HOME IT Security Measures for Information Security VulnerabilitiesIPA/ISEC：Vulnerabilities：Japan Vulnerability Notes (JVN)

IPA/ISEC：Vulnerabilities：Japan Vulnerability Notes (JVN)

JVN iPedia Registration Status

The summary of the vulnerability information registered to the Japanese version of JVN iPedia during the 3rd quarter of 2022 (July 1 to September 30, 2022) is shown in the table below.
The total number of vulnerabilities stored in JVN iPedia is 148,266 (Figure 1-1).

•JVN iPedia English Version: https://jvndb.jvn.jp/en/

•JVN iPedia Japanese Version: https://jvndb.jvn.jp/

Figure 1-1.Quarterly Changes in Number of Registered Vulnerabilities

Quarterly Reports

3rd Quarter (July – September) of 2022	Nov 22, 2022
2nd Quarter (April – June) of 2022	Aug 24, 2022
1st Quarter (January – March) of 2022	May 25, 2022
4th Quarter (October – December) of 2021	Feb 16, 2022
3rd Quarter (July – September) of 2021	Nov 24, 2021
2nd Quarter (April – June) of 2021	Aug 25, 2021
1st Quarter (January – March) of 2021	May 26, 2021
4th Quarter (October – December) of 2020	Feb 17, 2021
3rd Quarter (July – September) of 2020	Nov 25, 2020
2nd Quarter (April – June) of 2020	Aug 19, 2020
1st Quarter (January – March) of 2020	Jun 17, 2020
4th Quarter (October – December) of 2019	Feb 19, 2020
3rd Quarter (July – September) of 2019	Nov 20, 2019
2nd Quarter (April – June) of 2019	Aug 27, 2019
1st Quarter (January – March) of 2019	May 29, 2019
4th Quarter (October – December) of 2018	Feb 21, 2019
3rd Quarter (July – September) of 2018	Nov 6, 2018
2nd Quarter (April – June) of 2018	Aug 30, 2018
1st Quarter (January – March) of 2018	May 25, 2018
4th Quarter (October – December) of 2017	Feb 23, 2018
3rd Quarter (July – September) of 2017	Nov 30, 2017
2nd Quarter (April – June) of 2017	Aug 28, 2017
1st Quarter (January – March) of 2017	Jun 9, 2017
4th Quarter (October – December) of 2016	Feb 24, 2017
3rd Quarter (July – September) of 2016	Nov 11, 2016
2nd Quarter (April – June) of 2016	Aug 15, 2016
1st Quarter (January – March) of 2016	May 30, 2016
4th Quarter (October – December) of 2015	Feb 26, 2016
3rd Quarter (July – September) of 2015	Nov 13, 2015
2nd Quarter (April – June) of 2015	Aug 21, 2015
1st Quarter (January – March) of 2015	Apr 15, 2015
4th Quarter (October – December) of 2014	Mar 9, 2015
3rd Quarter (July – September) of 2014	Nov 27, 2014
2nd Quarter (April – June) of 2014	Sep 3, 2014
1st Quarter (January – March) of 2014	May 15, 2014
4th Quarter (October – December) of 2013	Feb 14, 2014
3rd Quarter (July – September) of 2013	Nov 8, 2013
2nd Quarter (April – June) of 2013	Aug 9, 2013
1st Quarter (January – March) of 2013	May 27, 2013
4th Quarter (October – December) of 2012	Feb 26, 2013
3rd Quarter (July – September) of 2012	Dec 3, 2012
2nd Quarter (April – June) of 2012	Aug 8, 2012
1st Quarter (January – March) of 2012	May 15, 2012
4th Quarter (October – December) of 2011	Feb 29, 2012
3rd Quarter (July – September) of 2011	Nov 18, 2011
2nd Quarter (April – June) of 2011	Aug 12, 2011
1st Quarter (January – March) of 2011	May 19, 2011
4th Quarter (October – December) of 2010	Feb 14, 2011
3rd Quarter (July – September) of 2010	Nov 9, 2010
2nd Quarter (April – June) of 2010	Aug 6, 2010
1st Quarter (January – March) of 2010	May 10, 2010
4th Quarter (October – December) of 2009	Feb 3, 2010
3rd Quarter (July - September) of 2009	Nov 11, 2009
2nd Quarter (April - June) of 2009	Jul 27, 2009
1st Quarter (January - March) of 2009	May 20, 2009
4th Quarter (October - December) of 2008	Feb 10, 2009
3rd Quarter (July - September) of 2008	Oct 31, 2008
2nd Quarter (April - June) of 2008	Aug 15, 2008

What is "Vulnerability Information Portal Site, JVN?"

1.JVN : Providing reliable vulnerability information

Under Information Security Early Warning Partnership, IPA receives private vulnerability reports and JPCERT/CC coordinates with developers to prepare patches or remedies.

JVN provides the information such as:

Solution
Vulnerability Analysis by JPCERT/CC
Vender Notes

Vulnerability information, especially on Open Source Software (OSS), often affects multiple products. In such a case, JVN provides notes from those vendors affected.

•JVN Home

•Vulnerability Report

2.Chronological Information (Japanese Version)
Supports Vulnerability Remediation Process

Records of security events are useful when planning the vulnerability remediation process.

We provide "Status Tracking Notes", the list of relevant events, for some vulnerability information on a trial basis. Records contain exploit code availability, related incidents observed, and availability of fixes.

•Chronological Information

3.RSS Feeds and support tools

We provide JVN updates in RSS (RDF(*1) Site Summary) format. These updates are readily available using an RSS reader. This enables system administrators and integrators to rapidly collect vulnerability information and solutions.

We also provide tools for displaying JVN updates on your website. (This tool requires Adobe Flash 7.0 or higher for a plug-in.)

(*1)RDF:Resource Description Framework

•Hitachi HIRT(Hitachi Incident Response Team) uses this tool to automatically display JVN updates.

4.JVN iPedia
Vulnerability Countermeasure Information Database

JVN iPedia is an information database that stores summary and countermeasure information on vulnerabilities in Japanese software and other products posted on JVN.

In the six months following its public release in April 2007, iPedia catalogued 4,100 vulnerabilities (Japanese Version).

JVN iPedia is equipped with search functions(Keyword search, product search, and severity scoring based on CVSS(*2)) and RSS feeds, which provides the accumulated data in a comprehensive manner.

In addition, user can use the CVSS Calculator to calculate the overall CVSS assessment score, by selecting the own Environmental Score Metrics or Temporal Score Metrics.

(*2)CVSS: Common Vulnerability Scoring System

•Provides vulnerability countermeasure information collected and accumulated every day.

Top Page

IT Security