Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":Feb. 3, 2025, 1:14 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 209131 | 6.8 | 警告 | サイバートラスト株式会社 FreeType Project ターボリナックス レッドハット |
- | FreeType の ftmulti.c におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-2541 | 2010-10-19 15:20 | 2010-08-6 | Show | GitHub Exploit DB Packet Storm |
| 209132 | 7.5 | 危険 | The PHP Group アップル ターボリナックス |
- | PHP の SplObjectStorage における重要な情報を取得される脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2010-2225 | 2010-10-19 15:20 | 2010-06-24 | Show | GitHub Exploit DB Packet Storm |
| 209133 | 2.1 | 注意 | The PHP Group サイバートラスト株式会社 ターボリナックス レッドハット |
- | PHP における同じ Web サーバ上でホストされた別サイトの振る舞いを変更される脆弱性 |
CWE-134
書式文字列の問題 |
CVE-2009-0754 | 2010-10-19 15:17 | 2009-03-3 | Show | GitHub Exploit DB Packet Storm |
| 209134 | 5 | 警告 | The PHP Group アップル ターボリナックス レッドハット |
- | PHP の JSON_parser 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2009-1271 | 2010-10-19 15:16 | 2009-04-8 | Show | GitHub Exploit DB Packet Storm |
| 209135 | 7.5 | 危険 | アップル サイバートラスト株式会社 ターボリナックス サン・マイクロシステムズ レッドハット |
- | FreeType2 における一つずれエラーの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2008-1808 | 2010-10-19 15:15 | 2008-06-17 | Show | GitHub Exploit DB Packet Storm |
| 209136 | 7.5 | 危険 | アップル サイバートラスト株式会社 ターボリナックス サン・マイクロシステムズ レッドハット |
- | FreeType2 におけるメモリ破壊の脆弱性 |
CWE-189
数値処理の問題 |
CVE-2008-1807 | 2010-10-19 15:15 | 2008-06-17 | Show | GitHub Exploit DB Packet Storm |
| 209137 | 7.5 | 危険 | アップル サイバートラスト株式会社 ターボリナックス サン・マイクロシステムズ レッドハット |
- | FreeType2 におけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2008-1806 | 2010-10-19 15:15 | 2008-06-17 | Show | GitHub Exploit DB Packet Storm |
| 209138 | 2.6 | 注意 | The PHP Group サイバートラスト株式会社 ターボリナックス レッドハット |
- | PHP におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-5814 | 2010-10-19 15:14 | 2008-12-19 | Show | GitHub Exploit DB Packet Storm |
| 209139 | 9.3 | 危険 | - | Google Chrome の Gears プラグインにおける任意のコードを実行される脆弱性 |
CWE-Other
その他 |
CVE-2009-3932 | 2010-10-19 15:02 | 2009-11-5 | Show | GitHub Exploit DB Packet Storm | |
| 209140 | 4.3 | 警告 | - | Google Chrome の src/webkit/glue/webframeloaderclient_impl.cc におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2009-3934 | 2010-10-19 15:02 | 2009-11-5 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:Feb. 13, 2025, 4:12 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 4241 | - | - | - | Parsing a JavaScript module as JSON could under some circumstances cause cross-compartment access, which may result in a use-after-free. This vulnerability affects Firefox < 134, Firefox ESR < 128.6,… | - | CVE-2025-0240 | 2025-01-14 07:15 | 2025-01-8 | Show | GitHub Exploit DB Packet Storm | |
| 4242 | - | - | - | When using Alt-Svc, ALPN did not properly validate certificates when the original server is redirecting to an insecure site. This vulnerability affects Firefox < 134, Firefox ESR < 128.6, Thunderbird… | - | CVE-2025-0239 | 2025-01-14 07:15 | 2025-01-8 | Show | GitHub Exploit DB Packet Storm | |
| 4243 | - | - | - | Assuming a controlled failed memory allocation, an attacker could have caused a use-after-free, leading to a potentially exploitable crash. This vulnerability affects Firefox < 134, Firefox ESR < 128… | - | CVE-2025-0238 | 2025-01-14 07:15 | 2025-01-8 | Show | GitHub Exploit DB Packet Storm | |
| 4244 | - | - | - | The WebChannel API, which is used to transport various information across processes, did not check the sending principal but rather accepted the principal being sent. This could have led to privilege… | - | CVE-2025-0237 | 2025-01-14 07:15 | 2025-01-8 | Show | GitHub Exploit DB Packet Storm | |
| 4245 | 7.8 |
HIGH
Local |
qualcomm |
fastconnect_6900_firmware fastconnect_7800_firmware sc8380xp_firmware wcd9380_firmware wcd9385_firmware wsa8840_firmware wsa8845_firmware wsa8845h_firmware |
Memory corruption occurs when invoking any IOCTL-calling application that executes all MCDM driver IOCTL calls. |
CWE-129
Improper Validation of Array Index |
CVE-2024-45550 | 2025-01-14 06:51 | 2025-01-6 | Show | GitHub Exploit DB Packet Storm |
| 4246 | 7.8 |
HIGH
Local |
qualcomm |
msm8996au_firmware qam8255p_firmware qam8295p_firmware qam8620p_firmware qam8650p_firmware qam8775p_firmware qamsrv1h_firmware qamsrv1m_firmware qca6564a_firmware qca6564au… |
Memory corruption can occur if an already verified IFS2 image is overwritten, bypassing boot verification. This allows unauthorized programs to be injected into security-sensitive images, enabling th… |
CWE-190
Integer Overflow or Wraparound |
CVE-2024-45555 | 2025-01-14 06:51 | 2025-01-6 | Show | GitHub Exploit DB Packet Storm |
| 4247 | 7.8 |
HIGH
Local |
qualcomm |
fastconnect_6900_firmware fastconnect_7800_firmware qcc2073_firmware qcc2076_firmware sc8380xp_firmware wcd9380_firmware wcd9385_firmware wsa8840_firmware wsa8845_firmware … |
Memory corruption while processing FIPS encryption or decryption validation functionality IOCTL call. |
CWE-125
Out-of-bounds Read |
CVE-2024-45548 | 2025-01-14 06:51 | 2025-01-6 | Show | GitHub Exploit DB Packet Storm |
| 4248 | 7.8 |
HIGH
Local |
qualcomm |
fastconnect_6900_firmware fastconnect_7800_firmware qcc2073_firmware qcc2076_firmware sc8380xp_firmware wcd9380_firmware wcd9385_firmware wsa8840_firmware wsa8845_firmware … |
Memory corruption while processing IOCTL call invoked from user-space to verify non extension FIPS encryption and decryption functionality. |
CWE-120
Classic Buffer Overflow |
CVE-2024-45547 | 2025-01-14 06:51 | 2025-01-6 | Show | GitHub Exploit DB Packet Storm |
| 4249 | 7.8 |
HIGH
Local |
qualcomm |
ar8035_firmware fastconnect_6200_firmware fastconnect_6700_firmware fastconnect_6900_firmware fastconnect_7800_firmware flight_rb5_5g_firmware qam8255p_firmware qam8295p_firmware… |
Memory corruption can occur when process-specific maps are added to the global list. If a map is removed from the global list while another thread is using it for a process-specific task, issues may … |
CWE-416
Use After Free |
CVE-2024-45553 | 2025-01-14 06:51 | 2025-01-6 | Show | GitHub Exploit DB Packet Storm |
| 4250 | 7.8 |
HIGH
Local |
qualcomm |
fastconnect_6900_firmware fastconnect_7800_firmware qcc2073_firmware qcc2076_firmware sc8380xp_firmware wcd9380_firmware wcd9385_firmware wsa8840_firmware wsa8845_firmware … |
Memory corruption while processing FIPS encryption or decryption IOCTL call invoked from user-space. |
CWE-125
Out-of-bounds Read |
CVE-2024-45546 | 2025-01-14 06:50 | 2025-01-6 | Show | GitHub Exploit DB Packet Storm |