Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 30, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 228471 | 7.5 | 危険 | thecodeweasel | - | OpenSiteAdmin の pages/pageHeader.php における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3317 | 2012-12-20 19:28 | 2009-09-23 | Show | GitHub Exploit DB Packet Storm |
| 228472 | 6.8 | 警告 | tomex | - | phpPollScript の php/init.poll.php における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3312 | 2012-12-20 19:28 | 2009-09-23 | Show | GitHub Exploit DB Packet Storm |
| 228473 | 4.3 | 警告 | rssmediascript | - | RSSMediaScript の index.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-3311 | 2012-12-20 19:28 | 2009-09-23 | Show | GitHub Exploit DB Packet Storm |
| 228474 | 7.5 | 危険 | shalwan | - | Zainu の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-3310 | 2012-12-20 19:28 | 2009-09-23 | Show | GitHub Exploit DB Packet Storm |
| 228475 | 7.5 | 危険 | richrumble | - | ClearSite の include/header.php における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3306 | 2012-12-20 19:28 | 2009-09-23 | Show | GitHub Exploit DB Packet Storm |
| 228476 | 5 | 警告 | pps.jussieu | - | Polipo におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2009-3305 | 2012-12-20 19:28 | 2009-12-24 | Show | GitHub Exploit DB Packet Storm |
| 228477 | 4.9 | 警告 | QNAP Systems | - | QNAP TS-239 Pro および TS-639 Pro における重要な情報を取得される脆弱性 |
CWE-310
暗号の問題 |
CVE-2009-3279 | 2012-12-20 19:28 | 2009-09-21 | Show | GitHub Exploit DB Packet Storm |
| 228478 | 4.9 | 警告 | QNAP Systems | - | QNAP TS-239 Pro などにおける鍵を特定される脆弱性 |
CWE-310
暗号の問題 |
CVE-2009-3278 | 2012-12-20 19:28 | 2009-09-21 | Show | GitHub Exploit DB Packet Storm |
| 228479 | 5 | 警告 | xenu by | - | datavault の DataVault.Tesla/Impl/TypeSystem/AssociationHelper.cs におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2009-3277 | 2012-12-20 19:28 | 2009-09-21 | Show | GitHub Exploit DB Packet Storm |
| 228480 | 7.5 | 危険 | thomas cuchta | - | RQMS における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-3259 | 2012-12-20 19:28 | 2009-09-18 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 31, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 216031 | 8.8 |
HIGH
Local |
qualcomm |
ar7420_firmware ar9580_firmware csr8811_firmware ipq4018_firmware ipq4019_firmware ipq4028_firmware ipq4029_firmware qca10901_firmware qca4024_firmware qca7500_firmware … |
Memory corruption due to lack of validation of pointer arguments passed to TrustZone BSP in Snapdragon Wired Infrastructure and Networking |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2020-11257 | 2024-11-21 13:57 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |
| 216032 | 8.8 |
HIGH
Local |
qualcomm |
ar7420_firmware ar9580_firmware csr8811_firmware ipq4018_firmware ipq4019_firmware ipq4028_firmware ipq4029_firmware qca10901_firmware qca4024_firmware qca7500_firmware … |
Memory corruption due to lack of check of validation of pointer to buffer passed to trustzone in Snapdragon Wired Infrastructure and Networking |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2020-11256 | 2024-11-21 13:57 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |
| 216033 | 7.0 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware apq8053_firmware apq8076_firmware apq8096au_firmware csr6030_firmware mdm9206_firmware mdm9230_firmware mdm9250_firmware… |
Time-of-check time-of-use race condition While processing partition entries due to newly created buffer was read again from mmc without validation in Snapdragon Auto, Snapdragon Connectivity, Snapdra… |
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition |
CVE-2020-11233 | 2024-11-21 13:57 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |
| 216034 | 7.0 |
HIGH
Local |
qualcomm |
apq8009w_firmware apq8017_firmware apq8053_firmware aqt1000_firmware ar8031_firmware ar8035_firmware csr8811_firmware csra6620_firmware csra6640_firmware fsm10055_firmware<… |
Use after free due to race condition when reopening the device driver repeatedly in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, S… |
CWE-362 CWE-416 Race Condition Use After Free |
CVE-2020-11250 | 2024-11-21 13:57 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |
| 216035 | 7.8 |
HIGH
Local |
qualcomm |
apq8009w_firmware apq8017_firmware apq8053_firmware aqt1000_firmware ar8031_firmware ar8035_firmware csra6620_firmware csra6640_firmware csrb31024_firmware msm8909w_firmwar… |
Memory corruption due to ioctl command size was incorrectly set to the size of a pointer and not enough storage is allocated for the copy of the user argument in Snapdragon Auto, Snapdragon Compute, … |
CWE-131
Incorrect Calculation of Buffer Size |
CVE-2020-11240 | 2024-11-21 13:57 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |
| 216036 | 9.8 |
CRITICAL
Network |
qualcomm |
aqt1000_firmware pm3003a_firmware pm4125_firmware pm456_firmware pm6125_firmware pm6150_firmware pm6150a_firmware pm6150l_firmware pm6250_firmware pm6350_firmware pm640a… |
Possible heap overflow while parsing NAL header due to lack of check of length of data received from user in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Sna… |
CWE-787
Out-of-bounds Write |
CVE-2020-11182 | 2024-11-21 13:57 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |
| 216037 | 7.8 |
HIGH
Local |
qualcomm |
aqt1000_firmware ar8031_firmware ar8035_firmware csra6620_firmware csra6640_firmware csrb31024_firmware fsm10055_firmware fsm10056_firmware mdm9205_firmware pm3003a_firmwar… |
Trusted APPS to overwrite the CPZ memory of another use-case as TZ only checks the physical address not overlapping with its memory and its RoT memory in Snapdragon Auto, Snapdragon Compute, Snapdrag… |
CWE-20
Improper Input Validation |
CVE-2020-11178 | 2024-11-21 13:57 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |
| 216038 | 7.8 |
HIGH
Local |
qualcomm |
fsm10055_firmware fsm10056_firmware pm3003a_firmware pm6125_firmware pm6150_firmware pm6150a_firmware pm6150l_firmware pm6350_firmware pm660_firmware pm660l_firmware pm7… |
Use after free in camera If the threadmanager is being cleaned up while the worker thread is processing objects in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IO… |
CWE-416
Use After Free |
CVE-2020-11295 | 2024-11-21 13:57 | 2021-05-7 | Show | GitHub Exploit DB Packet Storm |
| 216039 | 7.8 |
HIGH
Local |
qualcomm |
aqt1000_firmware ar8035_firmware pm3003a_firmware pm4125_firmware pm4250_firmware pm6125_firmware pm6150_firmware pm6150a_firmware pm6150l_firmware pm6350_firmware pm640… |
Locked memory can be unlocked and modified by non secure boot loader through improper system call sequence making the memory region untrusted source of input for secure boot loader in Snapdragon Auto… |
CWE-667
Improper Locking |
CVE-2020-11284 | 2024-11-21 13:57 | 2021-05-7 | Show | GitHub Exploit DB Packet Storm |
| 216040 | 7.8 |
HIGH
Local |
qualcomm |
ar8035_firmware pm215_firmware pm3003a_firmware pm6125_firmware pm6150_firmware pm6150a_firmware pm6150l_firmware pm6350_firmware pm640a_firmware pm640l_firmware pm640p_… |
Out of bound write in logger due to prefix size is not validated while prepended to logging string in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon… |
CWE-129
Improper Validation of Array Index |
CVE-2020-11294 | 2024-11-21 13:57 | 2021-05-7 | Show | GitHub Exploit DB Packet Storm |