The summary of the vulnerability information registered to the Japanese version of JVN iPedia during the 2nd quarter of 2023 (April 1 to June 30, 2023) is shown in the table below.
The total number of vulnerabilities stored in JVN iPedia is 158,560 (Figure 1-1).
What is "Vulnerability Information Portal Site, JVN?"
1.JVN : Providing reliable vulnerability information
Under Information Security Early Warning Partnership, IPA receives private vulnerability reports and JPCERT/CC coordinates with developers to prepare patches or remedies.
JVN provides the information such as:
Vulnerability Analysis by JPCERT/CC
Vulnerability information, especially on Open Source Software (OSS), often affects multiple products. In such a case, JVN provides notes from those vendors affected.
2.Chronological Information (Japanese Version) Supports Vulnerability Remediation Process
Records of security events are useful when planning the vulnerability remediation process.
We provide "Status Tracking Notes", the list of relevant events, for some vulnerability information on a trial basis. Records contain exploit code availability, related incidents observed, and availability of fixes.
3.RSS Feeds and support tools
We provide JVN updates in RSS (RDF(*1) Site Summary) format. These updates are readily available using an RSS reader. This enables system administrators and integrators to rapidly collect vulnerability information and solutions.
We also provide tools for displaying JVN updates on your website. (This tool requires Adobe Flash 7.0 or higher for a plug-in.)
(*1)RDF:Resource Description Framework
4.JVN iPedia Vulnerability Countermeasure Information Database
JVN iPedia is an information database that stores summary and countermeasure information on vulnerabilities in Japanese software and other products posted on JVN.
In the six months following its public release in April 2007, iPedia catalogued 4,100 vulnerabilities (Japanese Version).
JVN iPedia is equipped with search functions(Keyword search, product search, and severity scoring based on CVSS(*2)) and RSS feeds, which provides the accumulated data in a comprehensive manner.
In addition, user can use the CVSS Calculator to calculate the overall CVSS assessment score, by selecting the own Environmental Score Metrics or Temporal Score Metrics.