Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 21, 2026, 4 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 224811 | 2.1 | 注意 | OpenStack | - | 複数の OpenStack 製品の keystone/middleware/auth_token.py におけるサーバを偽装される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2013-2030 | 2014-01-6 17:01 | 2013-05-9 | Show | GitHub Exploit DB Packet Storm |
| 224812 | 6.1 | 警告 | HOT | - | HOT HOTBOX Router のソフトウェアの goform/login におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2013-5220 | 2014-01-6 16:56 | 2013-09-9 | Show | GitHub Exploit DB Packet Storm |
| 224813 | 3.3 | 注意 | HOT | - | HOT HOTBOX Router のソフトウェアにおけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2013-5219 | 2014-01-6 16:55 | 2013-09-9 | Show | GitHub Exploit DB Packet Storm |
| 224814 | 2.9 | 注意 | HOT | - | HOT HOTBOX Router のソフトウェアにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-5218 | 2014-01-6 16:54 | 2013-09-9 | Show | GitHub Exploit DB Packet Storm |
| 224815 | 5.4 | 警告 | HOT | - | HOT HOTBOX Router のソフトウェアの goform/wlanBasicSecurity におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2013-5039 | 2014-01-6 16:53 | 2013-09-9 | Show | GitHub Exploit DB Packet Storm |
| 224816 | 5.8 | 警告 | HOT | - | HOT HOTBOX Router のソフトウェアにおける認証を回避される脆弱性 |
CWE-287
不適切な認証 |
CVE-2013-5038 | 2014-01-6 16:52 | 2013-09-9 | Show | GitHub Exploit DB Packet Storm |
| 224817 | 3.3 | 注意 | HOT | - | HOT HOTBOX Router のソフトウェアにおける事前共有鍵を取得される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2013-5037 | 2014-01-6 16:51 | 2013-09-9 | Show | GitHub Exploit DB Packet Storm |
| 224818 | 4.3 | 警告 | ヒューレット・パッカード | - | HP Service Manager WebTier および Windows Client におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-6198 | 2014-01-6 16:34 | 2013-12-19 | Show | GitHub Exploit DB Packet Storm |
| 224819 | 5.2 | 警告 | ヒューレット・パッカード | - | HP Service Manager WebTier および Windows Client における任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2013-6197 | 2014-01-6 16:34 | 2013-12-19 | Show | GitHub Exploit DB Packet Storm |
| 224820 | 4.3 | 警告 | Novell | - | Novell Identity Manager 用 Roles Based Provisioning Module におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-1096 | 2014-01-6 16:33 | 2013-11-17 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 21, 2026, 4:01 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 201621 | 9.8 |
CRITICAL
Network |
sonicwall |
sma_200_firmware sma_210_firmware sma_410_firmware sma_400_firmware sma_500v_firmware |
An unauthenticated remote attacker can use SMA 100 as an unintended proxy or intermediary undetectable proxy to bypass firewall rules. This vulnerability affected SMA 200, 210, 400, 410 and 500v appl… |
NVD-CWE-Other
|
CVE-2021-20042 | 2024-11-21 14:45 | 2021-12-8 | Show | GitHub Exploit DB Packet Storm |
| 201622 | 7.5 |
HIGH
Network |
sonicwall |
sma_200_firmware sma_210_firmware sma_410_firmware sma_400_firmware sma_500v_firmware |
An unauthenticated and remote adversary can consume all of the device's CPU due to crafted HTTP requests sent to SMA100 /fileshare/sonicfiles/sonicfiles resulting in a loop with unreachable exit cond… |
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop') |
CVE-2021-20041 | 2024-11-21 14:45 | 2021-12-8 | Show | GitHub Exploit DB Packet Storm |
| 201623 | 7.5 |
HIGH
Network |
sonicwall |
sma_200_firmware sma_210_firmware sma_410_firmware sma_400_firmware sma_500v_firmware |
A relative path traversal vulnerability in the SMA100 upload funtion allows a remote unauthenticated attacker to upload crafted web pages or files as a 'nobody' user. This vulnerability affected SMA … |
CWE-22
Path Traversal |
CVE-2021-20040 | 2024-11-21 14:45 | 2021-12-8 | Show | GitHub Exploit DB Packet Storm |
| 201624 | 8.8 |
HIGH
Network |
sonicwall |
sma_200_firmware sma_210_firmware sma_410_firmware sma_400_firmware sma_500v_firmware |
Improper neutralization of special elements in the SMA100 management interface '/cgi-bin/viewcert' POST http method allows a remote authenticated attacker to inject arbitrary commands as a 'nobody' u… |
CWE-78
OS Command |
CVE-2021-20039 | 2024-11-21 14:45 | 2021-12-8 | Show | GitHub Exploit DB Packet Storm |
| 201625 | 9.8 |
CRITICAL
Network |
sonicwall |
sma_200_firmware sma_210_firmware sma_410_firmware sma_400_firmware sma_500v_firmware |
A Stack-based buffer overflow vulnerability in SMA100 Apache httpd server's mod_cgi module environment variables allows a remote unauthenticated attacker to potentially execute code as a 'nobody' use… |
CWE-787
Out-of-bounds Write |
CVE-2021-20038 | 2024-11-21 14:45 | 2021-12-8 | Show | GitHub Exploit DB Packet Storm |
| 201626 | 7.5 |
HIGH
Network |
qualcomm |
ar8035_firmware qca6390_firmware qca6391_firmware qca6421_firmware qca6426_firmware qca6431_firmware qca6436_firmware qca6574a_firmware qca6574au_firmware qca6595au_firmwar… |
Possible denial of service scenario due to improper input validation of received NAS OTA message in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon I… |
CWE-617
Reachable Assertion |
CVE-2021-1982 | 2024-11-21 14:45 | 2021-11-12 | Show | GitHub Exploit DB Packet Storm |
| 201627 | 9.1 |
CRITICAL
Network |
qualcomm |
apq8017_firmware ar8035_firmware msm8917_firmware qca6390_firmware qca6391_firmware qca6421_firmware qca6426_firmware qca6431_firmware qca6436_firmware qca6574a_firmware
Possible buffer over read due to improper IE size check of Bearer capability IE in MT setup request from network in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer I…
|
CWE-125
|
Out-of-bounds Read
CVE-2021-1981
|
2024-11-21 14:45 |
2021-11-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 201628 | 7.8 |
HIGH
Local |
qualcomm |
aqt1000_firmware ar8035_firmware csrb31024_firmware fsm10055_firmware fsm10056_firmware mdm9150_firmware mdm9250_firmware mdm9650_firmware qca6174a_firmware qca6310_firmwar… |
Possible buffer overflow due to improper validation of FTM command payload in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdra… |
CWE-787
Out-of-bounds Write |
CVE-2021-1979 | 2024-11-21 14:45 | 2021-11-12 | Show | GitHub Exploit DB Packet Storm |
| 201629 | 7.0 |
HIGH
Local |
qualcomm |
aqt1000_firmware qca6390_firmware qca6391_firmware qca6420_firmware qca6421_firmware qca6426_firmware qca6430_firmware qca6431_firmware qca6436_firmware qca6574au_firmware<… |
Possible memory corruption due to Improper handling of hypervisor unmap operations for concurrent memory operations in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consume… |
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition |
CVE-2021-1921 | 2024-11-21 14:45 | 2021-11-12 | Show | GitHub Exploit DB Packet Storm |
| 201630 | 7.8 |
HIGH
Local |
qualcomm |
aqt1000_firmware ar8035_firmware csrb31024_firmware qca6174a_firmware qca6390_firmware qca6391_firmware qca6420_firmware qca6421_firmware qca6426_firmware qca6430_firmware<… |
Possible integer overflow can occur due to improper length check while calculating count and grace period in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, S… |
CWE-190
Integer Overflow or Wraparound |
CVE-2021-1912 | 2024-11-21 14:45 | 2021-11-12 | Show | GitHub Exploit DB Packet Storm |