Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 17, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 228311 | 6.8 | 警告 | アップル |
- | 複数の製品で使用される Webkit におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2012-2857 | 2013-05-20 14:02 | 2012-07-31 | Show | GitHub Exploit DB Packet Storm |
| 228312 | 7.5 | 危険 | アップル |
- | 複数の製品で使用される Webkit におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2012-2824 | 2013-05-20 13:54 | 2012-06-26 | Show | GitHub Exploit DB Packet Storm |
| 228313 | 4.3 | 警告 | web2py | - | web2py のソーシャルブックマークウィジェットにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-2311 | 2013-05-20 12:00 | 2013-05-20 | Show | GitHub Exploit DB Packet Storm |
| 228314 | 4.3 | 警告 | Rack | - | Rack の rack/file.rb における任意のファイルにアクセスされる脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2013-0262 | 2013-05-20 10:35 | 2013-02-7 | Show | GitHub Exploit DB Packet Storm |
| 228315 | 3.6 | 注意 | Digia | - | Qt の QSharedMemory クラスにおける重要な情報を読まれる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2013-0254 | 2013-05-20 10:33 | 2013-02-6 | Show | GitHub Exploit DB Packet Storm |
| 228316 | 5 | 警告 | Django Software Foundation Canonical |
- | Django の form ライブラリにおけるフォームセットのリソース制限を回避される脆弱性 |
CWE-189
数値処理の問題 |
CVE-2013-0306 | 2013-05-17 18:25 | 2013-02-19 | Show | GitHub Exploit DB Packet Storm |
| 228317 | 4 | 警告 | Django Software Foundation Canonical |
- | Django の管理インターフェースにおける重要な履歴情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2013-0305 | 2013-05-17 18:23 | 2013-02-19 | Show | GitHub Exploit DB Packet Storm |
| 228318 | 4.9 | 警告 | Fedora Project | - | System Security Services Daemon におけるアクセス制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2013-0287 | 2013-05-17 18:20 | 2013-03-19 | Show | GitHub Exploit DB Packet Storm |
| 228319 | 6.9 | 警告 | Mozilla Foundation | - | Windows 上で稼働する Mozilla Firefox における権限を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2013-1673 | 2013-05-17 16:47 | 2013-05-14 | Show | GitHub Exploit DB Packet Storm |
| 228320 | 6.9 | 警告 | Mozilla Foundation | - | Windows 上で稼働する Mozilla Firefox および Thunderbird における完全性評価を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2013-1672 | 2013-05-17 16:46 | 2013-05-14 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 17, 2026, 4:19 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 193901 | 7.8 |
HIGH
Local |
qualcomm |
apq8017_firmware apq8053_firmware aqt1000_firmware msm8917_firmware msm8953_firmware qca6390_firmware qca6391_firmware qca6420_firmware qca6426_firmware qca6430_firmware
Possible stack overflow due to improper validation of camera name length before copying the name in VR Service in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Indu…
|
CWE-787
|
Out-of-bounds Write
CVE-2021-30256
|
2024-11-21 15:03 |
2021-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 193902 | 6.1 |
MEDIUM
Network |
kindsoft | kindeditor | Cross Site Scripting (XSS) vulnerability exists in KindEditor (Chinese versions) 4.1.12, which can be exploited by an attacker to obtain user cookie information. |
CWE-79
Cross-site Scripting |
CVE-2021-30086 | 2024-11-21 15:03 | 2021-09-29 | Show | GitHub Exploit DB Packet Storm |
| 193903 | 7.8 |
HIGH
Local |
oracle |
linux engineered_systems_utilities |
Vulnerability in Oracle Linux (component: OSwatcher). Supported versions that are affected are 7 and 8. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructur… |
NVD-CWE-noinfo
|
CVE-2021-2464 | 2024-11-21 15:03 | 2021-09-25 | Show | GitHub Exploit DB Packet Storm |
| 193904 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware apq8037_firmware apq8053_firmware apq8084_firmware apq8096au_firmware aqt1000_firmware ar6003_firmware csr6030_firmware<… |
Possible integer and heap overflow due to lack of input command size validation while handling beacon template update command from HLOS in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industr… |
CWE-20
Improper Input Validation |
CVE-2021-30261 | 2024-11-21 15:03 | 2021-09-17 | Show | GitHub Exploit DB Packet Storm |
| 193905 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8064au_firmware apq8076_firmware apq8092_firmware apq8094_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware… |
Possible Integer overflow to buffer overflow issue can occur due to improper validation of input parameters when extscan hostlist configuration command is received in Snapdragon Auto, Snapdragon Comp… |
CWE-20 CWE-190 Improper Input Validation Integer Overflow or Wraparound |
CVE-2021-30260 | 2024-11-21 15:03 | 2021-09-17 | Show | GitHub Exploit DB Packet Storm |
| 193906 | 8.2 |
HIGH
Network |
axiossystems | assyst | Assyst 10 SP7.5 has authenticated XXE leading to SSRF via XML unmarshalling. The application allows users to send JSON or XML data to the server. It was possible to inject malicious XML data through … |
CWE-611
XXE |
CVE-2021-30137 | 2024-11-21 15:03 | 2021-09-15 | Show | GitHub Exploit DB Packet Storm |
| 193907 | 7.8 |
HIGH
Local |
qualcomm |
apq8017_firmware apq8053_firmware aqt1000_firmware ar8031_firmware csra6620_firmware csra6640_firmware csrb31024_firmware fsm10055_firmware fsm10056_firmware mdm9150_firmwa… |
Possible heap overflow due to improper validation of local variable while storing current task information locally in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer… |
CWE-120
Classic Buffer Overflow |
CVE-2021-30295 | 2024-11-21 15:03 | 2021-09-9 | Show | GitHub Exploit DB Packet Storm |
| 193908 | 5.5 |
MEDIUM
Local |
qualcomm |
qca6174a_firmware qca6574_firmware qca6574a_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware qca9377_firmware qcm6490_firmware qcs6490_firmware sa6145p_firmw… |
Potential null pointer dereference in KGSL GPU auxiliary command due to improper validation of user input in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile |
CWE-476
NULL Pointer Dereference |
CVE-2021-30294 | 2024-11-21 15:03 | 2021-09-9 | Show | GitHub Exploit DB Packet Storm |
| 193909 | 7.0 |
HIGH
Local |
qualcomm |
qca6174a_firmware qca6574_firmware qca6574a_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware qca9377_firmware qcm6490_firmware qcs6490_firmware sa6145p_firmw… |
Possible null pointer dereference due to race condition between timeline fence signal and time line fence destroy in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mo… |
CWE-476 CWE-367 NULL Pointer Dereference Time-of-check Time-of-use (TOCTOU) Race Condition |
CVE-2021-30290 | 2024-11-21 15:03 | 2021-09-9 | Show | GitHub Exploit DB Packet Storm |
| 193910 | 8.6 |
HIGH
Local |
amazon | kindle_firmware | Amazon Kindle e-reader prior to and including version 5.13.4 improperly manages privileges, allowing the framework user to elevate privileges to root. |
CWE-269
Improper Privilege Management |
CVE-2021-30355 | 2024-11-21 15:03 | 2021-09-2 | Show | GitHub Exploit DB Packet Storm |