Japan Vulnerability Notes

The scheduled system maintenance for JVN iPedia and Vulnerability Report Web Form (2026-01-16)

Past Announcements

Recent Vulnerability Notes

JVN#46925341:

web2py vulnerable to open redirect [February 05, 2026 14:00]

JVN#45405689:

Multiple vulnerabilities in Movable Type [February 04, 2026 12:00]

JVN#89992160:

Installer for Roland Cloud Manager may insecurely load Dynamic Link Libraries [February 04, 2026 10:00]

JVN#64883963:

Improper file access permission settings in Mitsubishi Small-Capacity UPS Shutdown Software FREQSHIP-mini for Windows [February 04, 2026 09:15]

JVN#39435597:

Multiple vulnerabilities in ELECOM wireless LAN routers [February 03, 2026 14:15]

JVN#06672778:

Multiple vulnerabilities in ELECOM wireless LAN routers [February 03, 2026 14:15]

JVNVU#99444194:

ELECOM wireless LAN routers vulnerable to OS command injection [February 03, 2026 14:15]

JVN#94012927:

Multiple vulnerabilities in ELECOM wireless LAN products [February 03, 2026 14:00]

JVN#35265756:

Multiple vulnerabilities in Cybozu Garoon [February 02, 2026 14:00]

JVN#04984838:

Multiple Microsoft Office products vulnerable to untrusted search path [February 02, 2026 12:00]

JVN#64861120:

Sonatype Nexus Repository vulnerable to server-side request forgery [February 02, 2026 12:00]

JVN#27202136:

OS command injection in raspap-webgui [February 02, 2026 12:00]

JVN#46722282:

Undocumented "TelnetEnable" functionality of End of Service NETGEAR products [January 30, 2026 12:00]

JVNVU#92878805:

Multiple vulnerabilities in BROTHER MFPs (multifunction printers) [January 29, 2026 10:00]

JVN#03776126:

beat-access for Windows may insecurely load Dynamic Link Libraries [January 27, 2026 12:00]

Past Vulnerability Notes

JVNTR-2011-05:: Apache HTTPD 1.3/2.x Range header DoS vulnerability (CVE-2011-3192, JVNVU#405811)

JVNTR-2011-02:: Java Double.parseDouble denial of service (Aka. "2.2250738585072011e-308" issue ) (CVE-2010-4476)

JVNTR-2011-01:: Microsoft Windows graphics engine thumbnail stack buffer overflow (CVE-2010-3970, JVNVU#106516)

JVNTR-2010-26:: Apple Quicktime Updates for Multiple Vulnerabilities (CVE-2010-1818, JVNVU#997815)

JVNTR-2010-25:: Adobe Flash Vulnerabilities (CVE-2010-2884, TA10-263A)

JVN provided by
JPCERT/CC
IPA

Related Associations
JEITA
JISA
CSAJ
JNSA

Partners
CERT/CC
CPNI