Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 7, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 229151 | 6.8 | 警告 | rhapsody irc | - | Rhapsody IRC におけるバッファオーバーフローの脆弱性 | - | CVE-2007-1502 | 2012-12-20 18:19 | 2007-03-19 | Show | GitHub Exploit DB Packet Storm |
| 229152 | 4.9 | 警告 | シマンテック | - | Symantec Norton Personal Firewall などの \Device\SymEvent ドライバにおけるサービス運用妨害 (DoS) の脆弱性 | - | CVE-2007-1495 | 2012-12-20 18:19 | 2007-03-16 | Show | GitHub Exploit DB Packet Storm |
| 229153 | 6.8 | 警告 | web-app.org | - | web-app.org WebAPP における管理アクセス権限を取得される脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2007-1489 | 2012-12-20 18:19 | 2007-03-16 | Show | GitHub Exploit DB Packet Storm |
| 229154 | 7.5 | 危険 | wbblog | - | WBBlog の index.php における SQL インジェクションの脆弱性 | - | CVE-2007-1481 | 2012-12-20 18:19 | 2007-03-16 | Show | GitHub Exploit DB Packet Storm |
| 229155 | 1.9 | 注意 | シマンテック | - | Symantec Norton Personal Firewall などの SYMTDI.SYS におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2007-1476 | 2012-12-20 18:19 | 2007-03-16 | Show | GitHub Exploit DB Packet Storm |
| 229156 | 6.8 | 警告 | t-systems solutions for research gmbh | - | Groupit の groupit/base/groupit.start.inc におけるリモートファイルインクルージョン攻撃を実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2007-1472 | 2012-12-20 18:19 | 2007-03-16 | Show | GitHub Exploit DB Packet Storm |
| 229157 | 7.5 | 危険 | xigla | - | Absolute Image Gallery の gallery.asp における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2007-1469 | 2012-12-20 18:19 | 2007-03-16 | Show | GitHub Exploit DB Packet Storm |
| 229158 | 6.8 | 警告 | webcreator | - | WebCreator における PHP リモートファイルインクルージョンの脆弱性 | - | CVE-2007-1459 | 2012-12-20 18:19 | 2007-03-14 | Show | GitHub Exploit DB Packet Storm |
| 229159 | 7.5 | 危険 | PHPNUKE | - | PHP-Nuke の mainfile.php における SQL インジェクションの脆弱性 | - | CVE-2007-1450 | 2012-12-20 18:19 | 2007-03-14 | Show | GitHub Exploit DB Packet Storm |
| 229160 | 4.3 | 警告 | PHPNUKE | - | PHP-Nuke の mainfile.php におけるディレクトリトラバーサルの脆弱性 | - | CVE-2007-1449 | 2012-12-20 18:19 | 2007-03-14 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 7, 2026, 4:22 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 210201 | 6.7 |
MEDIUM
Local |
qualcomm |
apq8017_firmware apq8053_firmware aqt1000_firmware msm8917_firmware msm8953_firmware pm215_firmware pm3003a_firmware pm439_firmware pm6125_firmware pm6150_firmware pm615… |
Two threads call one or both functions concurrently leading to corruption of pointers and reference counters which in turn can lead to heap corruption in Snapdragon Compute, Snapdragon Connectivity, … |
CWE-415
Double Free |
CVE-2020-11231 | 2024-11-21 13:57 | 2021-04-7 | Show | GitHub Exploit DB Packet Storm |
| 210202 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware apq8037_firmware apq8053_firmware apq8084_firmware apq8096au_firmware aqt1000_firmware ar8035_firmware ar8151_firmware
Out of bound write while parsing RTT/TTY packet parsing due to lack of check of buffer size before copying into buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Cons…
|
CWE-787 |
CWE-129 Out-of-bounds Write Improper Validation of Array Index
CVE-2020-11227
|
2024-11-21 13:57 |
2021-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 210203 | 5.5 |
MEDIUM
Local |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware apq8037_firmware apq8053_firmware apq8084_firmware apq8096au_firmware aqt1000_firmware ar8035_firmware ar8151_firmware
Usage of syscall by non-secure entity can allow extraction of secure QTEE diagnostic information in clear text form due to insufficient checks in the syscall handler and leads to information disclosu…
|
CWE-200
|
Information Exposure
CVE-2020-11221
|
2024-11-21 13:57 |
2021-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 210204 | 5.5 |
MEDIUM
Local |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware apq8037_firmware apq8053_firmware apq8084_firmware apq8096au_firmware aqt1000_firmware ar8035_firmware ar8151_firmware
HLOS to access EL3 stack canary by just mapping imem region due to Improper access control and can lead to information exposure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdr…
|
CWE-200
|
Information Exposure
CVE-2020-11199
|
2024-11-21 13:57 |
2021-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 210205 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware apq8053_firmware apq8064au_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware ar8151_firmware<… |
Use after free in GPU driver while mapping the user memory to GPU memory due to improper check of referenced memory in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consume… |
CWE-416
Use After Free |
CVE-2020-11309 | 2024-11-21 13:57 | 2021-03-17 | Show | GitHub Exploit DB Packet Storm |
| 210206 | 6.8 |
MEDIUM
Physics |
qualcomm |
apq8009_firmware aqt1000_firmware ar8031_firmware ar8035_firmware ar8151_firmware csra6620_firmware csra6640_firmware csrb31024_firmware fsm10055_firmware fsm10056_firmware… |
Buffer overflow occurs when trying to convert ASCII string to Unicode string if the actual size is more than required in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consu… |
CWE-129
Improper Validation of Array Index |
CVE-2020-11308 | 2024-11-21 13:57 | 2021-03-17 | Show | GitHub Exploit DB Packet Storm |
| 210207 | 9.1 |
CRITICAL
Network |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware apq8037_firmware apq8053_firmware apq8084_firmware apq8096au_firmware aqt1000_firmware ar6003_firmware ar8151_firmware
Potential out of bound read exception when UE receives unusually large number of padding octets in the beginning of ROHC header in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdr…
|
CWE-125
|
Out-of-bounds Read
CVE-2020-11166
|
2024-11-21 13:57 |
2021-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 210208 | 6.8 |
MEDIUM
Physics |
qualcomm |
apq8009_firmware apq8053_firmware mdm9206_firmware pm8909_firmware pm8916_firmware pm8953_firmware pmd9607_firmware pmi8952_firmware qca9367_firmware qca9377_firmware sm… |
Integer overflow in boot due to improper length check on arguments received in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2020-11305 | 2024-11-21 13:57 | 2021-03-17 | Show | GitHub Exploit DB Packet Storm |
| 210209 | 6.4 |
MEDIUM
Local |
qualcomm |
aqt1000_firmware fsm10055_firmware pm3003a_firmware pm7150a_firmware pm7150l_firmware pm7250_firmware pm7250b_firmware pm7350c_firmware pm8004_firmware pm8008_firmware p… |
Potential arbitrary memory corruption when the qseecom driver updates ion physical addresses in the buffer as it exposes a physical address to user land in Snapdragon Auto, Snapdragon Compute, Snapdr… |
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition |
CVE-2020-11230 | 2024-11-21 13:57 | 2021-03-17 | Show | GitHub Exploit DB Packet Storm |
| 210210 | 7.8 |
HIGH
Local |
qualcomm |
aqt1000_firmware ar8035_firmware pm4125_firmware pm4250_firmware pm6125_firmware pm6150_firmware pm6150a_firmware pm6150l_firmware pm6350_firmware pm640a_firmware pm640l… |
Part of RPM region was not protected from xblSec itself due to improper policy and leads to unprivileged access in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IO… |
NVD-CWE-noinfo
|
CVE-2020-11228 | 2024-11-21 13:57 | 2021-03-17 | Show | GitHub Exploit DB Packet Storm |