Japan Vulnerability Notes

(COMPLETED) The scheduled system maintenance for Vulnerability Report Web Form

Past Announcements

Recent Vulnerability Notes

JVNVU#97809354:

Multiple vulnerabilities in FUJI ELECTRIC FRENIC RHC Loader [June 02, 2023 13:00]

JVN#33836375:

"Jiyu Kukan Toku-Toku coupon" App vulnerable to improper server certificate verification [June 01, 2023 14:00]

JVNVU#93372935:

Multiple vulnerabilities in Contec CONPROSYS HMI System (CHS) [May 31, 2023 13:00]

JVN#62111727:

Pleasanter vulnerable to cross-site scripting [May 31, 2023 12:00]

JVN#38222042:

DataSpider Servista uses a hard-coded cryptographic key [May 31, 2023 12:00]

JVN#95981715:

Starlette vulnerable to directory traversal [May 30, 2023 12:00]

JVN#19243534:

ESS REC Agent Server Edition for Linux etc. vulnerable to directory traversal [May 26, 2023 12:00]

JVN#90278893:

Wacom Tablet Driver installer for macOS vulnerable to improper link resolution before file access [May 25, 2023 12:00]

JVNVU#94777298:

Multiple vulnerabilities in Canon Office/Small Office Multifunction Printers, Laser Printers and Inkjet Printers [May 24, 2023 11:00]

JVN#45127776:

Tornado vulnerable to open redirect [May 22, 2023 12:00]

JVN#14778242:

Multiple vulnerabilities in T&D and ESPEC MIC data logger products [May 19, 2023 14:00]

JVNVU#97891206:

Android App "Brother iPrint&Scan" vulnerable to improper access control [May 18, 2023 16:30]

JVN#48687031:

Qrio Smart Lock Q-SL2 vulnerable to authentication bypass by capture-replay [May 18, 2023 12:00]

JVNVU#99551468:

Zuken Elmic KASAGO uses insufficient random values for TCP Initial Sequence Numbers [May 17, 2023 17:00]

JVN#76257155:

Trend Micro Security may insecurely load Dynamic Link Libraries [May 16, 2023 16:30]

Past Vulnerability Notes

JVNTR-2011-05:: Apache HTTPD 1.3/2.x Range header DoS vulnerability (CVE-2011-3192, JVNVU#405811)

JVNTR-2011-02:: Java Double.parseDouble denial of service (Aka. "2.2250738585072011e-308" issue ) (CVE-2010-4476)

JVNTR-2011-01:: Microsoft Windows graphics engine thumbnail stack buffer overflow (CVE-2010-3970, JVNVU#106516)

JVNTR-2010-26:: Apple Quicktime Updates for Multiple Vulnerabilities (CVE-2010-1818, JVNVU#997815)

JVNTR-2010-25:: Adobe Flash Vulnerabilities (CVE-2010-2884, TA10-263A)

JVN provided by
JPCERT/CC
IPA

Related Associations
JEITA
JISA
CSAJ
JNSA

Partners
CERT/CC
CPNI