Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 20, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 228181 | 2.6 | 注意 | アップル | - | Safari における情報漏えいの脆弱性 |
CWE-Other
その他 |
- | 2013-05-31 12:03 | 2013-05-31 | Show | GitHub Exploit DB Packet Storm |
| 228182 | 7.2 | 危険 | Google LG Electronics |
- | LG Optimus G E973 上の Android 用 LG Hidden Menu における任意のコマンドを実行される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2013-3666 | 2013-05-30 16:39 | 2013-05-23 | Show | GitHub Exploit DB Packet Storm |
| 228183 | 6.8 | 警告 | IBM | - | UNIX 用の IBM Sterling Connect:Direct におけるファイルシステムの読み取り権限および書き込み権限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2013-2989 | 2013-05-30 16:37 | 2013-05-14 | Show | GitHub Exploit DB Packet Storm |
| 228184 | 4.3 | 警告 | IBM | - | IBM Tivoli Monitoring の Tivoli Enterprise Portal browser クライアントにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-0576 | 2013-05-30 16:36 | 2013-05-17 | Show | GitHub Exploit DB Packet Storm |
| 228185 | 4.3 | 警告 | IBM | - | IBM WebSphere DataPower SOA アプライアンスにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-0499 | 2013-05-30 16:34 | 2013-05-17 | Show | GitHub Exploit DB Packet Storm |
| 228186 | 7.2 | 危険 | レッドハット | - | Red Hat livecd-tools における権限を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2013-2069 | 2013-05-30 14:07 | 2013-05-23 | Show | GitHub Exploit DB Packet Storm |
| 228187 | 4.9 | 警告 | マイクロソフト | - | Microsoft Windows の win32k.sys の EPATHOBJ::bFlatten 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2013-3661 | 2013-05-29 16:54 | 2013-05-17 | Show | GitHub Exploit DB Packet Storm |
| 228188 | 5 | 警告 | IBM | - | IBM InfoSphere Optim Data Growth for Oracle E-Business Suite における重要な情報を取得される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2013-2959 | 2013-05-29 16:37 | 2013-05-13 | Show | GitHub Exploit DB Packet Storm |
| 228189 | 3.5 | 注意 | IBM | - | IBM InfoSphere Optim Data Growth for Oracle E-Business Suite におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-2957 | 2013-05-29 16:37 | 2013-05-13 | Show | GitHub Exploit DB Packet Storm |
| 228190 | 7.5 | 危険 | IBM | - | IBM InfoSphere Optim Data Growth for Oracle E-Business Suite における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2013-2956 | 2013-05-29 16:36 | 2013-05-13 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 20, 2026, 4:01 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 193901 | 7.8 |
HIGH
Local |
qualcomm |
apq8017_firmware apq8053_firmware aqt1000_firmware msm8917_firmware msm8953_firmware qca6390_firmware qca6391_firmware qca6420_firmware qca6426_firmware qca6430_firmware
Possible stack overflow due to improper validation of camera name length before copying the name in VR Service in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Indu…
|
CWE-787
|
Out-of-bounds Write
CVE-2021-30256
|
2024-11-21 15:03 |
2021-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 193902 | 6.1 |
MEDIUM
Network |
kindsoft | kindeditor | Cross Site Scripting (XSS) vulnerability exists in KindEditor (Chinese versions) 4.1.12, which can be exploited by an attacker to obtain user cookie information. |
CWE-79
Cross-site Scripting |
CVE-2021-30086 | 2024-11-21 15:03 | 2021-09-29 | Show | GitHub Exploit DB Packet Storm |
| 193903 | 7.8 |
HIGH
Local |
oracle |
linux engineered_systems_utilities |
Vulnerability in Oracle Linux (component: OSwatcher). Supported versions that are affected are 7 and 8. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructur… |
NVD-CWE-noinfo
|
CVE-2021-2464 | 2024-11-21 15:03 | 2021-09-25 | Show | GitHub Exploit DB Packet Storm |
| 193904 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware apq8037_firmware apq8053_firmware apq8084_firmware apq8096au_firmware aqt1000_firmware ar6003_firmware csr6030_firmware<… |
Possible integer and heap overflow due to lack of input command size validation while handling beacon template update command from HLOS in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industr… |
CWE-20
Improper Input Validation |
CVE-2021-30261 | 2024-11-21 15:03 | 2021-09-17 | Show | GitHub Exploit DB Packet Storm |
| 193905 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8064au_firmware apq8076_firmware apq8092_firmware apq8094_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware… |
Possible Integer overflow to buffer overflow issue can occur due to improper validation of input parameters when extscan hostlist configuration command is received in Snapdragon Auto, Snapdragon Comp… |
CWE-20 CWE-190 Improper Input Validation Integer Overflow or Wraparound |
CVE-2021-30260 | 2024-11-21 15:03 | 2021-09-17 | Show | GitHub Exploit DB Packet Storm |
| 193906 | 8.2 |
HIGH
Network |
axiossystems | assyst | Assyst 10 SP7.5 has authenticated XXE leading to SSRF via XML unmarshalling. The application allows users to send JSON or XML data to the server. It was possible to inject malicious XML data through … |
CWE-611
XXE |
CVE-2021-30137 | 2024-11-21 15:03 | 2021-09-15 | Show | GitHub Exploit DB Packet Storm |
| 193907 | 7.8 |
HIGH
Local |
qualcomm |
apq8017_firmware apq8053_firmware aqt1000_firmware ar8031_firmware csra6620_firmware csra6640_firmware csrb31024_firmware fsm10055_firmware fsm10056_firmware mdm9150_firmwa… |
Possible heap overflow due to improper validation of local variable while storing current task information locally in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer… |
CWE-120
Classic Buffer Overflow |
CVE-2021-30295 | 2024-11-21 15:03 | 2021-09-9 | Show | GitHub Exploit DB Packet Storm |
| 193908 | 5.5 |
MEDIUM
Local |
qualcomm |
qca6174a_firmware qca6574_firmware qca6574a_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware qca9377_firmware qcm6490_firmware qcs6490_firmware sa6145p_firmw… |
Potential null pointer dereference in KGSL GPU auxiliary command due to improper validation of user input in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile |
CWE-476
NULL Pointer Dereference |
CVE-2021-30294 | 2024-11-21 15:03 | 2021-09-9 | Show | GitHub Exploit DB Packet Storm |
| 193909 | 7.0 |
HIGH
Local |
qualcomm |
qca6174a_firmware qca6574_firmware qca6574a_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware qca9377_firmware qcm6490_firmware qcs6490_firmware sa6145p_firmw… |
Possible null pointer dereference due to race condition between timeline fence signal and time line fence destroy in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mo… |
CWE-476 CWE-367 NULL Pointer Dereference Time-of-check Time-of-use (TOCTOU) Race Condition |
CVE-2021-30290 | 2024-11-21 15:03 | 2021-09-9 | Show | GitHub Exploit DB Packet Storm |
| 193910 | 8.6 |
HIGH
Local |
amazon | kindle_firmware | Amazon Kindle e-reader prior to and including version 5.13.4 improperly manages privileges, allowing the framework user to elevate privileges to root. |
CWE-269
Improper Privilege Management |
CVE-2021-30355 | 2024-11-21 15:03 | 2021-09-2 | Show | GitHub Exploit DB Packet Storm |