You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
|
Update Date":Nov. 19, 2024, 6:01 p.m.
No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
---|---|---|---|---|---|---|---|---|---|---|---|
204271 | 9.3 | 危険 | サン・マイクロシステムズ VMware |
- | Sun Java SE の java.lang パッケージにおける脆弱性 |
CWE-362
競合状態 |
CVE-2009-2724 | 2010-01-14 12:08 | 2009-08-10 | Show | GitHub Exploit DB Packet Storm |
204272 | 10 | 危険 | サン・マイクロシステムズ VMware |
- | Sun Java SE の Provider クラスにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-2721 | 2010-01-14 12:08 | 2009-08-10 | Show | GitHub Exploit DB Packet Storm |
204273 | 5 | 警告 | 有限会社シースリー | - | WebCalenderC3 におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2010-0348 | 2010-01-12 15:01 | 2010-01-12 | Show | GitHub Exploit DB Packet Storm |
204274 | 4.3 | 警告 | 有限会社シースリー | - | WebCalenderC3 におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-0349 | 2010-01-12 15:00 | 2010-01-12 | Show | GitHub Exploit DB Packet Storm |
204275 | 10 | 危険 | サイバートラスト株式会社 XEmacs |
- | XEmacs の glyphs-eimage.c における整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2009-2688 | 2010-01-12 14:48 | 2009-08-5 | Show | GitHub Exploit DB Packet Storm |
204276 | 6.8 | 警告 | IBM | - | IBM WebSphere Application Server (WAS) におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2009-2746 | 2010-01-12 14:48 | 2009-11-13 | Show | GitHub Exploit DB Packet Storm |
204277 | 5 | 警告 | アップル | - | Apple Safari におけるローカル HTML ファイルを読まれる脆弱性 |
CWE-Other
その他 |
CVE-2009-2842 | 2010-01-7 12:09 | 2009-11-11 | Show | GitHub Exploit DB Packet Storm |
204278 | 5.5 | 警告 | シックス・アパート株式会社 | - | Movable Type におけるアクセス制限回避の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
- | 2010-01-6 15:01 | 2010-01-6 | Show | GitHub Exploit DB Packet Storm |
204279 | 9.3 | 危険 | マイクロソフト | - | Microsoft Office Word および Open XML File Format Converter における、任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3135 | 2010-01-6 14:44 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
204280 | 5 | 警告 | トレンドマイクロ 日本電気 Apache Software Foundation 富士通 サイバートラスト株式会社 サン・マイクロシステムズ ヒューレット・パッカード レッドハット |
- | Apache Tomcat の Apache HTTP Server との組合せによるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2007-0450 | 2010-01-6 14:43 | 2007-03-16 | Show | GitHub Exploit DB Packet Storm |
Update Date:Nov. 19, 2024, 4:16 p.m.
No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
---|---|---|---|---|---|---|---|---|---|---|---|
2691 | 6.7 |
MEDIUM
Local |
qualcomm |
wsa8835_firmware wsa8830_firmware wcd9380_firmware wcd9340_firmware snapdragon_x75_5g_modem-rf_system_firmware snapdragon_x72_5g_modem-rf_system_firmware snapdragon_auto_5g_modem-rf… |
Memory corruption while parsing IPC frequency table parameters for LPLH that has size greater than expected size. |
CWE-120
Classic Buffer Overflow |
CVE-2024-33030 | 2024-11-8 05:04 | 2024-11-4 | Show | GitHub Exploit DB Packet Storm |
2692 | 7.5 |
HIGH
Network
huawei
|
harmonyos
|
Information management vulnerability in the Gallery module
Impact: Successful exploitation of this vulnerability may affect service confidentiality.
|
NVD-CWE-noinfo
|
CVE-2024-51523
|
2024-11-8 05:03 |
2024-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2693 | 5.5 |
MEDIUM
Local |
huawei | harmonyos | Vulnerability of improper device information processing in the device management module Impact: Successful exploitation of this vulnerability may affect availability. |
NVD-CWE-noinfo
|
CVE-2024-51522 | 2024-11-8 05:03 | 2024-11-5 | Show | GitHub Exploit DB Packet Storm |
2694 | 5.5 |
MEDIUM
Local |
huawei | harmonyos | Permission control vulnerability in the Wi-Fi module Impact: Successful exploitation of this vulnerability may affect service confidentiality. |
NVD-CWE-noinfo
|
CVE-2024-51524 | 2024-11-8 05:02 | 2024-11-5 | Show | GitHub Exploit DB Packet Storm |
2695 | 6.7 |
MEDIUM
Local |
qualcomm |
wcn3660b_firmware wcn3620_firmware wcd9340_firmware snapdragon_x75_5g_modem-rf_system_firmware snapdragon_x72_5g_modem-rf_system_firmware snapdragon_429_mobile_platform_firmware sdm… |
Memory corruption while processing the update SIM PB records request. |
NVD-CWE-noinfo
|
CVE-2024-33031 | 2024-11-8 05:02 | 2024-11-4 | Show | GitHub Exploit DB Packet Storm |
2696 | 5.5 |
MEDIUM
Local |
huawei | harmonyos | Permission control vulnerability in the clipboard module Impact: Successful exploitation of this vulnerability may affect service confidentiality. |
NVD-CWE-noinfo
|
CVE-2024-51525 | 2024-11-8 05:01 | 2024-11-5 | Show | GitHub Exploit DB Packet Storm |
2697 | 7.0 |
HIGH
Local |
qualcomm |
wsa8845h_firmware wsa8845_firmware wsa8840_firmware wsa8835_firmware wsa8830_firmware wsa8815_firmware wsa8810_firmware wcn3660b_firmware wcn3620_firmware wcd9385_firmware<… |
Memory corruption while handling IOCTL calls in JPEG Encoder driver. |
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition |
CVE-2024-38406 | 2024-11-8 05:01 | 2024-11-4 | Show | GitHub Exploit DB Packet Storm |
2698 | 5.5 |
MEDIUM
Local |
huawei | harmonyos | Permission control vulnerability in the hidebug module Impact: Successful exploitation of this vulnerability may affect service confidentiality. |
NVD-CWE-noinfo
|
CVE-2024-51526 | 2024-11-8 05:00 | 2024-11-5 | Show | GitHub Exploit DB Packet Storm |
2699 | 6.7 |
MEDIUM
Local |
qualcomm |
wsa8835_firmware wsa8832_firmware wsa8830_firmware wsa8815_firmware wsa8810_firmware wcn3988_firmware wcn3980_firmware wcn3950_firmware wcn3680b_firmware wcn3660b_firmware<… |
Memory corruption when the user application modifies the same shared memory asynchronously when kernel is accessing it. |
CWE-129
Improper Validation of Array Index |
CVE-2024-33032 | 2024-11-8 04:59 | 2024-11-4 | Show | GitHub Exploit DB Packet Storm |
2700 | 6.7 |
MEDIUM
Local |
qualcomm |
wsa8845h_firmware wsa8845_firmware wsa8840_firmware wsa8835_firmware wsa8832_firmware wsa8830_firmware wcn7880_firmware wcn6755_firmware wcn6650_firmware wcd9395_firmware | Memory corruption while invoking IOCTL command from user-space, when a user modifies the original packet size of the command after system properties have been already sent to the EVA driver. |
NVD-CWE-Other
|
CVE-2024-23377 | 2024-11-8 04:59 | 2024-11-4 | Show | GitHub Exploit DB Packet Storm |