Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 27, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 249501 | 9.3 | 危険 | Novell | - | Novell Cloud Manager の RPC 実装における任意のコードを実行される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2011-2654 | 2012-03-27 18:43 | 2011-08-30 | Show | GitHub Exploit DB Packet Storm |
| 249502 | 4.3 | 警告 | Novell marcus schafer |
- | SUSE Studio で使用される Kiwi におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-2652 | 2012-03-27 18:43 | 2011-08-23 | Show | GitHub Exploit DB Packet Storm |
| 249503 | 7.5 | 危険 | Novell marcus schafer |
- | SUSE Studio で使用される Kiwi のファイルブラウザにおける任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-2651 | 2012-03-27 18:43 | 2011-08-23 | Show | GitHub Exploit DB Packet Storm |
| 249504 | 4.3 | 警告 | Novell marcus schafer |
- | SUSE Studio で使用される Kiwi におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-2650 | 2012-03-27 18:43 | 2011-08-23 | Show | GitHub Exploit DB Packet Storm |
| 249505 | 7.5 | 危険 | Novell marcus schafer |
- | SUSE Studio で使用される Kiwi における任意のコマンドを実行される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2011-2649 | 2012-03-27 18:43 | 2011-08-23 | Show | GitHub Exploit DB Packet Storm |
| 249506 | 7.5 | 危険 | Novell marcus schafer |
- | SUSE Studio で使用される Kiwi における任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-2648 | 2012-03-27 18:43 | 2011-08-23 | Show | GitHub Exploit DB Packet Storm |
| 249507 | 7.5 | 危険 | Novell marcus schafer |
- | SUSE Studio で使用される Kiwi における任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-2647 | 2012-03-27 18:43 | 2011-08-23 | Show | GitHub Exploit DB Packet Storm |
| 249508 | 7.5 | 危険 | Novell marcus schafer |
- | SUSE Studio で使用される Kiwi における任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-2646 | 2012-03-27 18:43 | 2011-08-23 | Show | GitHub Exploit DB Packet Storm |
| 249509 | 7.5 | 危険 | Novell marcus schafer |
- | SUSE Studio で使用される Kiwi における任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-2645 | 2012-03-27 18:43 | 2011-08-23 | Show | GitHub Exploit DB Packet Storm |
| 249510 | 4.3 | 警告 | Novell marcus schafer |
- | SUSE Studio で使用される Kiwi におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-2644 | 2012-03-27 18:43 | 2011-08-23 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 28, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 196731 | 7.5 |
HIGH
Network |
sonicwall |
sma_200_firmware sma_210_firmware sma_410_firmware sma_400_firmware sma_500v_firmware |
A relative path traversal vulnerability in the SMA100 upload funtion allows a remote unauthenticated attacker to upload crafted web pages or files as a 'nobody' user. This vulnerability affected SMA … |
CWE-22
Path Traversal |
CVE-2021-20040 | 2024-11-21 14:45 | 2021-12-8 | Show | GitHub Exploit DB Packet Storm |
| 196732 | 8.8 |
HIGH
Network |
sonicwall |
sma_200_firmware sma_210_firmware sma_410_firmware sma_400_firmware sma_500v_firmware |
Improper neutralization of special elements in the SMA100 management interface '/cgi-bin/viewcert' POST http method allows a remote authenticated attacker to inject arbitrary commands as a 'nobody' u… |
CWE-78
OS Command |
CVE-2021-20039 | 2024-11-21 14:45 | 2021-12-8 | Show | GitHub Exploit DB Packet Storm |
| 196733 | 9.8 |
CRITICAL
Network |
sonicwall |
sma_200_firmware sma_210_firmware sma_410_firmware sma_400_firmware sma_500v_firmware |
A Stack-based buffer overflow vulnerability in SMA100 Apache httpd server's mod_cgi module environment variables allows a remote unauthenticated attacker to potentially execute code as a 'nobody' use… |
CWE-787
Out-of-bounds Write |
CVE-2021-20038 | 2024-11-21 14:45 | 2021-12-8 | Show | GitHub Exploit DB Packet Storm |
| 196734 | 7.5 |
HIGH
Network |
qualcomm |
ar8035_firmware qca6390_firmware qca6391_firmware qca6421_firmware qca6426_firmware qca6431_firmware qca6436_firmware qca6574a_firmware qca6574au_firmware qca6595au_firmwar… |
Possible denial of service scenario due to improper input validation of received NAS OTA message in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon I… |
CWE-617
Reachable Assertion |
CVE-2021-1982 | 2024-11-21 14:45 | 2021-11-12 | Show | GitHub Exploit DB Packet Storm |
| 196735 | 9.1 |
CRITICAL
Network |
qualcomm |
apq8017_firmware ar8035_firmware msm8917_firmware qca6390_firmware qca6391_firmware qca6421_firmware qca6426_firmware qca6431_firmware qca6436_firmware qca6574a_firmware
Possible buffer over read due to improper IE size check of Bearer capability IE in MT setup request from network in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer I…
|
CWE-125
|
Out-of-bounds Read
CVE-2021-1981
|
2024-11-21 14:45 |
2021-11-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 196736 | 7.8 |
HIGH
Local |
qualcomm |
aqt1000_firmware ar8035_firmware csrb31024_firmware fsm10055_firmware fsm10056_firmware mdm9150_firmware mdm9250_firmware mdm9650_firmware qca6174a_firmware qca6310_firmwar… |
Possible buffer overflow due to improper validation of FTM command payload in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdra… |
CWE-787
Out-of-bounds Write |
CVE-2021-1979 | 2024-11-21 14:45 | 2021-11-12 | Show | GitHub Exploit DB Packet Storm |
| 196737 | 7.0 |
HIGH
Local |
qualcomm |
aqt1000_firmware qca6390_firmware qca6391_firmware qca6420_firmware qca6421_firmware qca6426_firmware qca6430_firmware qca6431_firmware qca6436_firmware qca6574au_firmware<… |
Possible memory corruption due to Improper handling of hypervisor unmap operations for concurrent memory operations in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consume… |
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition |
CVE-2021-1921 | 2024-11-21 14:45 | 2021-11-12 | Show | GitHub Exploit DB Packet Storm |
| 196738 | 7.8 |
HIGH
Local |
qualcomm |
aqt1000_firmware ar8035_firmware csrb31024_firmware qca6174a_firmware qca6390_firmware qca6391_firmware qca6420_firmware qca6421_firmware qca6426_firmware qca6430_firmware<… |
Possible integer overflow can occur due to improper length check while calculating count and grace period in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, S… |
CWE-190
Integer Overflow or Wraparound |
CVE-2021-1912 | 2024-11-21 14:45 | 2021-11-12 | Show | GitHub Exploit DB Packet Storm |
| 196739 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware apq8037_firmware apq8096au_firmware ar6003_firmware ar8035_firmware csr6030_firmware csrb31024_firmware fsm10055_firmwar… |
Possible heap overflow due to improper length check of domain while parsing the DNS response in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Indus… |
CWE-787
Out-of-bounds Write |
CVE-2021-1975 | 2024-11-21 14:45 | 2021-11-12 | Show | GitHub Exploit DB Packet Storm |
| 196740 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware apq8037_firmware apq8053_firmware apq8064au_firmware apq8096au_firmware aqt1000_firmware ar6003_firmware ar8035_firmware… |
A FTM Diag command can allow an arbitrary write into modem OS space in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2021-1973 | 2024-11-21 14:45 | 2021-11-12 | Show | GitHub Exploit DB Packet Storm |