Enhancing information security

Vulnerabilities:Japan Vulnerability Notes (JVN)

JVN iPedia Registration Status

 The summary of the vulnerability information registered to the Japanese version of JVN iPedia during the 1st quarter of 2025 (January 1 to March 31, 2025) is shown in the graph below. The total number of vulnerabilities stored in JVN iPedia is 232,533 (Figure 1-1).

  • Figure 1-1.Quarterly Changes in Number of Registered Vulnerabilities

Quarterly Reports

May 21, 2025

Feb 19, 2025

Nov 20, 2024

Aug 21, 2024

May 22, 2024

Feb 21, 2024

Nov 22, 2023

Aug 23, 2023

May 24, 2023

Feb 22, 2023

Nov 22, 2022

Aug 24, 2022

May 25, 2022

Feb 16, 2022

Nov 24, 2021

Aug 25, 2021

May 26, 2021

Feb 17, 2021

Nov 25, 2020

Aug 19, 2020

Jun 17, 2020

Feb 19, 2020

Nov 20, 2019

Aug 27, 2019

May 29, 2019

Feb 21, 2019

Nov 6, 2018

Aug 30, 2018

May 25, 2018

What is "Vulnerability Information Portal Site, JVN?"

1.JVN : Providing reliable vulnerability information

Under Information Security Early Warning Partnership, IPA receives private vulnerability reports and JPCERT/CC coordinates with developers to prepare patches or remedies.

JVN provides the information such as:

  • Solution
  • Vulnerability Analysis by JPCERT/CC
  • Vender Notes

Vulnerability information, especially on Open Source Software (OSS), often affects multiple products. In such a case, JVN provides notes from those vendors affected.

  • JVN Home
    JVN Home
  • Vulnerability Report
    Vulnerability Report

2.Chronological Information (Japanese Version) Supports Vulnerability Remediation Process

Records of security events are useful when planning the vulnerability remediation process.

We provide "Status Tracking Notes", the list of relevant events, for some vulnerability information on a trial basis. Records contain exploit code availability, related incidents observed, and availability of fixes.

  • Chronological Information
    Chronological Information

3.RSS Feeds and support tools

We provide JVN updates in RSS (RDF(*1) Site Summary) format. These updates are readily available using an RSS reader. This enables system administrators and integrators to rapidly collect vulnerability information and solutions.

We also provide tools for displaying JVN updates on your website. (This tool requires Adobe Flash 7.0 or higher for a plug-in.)

(*1)RDF:Resource Description Framework

  • Hitachi HIRT(Hitachi Incident Response Team) uses this tool to automatically display JVN updates.
    Hitachi HIRT(Hitachi Incident Response Team) uses this tool to automatically display JVN updates.

4.JVN iPedia Vulnerability Countermeasure Information Database

JVN iPedia is an information database that stores summary and countermeasure information on vulnerabilities in Japanese software and other products posted on JVN.

In the six months following its public release in April 2007, iPedia catalogued 4,100 vulnerabilities (Japanese Version).

JVN iPedia is equipped with search functions(Keyword search, product search, and severity scoring based on CVSS(*2)) and RSS feeds, which provides the accumulated data in a comprehensive manner.

In addition, user can use the CVSS Calculator to calculate the overall CVSS assessment score, by selecting the own Environmental Score Metrics or Temporal Score Metrics.

(*2)CVSS: Common Vulnerability Scoring System

  • Provides vulnerability countermeasure information collected and accumulated every day_1
    Provides vulnerability countermeasure information collected and accumulated every day_1
  • Provides vulnerability countermeasure information collected and accumulated every day_2
    Provides vulnerability countermeasure information collected and accumulated every day_2