Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 18, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 228651 | 4 | 警告 | フェンリル株式会社 | - | Sleipnir Mobile for Android において任意のエクステンション API が呼び出される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2013-2304 | 2013-04-12 12:01 | 2013-04-12 | Show | GitHub Exploit DB Packet Storm |
| 228652 | 4.3 | 警告 | Splunk | - | Splunk Web におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-2766 | 2013-04-12 11:04 | 2013-03-25 | Show | GitHub Exploit DB Packet Storm |
| 228653 | 5 | 警告 | Puppet | - | Puppet Labs の Puppet Enterprise におけるコンソールアクセスを取得される脆弱性 |
CWE-310
暗号の問題 |
CVE-2013-2716 | 2013-04-12 11:03 | 2013-03-28 | Show | GitHub Exploit DB Packet Storm |
| 228654 | 7.5 | 危険 | Digineo | - | Ruby 用 Thumbshooter gem の lib/thumbshooter.rb における任意のコマンドを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2013-1898 | 2013-04-11 19:42 | 2013-03-25 | Show | GitHub Exploit DB Packet Storm |
| 228655 | 7.5 | 危険 | Dan Kubb | - | Ruby 用 extlib gem におけるオブジェクトインジェクション攻撃を実行される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2013-1802 | 2013-04-11 19:41 | 2013-01-14 | Show | GitHub Exploit DB Packet Storm |
| 228656 | 7.5 | 危険 | John Nunemaker | - | Ruby 用 httparty gem におけるオブジェクトインジェクション攻撃を実行される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2013-1801 | 2013-04-11 19:41 | 2013-01-14 | Show | GitHub Exploit DB Packet Storm |
| 228657 | 7.5 | 危険 | John Nunemaker | - | Ruby 用 crack gem におけるオブジェクトインジェクション攻撃を実行される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2013-1800 | 2013-04-11 19:40 | 2013-01-14 | Show | GitHub Exploit DB Packet Storm |
| 228658 | 7.5 | 危険 | Daniel Harrington | - | Ruby 用 nori gem におけるオブジェクトインジェクション攻撃を実行される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2013-0285 | 2013-04-11 19:39 | 2013-01-14 | Show | GitHub Exploit DB Packet Storm |
| 228659 | 5 | 警告 | New Relic | - | Ruby Agent における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2013-0284 | 2013-04-11 19:38 | 2013-02-13 | Show | GitHub Exploit DB Packet Storm |
| 228660 | 6.8 | 警告 | Michael Bleigh and Intridea, Inc. | - | Ruby 用 omniauth-oauth2 gem におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2012-6134 | 2013-04-11 19:37 | 2013-02-25 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 19, 2026, 4:01 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 193831 | 7.5 |
HIGH
Network |
qualcomm |
apq8009w_firmware apq8017_firmware apq8096au_firmware ar8035_firmware csrb31024_firmware fsm10055_firmware fsm10056_firmware mdm8207_firmware mdm9150_firmware mdm9205_firmw… |
Possible denial of service due to incorrectly decoding hex data for the SIB2 OTA message and assigning a garbage value to choice when processing the SRS configuration in Snapdragon Auto, Snapdragon C… |
CWE-704
Incorrect Type Conversion or Cast |
CVE-2021-30300 | 2024-11-21 15:03 | 2022-01-13 | Show | GitHub Exploit DB Packet Storm |
| 193832 | 7.5 |
HIGH
Network |
qualcomm |
ar8035_firmware qca6390_firmware qca6391_firmware qca6426_firmware qca6436_firmware qca6574a_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware qca8081_firmwar… |
Possible assertion due to improper validation of symbols configured for PDCCH monitoring in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile |
CWE-617
Reachable Assertion |
CVE-2021-30287 | 2024-11-21 15:03 | 2022-01-13 | Show | GitHub Exploit DB Packet Storm |
| 193833 | 8.8 |
HIGH
Local |
qualcomm |
ar8031_firmware ar8035_firmware csra6620_firmware csra6640_firmware csrb31024_firmware fsm10055_firmware fsm10056_firmware mdm9150_firmware mdm9205_firmware qca4004_firmwar… |
Improper validation of memory region in Hypervisor can lead to incorrect region mapping in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial… |
CWE-20
Improper Input Validation |
CVE-2021-30285 | 2024-11-21 15:03 | 2022-01-13 | Show | GitHub Exploit DB Packet Storm |
| 193834 | 7.8 |
HIGH
Local |
checkpoint | endpoint_security | Users have access to the directory where the installation repair occurs. Since the MS Installer allows regular users to run the repair, an attacker can initiate the installation repair and place a sp… |
CWE-427
Uncontrolled Search Path Element |
CVE-2021-30360 | 2024-11-21 15:03 | 2022-01-10 | Show | GitHub Exploit DB Packet Storm |
| 193835 | 6.5 |
MEDIUM
Adjacent |
qualcomm |
pq8009_firmware apq8017_firmware apq8064au_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware csra6620_firmware csra6640_firmware csrb31024_firmwa… |
Improper validation of LLM utility timers availability can lead to denial of service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Sna… |
CWE-400
Uncontrolled Resource Consumption |
CVE-2021-30348 | 2024-11-21 15:03 | 2022-01-3 | Show | GitHub Exploit DB Packet Storm |
| 193836 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware aqt1000_firmware ar8031_firmware ar8035_firmware ar9380_firmware csr8811_firmware csra6620_firmware csra6640_firmware
An out of bound memory access can occur due to improper validation of number of frames being passed during music playback in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon C…
|
CWE-120
|
Classic Buffer Overflow
CVE-2021-30351
|
2024-11-21 15:03 |
2022-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 193837 | 7.8 |
HIGH
Local |
qualcomm |
qca6390_firmware qca6391_firmware qca6574_firmware qca6574a_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware qcm2290_firmware qcm4290_firmware qcm6490_firmwa… |
Possible out of bound read due to lack of domain input validation while processing APK close session request in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT… |
CWE-125
Out-of-bounds Read |
CVE-2021-30336 | 2024-11-21 15:03 | 2022-01-3 | Show | GitHub Exploit DB Packet Storm |
| 193838 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware ar9380_firmware csr8811_firmware csra6620_firmware
Possible use after free when process shell memory is freed using IOCTL call and process initialization is in progress in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consu…
|
CWE-416
|
Use After Free
CVE-2021-30337
|
2024-11-21 15:03 |
2022-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 193839 | 7.8 |
HIGH
Local |
qualcomm |
ar8031_firmware ar8035_firmware csra6620_firmware csra6640_firmware fsm10055_firmware fsm10056_firmware ipq8072a_firmware ipq8074a_firmware ipq8076a_firmware mdm9150_firmwa… |
Possible out of bound access due to improper validation of item size and DIAG memory pools data while switching between USB and PCIE interface in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon … |
CWE-120
Classic Buffer Overflow |
CVE-2021-30298 | 2024-11-21 15:03 | 2022-01-3 | Show | GitHub Exploit DB Packet Storm |
| 193840 | 7.8 |
HIGH
Local |
qualcomm |
apq8009w_firmware aqt1000_firmware ar8031_firmware ar8035_firmware ar9380_firmware csr8811_firmware csra6620_firmware csra6640_firmware csrb31024_firmware fsm10055_firmware… |
Possible assertion in QOS request due to improper validation when multiple add or update request are received simultaneously in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdrago… |
CWE-617
Reachable Assertion |
CVE-2021-30335 | 2024-11-21 15:03 | 2022-01-3 | Show | GitHub Exploit DB Packet Storm |