Century HW RAID Manager registers a Windows service with an unquoted file path	6.7	-	2025/09/17	2025/09/17
JVNDB-2025-000048 (JVN#89109713)	WTW-EAGLE App vulnerable to improper server certificate validation	4.8	-	2025/09/12	2025/09/12
JVNDB-2025-000070 (JVN#47404248)	"Gunosy" App vulnerable to insertion of sensitive information into sent data	4.3	-	2025/09/02	2025/09/09
JVNDB-2025-000072 (JVN#41633999)	Obsidian GitHub Copilot Plugin stores sensitive information in cleartext	6.8	-	2025/09/05	2025/09/05
JVNDB-2025-000073 (JVN#98737186)	RATOC RAID Monitoring Manager for Windows registers a Windows service with an unquoted file path	6.7	-	2025/09/05	2025/09/05
JVNDB-2025-000071 (JVN#35290164)	"Yahoo! Shopping" App for Android fails to restrict custom URL schemes properly	4.3	-	2025/09/05	2025/09/05
JVNDB-2025-000075 (JVN#48739895)	Multiple vulnerabilities in TkEasyGUI	9.8	-	2025/09/05	2025/09/05
JVNDB-2025-000069 (JVN#65839588)	Web Caster V130 vulnerable to cross-site request forgery	3.7	-	2025/09/03	2025/09/03
JVNDB-2025-000068 (JVN#22016482)	Seiko Solutions SkyBridge BASIC MB-A130 vulnerable to OS command injection	9.8	-	2025/09/01	2025/09/01
JVNDB-2025-012659 (JVNVU#99831542)	Denial-of-service (DoS) vulnerability in Konica Minolta bizhub series	4.3	-	2025/08/29	2025/09/01
JVNDB-2025-000067 (JVN#50585992)	Multiple vulnerabilities in multiple iND products	7.2	-	2025/08/29	2025/08/29
JVNDB-2025-000064 (JVN#99577552)	Multiple vulnerabilities in SS1	9.8	-	2025/08/27	2025/08/27
JVNDB-2025-000065 (JVN#69684540)	ScanSnap Manager installers vulnerable to privilege escalation	7.8	-	2025/08/27	2025/08/27
JVNDB-2025-011884 (JVNVU#94286093)	FUJIFILM Healthcare Americas Synapse Mobility vulnerable to Privilege Escalation	4.3	-	2025/08/20	2025/08/25
JVNDB-2025-000063 (JVN#75211379)	Western Digital Kitfox registers a Windows service with an unquoted file path	6.7	-	2025/08/22	2025/08/22
JVNDB-2025-000062 (JVN#72111431)	Multiple vulnerabilities in Group-Office	5.4	-	2025/08/21	2025/08/21
JVNDB-2025-000061 (JVN#76729865)	Multiple vulnerabilities in Movable Type	5.3	-	2025/08/20	2025/08/20
JVNDB-2025-000059 (JVN#89385114)	Seagate Toolkit registers a Windows service with an unquoted file path	6.7	-	2025/08/14	2025/08/19
JVNDB-2025-010854 (JVNVU#92409854)	Trend Micro Endpoint security products for enterprises vulnerable to multiple OS command injection	9.4	-	2025/08/06	2025/08/19
JVNDB-2025-007521 (JVNVU#91819309)	Multiple Brother driver installers for Windows vulnerable to privilege escalation	7.8	-	2025/06/25	2025/08/19
JVNDB-2025-000060 (JVN#46919949)	PgManage vulnerable to injection	-	-	2025/08/18	2025/08/18
JVNDB-2025-000058 (JVN#21048820)	WordPress plugin "Advanced Custom Fields" vulnerable to HTML injection	3.4	-	2025/08/08	2025/08/08
JVNDB-2025-010972 (JVNVU#91363496)	Multiple SEIKO EPSON products use weak initial passwords	7.5	-	2025/08/07	2025/08/08
JVNDB-2025-000057 (JVN#39636188)	Multiple vulnerabilities in Mubit Powered BLUE 870	6.3	-	2025/08/08	2025/08/08
JVNDB-2025-000056 (JVN#16547726)	Multiple vulnerabilities in Sato label printers CL4/6NX Plus and CL4/6NX-J Plus series	9.8	-	2025/08/06	2025/08/06
JVNDB-2025-010603 (JVNVU#93897456)	Out-of-bounds write vulnerability in FUJIFILM Business Innovation MFPs	5.3	-	2025/08/04	2025/08/05
JVNDB-2025-010408 (JVNVU#93412964)	Multiple vulnerabilities in PowerCMS	7.2	-	2025/07/31	2025/08/01
JVNDB-2025-000055 (JVN#66546573)	ZXHN-F660T and ZXHN-F660A use a common credential for all installations	8.8	-	2025/07/31	2025/07/31
JVNDB-2025-000054 (JVN#90566559)	Apache Jena Fuseki vulnerable to path traversal	2.7	-	2025/07/30	2025/07/30
JVNDB-2025-000053 (JVN#59585716)	"SwitchBot" App vulnerable to insertion of sensitive information into log file	5.1	-	2025/07/29	2025/07/29
JVNDB-2025-010056 (JVNVU#97303438)	TP-Link VIGI NVR1104H-4P and VIGI NVR2016H-16MP vulnerable to OS command injection	8.8	-	2025/07/25	2025/07/28
JVNDB-2025-000052 (JVN#39913189)	TP-Link Archer C1200 vulnerable to clickjacking	4.3	-	2025/07/24	2025/07/24
JVNDB-2025-000051 (JVN#21177718)	Real-time Bus Tracking System vulnerable to improper validation of specified quantity in input	4.3	-	2025/07/23	2025/07/23
JVNDB-2025-009576 (JVNVU#91615135)	Multiple vulnerabilities in ELECOM wireless LAN routers	7.2	-	2025/07/22	2025/07/23
JVNDB-2025-000050 (JVN#07825095)	"region PAY" App for Android vulnerable to insertion of sensitive information into log file	2.4	-	2025/07/22	2025/07/22
JVNDB-2025-009150 (JVNVU#96526886)	Security updates for Trend Micro products (June 2025)	-	-	2025/07/16	2025/07/17
JVNDB-2025-000049 (JVN#70666401) (JVN#44419726)	ZWX-2000CSW2-HN and ZWX-2000CS2-HN vulnerable to use of hard-coded credentials	4.5	-	2025/07/16	2025/07/16
JVNDB-2025-008881 (JVNVU#96149970)	Least Privilege Violation Vulnerability in the communications functions of NJ/NX series Machine Automation Controllers	7.0	-	2025/07/14	2025/07/15
JVNDB-2025-008783 (JVNVU#91657555)	Firebox T15 contains an issue with hidden functionality	7.2	-	2025/07/11	2025/07/14
JVNDB-2025-008145 (JVNVU#93543156)	Epson Web Installer for Mac vulnerable to missing authentication for critical function	7.8	-	2025/07/07	2025/07/08
JVNDB-2025-008106 (JVNVU#94011267)	Heap-based buffer overflow vulnerability in V-SFT and TELLUS	7.8	-	2025/07/04	2025/07/07
JVNDB-2025-008105 (JVNVU#94870570)	Windows shortcut following (.LNK) vulnerability in Trend Micro Security for Windows (CVE-2025-52521)	-	-	2025/07/04	2025/07/07
JVNDB-2025-000047 (JVN#88251376)	Multiple vulnerabilities in Nimesa Backup and Recovery	9.8	-	2025/07/07	2025/07/07
JVNDB-2025-007978 (JVNVU#91134474)	Multiple vulnerabilities in Trend Micro Password Manager for Windows (CVE-2025-48443, CVE-2025-52837)	-	-	2025/07/03	2025/07/04
JVNDB-2025-000045 (JVN#89505333)	Multiple vulnerabilities in Active! mail	6.1	-	2025/07/02	2025/07/02
JVNDB-2025-007754 (JVNVU#92266386)	Multiple vulnerabilities in Contec CONPROSYS HMI System (CHS)	6.1	-	2025/07/01	2025/07/02
JVNDB-2025-007607 (JVNVU#93850661)	Pass-Back Attack vulnerability in Konica Minorta bizhub series	6.8	-	2025/06/30	2025/07/01
JVNDB-2025-007595 (JVNVU#95470660)	Multiple vulnerabilities in Web Connection of Konica Minolta MFPs	4.3	-	2025/06/30	2025/07/01
JVNDB-2025-000046 (JVN#24333956)	SLNX Help Documentation of RICOH Streamline NX vulnerable to reflected cross-site scripting	6.1	-	2025/06/30	2025/06/30
JVNDB-2025-007552 (JVNVU#93396297)	Multiple vulnerabilities in TB-eye network recorders and AHD recorders	7.2	-	2025/06/27	2025/06/30
JVNDB-2025-000043 (JVN#92520966)	Multiple vulnerabilities in iroha Board	4.3	-	2025/06/26	2025/06/26
JVNDB-2025-000042 (JVN#21624250)	Inefficient regular expressions in GROWI	4.3	-	2025/06/24	2025/06/24
JVNDB-2025-000041 (JVN#39435597)	Multiple vulnerabilities in ELECOM wireless LAN routers	9.8	-	2025/06/24	2025/06/24
JVNDB-2025-007390 (JVNVU#99381846)	Trend Micro Internet Security and Trend Micro Maximum Security vulnerable to link following local privilege escalation (CVE-2025-49384, CVE-2025-49385)	-	-	2025/06/23	2025/06/24
JVNDB-2025-000040 (JVN#46288336)	KCM3100 vulnerable to authentication bypass using an alternate path or channel	9.8	-	2025/06/18	2025/06/18
JVNDB-2025-000039 (JVN#27937557)	Multiple vulnerabilities in RICOH Streamline NX PC Client	9.8	-	2025/06/13	2025/06/13
JVNDB-2025-000038 (JVN#17860456)	UpdateNavi vulnerable to improper restriction of communication channel to intended endpoints	7.1	-	2025/06/12	2025/06/12
JVNDB-2025-000037 (JVN#10964289)	Multiple surveillance cameras provided by i-PRO Co., Ltd. vulnerable to cross-site request forgery	4.3	-	2025/06/06	2025/06/06
JVNDB-2025-000036 (JVN#37075430)	TimeWorks vulnerable to path traversal	5.3	-	2025/06/03	2025/06/03
JVNDB-2025-000035 (JVN#05562338)	Improper file access permission settings in PC Time Tracer	7.3	-	2025/06/03	2025/06/03

Results 1-99 of 99