Japan Vulnerability Notes

(COMPLETED) The scheduled system maintenance for JVN iPedia and Vulnerability Report Web Form (2026-02-09)

Past Announcements

Recent Vulnerability Notes

JVNVU#98103854:

Multiple vulnerabilities in Micro Research MR-GM5L-S1 and MR-GM5A-L1 [March 11, 2026 14:00]

JVN#17307628:

Improper file access permission settings in multiple Digital Arts products [March 09, 2026 15:15]

JVN#11676807:

Installer for Qsee Client may insecurely load Dynamic Link Libraries [March 09, 2026 12:00]

JVN#23669411:

django-allauth vulnerable to open redirect [March 05, 2026 12:00]

JVN#63765888:

EC-CUBE vulnerable to multi-factor authentication bypass [March 05, 2026 12:00]

JVNTA#97995322:

Security issues in ESC/POS [March 05, 2026 11:30]

JVN#56544509:

Multiple vulnerabilities in Dell UPS Multi-UPS Management Console (MUMC) [March 04, 2026 12:00]

JVNVU#92256509:

Multiple vulnerabilities in Trend Micro Endpoint security products for enterprises (February 2026) [March 03, 2026 16:00]

JVNVU#99676444:

Canon IJ Scan Utility registers Windows services with unquoted file paths [March 03, 2026 09:30]

JVN#80500630:

IM-LogicDesigner module of intra-mart Accel Platform vulnerable to untrusted data deserialization [March 02, 2026 14:00]

JVNVU#96854657:

Out-of-bounds write vulnerability in Fujitsu BIOS Driver (fbiosdrv.sys) [February 27, 2026 14:15]

JVN#41357120:

Improper file access permission settings in the installers for multiple Soliton Systems products [February 27, 2026 14:00]

JVN#48498976:

Multiple vulnerabilities in the installer of FinalCode Client [February 26, 2026 14:00]

JVN#79096585:

Lanscope Endpoint Manager (On-Premises) vulnerable to path traversal [February 25, 2026 12:00]

JVN#69531868:

Installer for ジョブログ集計/分析ソフトウェア RICOHジョブログ集計ツール may insecurely load Dynamic Link Libraries [February 20, 2026 12:00]

Past Vulnerability Notes

JVNTR-2011-05:: Apache HTTPD 1.3/2.x Range header DoS vulnerability (CVE-2011-3192, JVNVU#405811)

JVNTR-2011-02:: Java Double.parseDouble denial of service (Aka. "2.2250738585072011e-308" issue ) (CVE-2010-4476)

JVNTR-2011-01:: Microsoft Windows graphics engine thumbnail stack buffer overflow (CVE-2010-3970, JVNVU#106516)

JVNTR-2010-26:: Apple Quicktime Updates for Multiple Vulnerabilities (CVE-2010-1818, JVNVU#997815)

JVNTR-2010-25:: Adobe Flash Vulnerabilities (CVE-2010-2884, TA10-263A)

JVN provided by
JPCERT/CC
IPA

Related Associations
JEITA
JISA
CSAJ
JNSA

Partners
CERT/CC
CPNI