Enhancing information security
Vulnerabilities:Japan Vulnerability Notes (JVN)
JVN iPedia Registration Status
The summary of the vulnerability information registered to the Japanese version of JVN iPedia during the 2nd quarter of 2024 (April 1 to June 30, 2024) is shown in the table below.
The total number of vulnerabilities stored in JVN iPedia is 208,034 (Figure 1-1).
Quarterly Reports
| Aug 21, 2024 |
|
|---|---|
| May 22, 2024 |
|
| Feb 21, 2024 |
|
| Nov 22, 2023 |
|
| Aug 23, 2023 |
|
| May 24, 2023 |
|
| Feb 22, 2023 |
|
| Nov 22, 2022 |
|
| Aug 24, 2022 |
|
| May 25, 2022 |
|
| Feb 16, 2022 |
|
| Nov 24, 2021 |
|
| Aug 25, 2021 |
|
| May 26, 2021 |
|
| Feb 17, 2021 |
|
| Nov 25, 2020 |
|
| Aug 19, 2020 |
|
| Jun 17, 2020 |
|
| Feb 19, 2020 |
|
| Nov 20, 2019 |
|
| Aug 27, 2019 |
|
| May 29, 2019 |
|
| Feb 21, 2019 |
|
| Nov 6, 2018 |
|
| Aug 30, 2018 |
|
| May 25, 2018 |
What is "Vulnerability Information Portal Site, JVN?"
1.JVN : Providing reliable vulnerability information
Under Information Security Early Warning Partnership, IPA receives private vulnerability reports and JPCERT/CC coordinates with developers to prepare patches or remedies.
JVN provides the information such as:
- Solution
- Vulnerability Analysis by JPCERT/CC
- Vender Notes
Vulnerability information, especially on Open Source Software (OSS), often affects multiple products. In such a case, JVN provides notes from those vendors affected.
-
JVN Home -
Vulnerability Report
2.Chronological Information (Japanese Version) Supports Vulnerability Remediation Process
Records of security events are useful when planning the vulnerability remediation process.
We provide "Status Tracking Notes", the list of relevant events, for some vulnerability information on a trial basis. Records contain exploit code availability, related incidents observed, and availability of fixes.
-
Chronological Information
3.RSS Feeds and support tools
We provide JVN updates in RSS (RDF(*1) Site Summary) format. These updates are readily available using an RSS reader. This enables system administrators and integrators to rapidly collect vulnerability information and solutions.
We also provide tools for displaying JVN updates on your website. (This tool requires Adobe Flash 7.0 or higher for a plug-in.)
(*1)RDF:Resource Description Framework
-
Hitachi HIRT(Hitachi Incident Response Team) uses this tool to automatically display JVN updates.
4.JVN iPedia Vulnerability Countermeasure Information Database
JVN iPedia is an information database that stores summary and countermeasure information on vulnerabilities in Japanese software and other products posted on JVN.
In the six months following its public release in April 2007, iPedia catalogued 4,100 vulnerabilities (Japanese Version).
JVN iPedia is equipped with search functions(Keyword search, product search, and severity scoring based on CVSS(*2)) and RSS feeds, which provides the accumulated data in a comprehensive manner.
In addition, user can use the CVSS Calculator to calculate the overall CVSS assessment score, by selecting the own Environmental Score Metrics or Temporal Score Metrics.
(*2)CVSS: Common Vulnerability Scoring System
-
Provides vulnerability countermeasure information collected and accumulated every day_1 -
Provides vulnerability countermeasure information collected and accumulated every day_2