Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250141	4.6	警告	ヒューレット・パッカード IBM オラクル	-	HP ALM 内の getInstalledPackages 関数における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4834	2011-12-19 15:08	2011-12-15	Show	GitHub Exploit DB Packet Storm

250142	7.5	危険	SugarCRM	-	SugarCRM の Leads モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4833	2011-12-19 15:08	2011-12-15	Show	GitHub Exploit DB Packet Storm

250143	7.5	危険	Moxiecode Systems AB phpMyFAQ PHPletter	-	複数の製品で使用される inc/function.base.php における PHP コードを挿入される脆弱性	CWE-94 コード・インジェクション	CVE-2011-4825	2011-12-19 15:07	2011-10-25	Show	GitHub Exploit DB Packet Storm

250144	7.5	危険	The Cacti Group	-	Cacti の auth_login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4824	2011-12-19 15:06	2011-09-26	Show	GitHub Exploit DB Packet Storm

250145	4.3	警告	Atlassian	-	Atlassian FishEye のユーザプロファイル機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4822	2011-12-19 15:05	2011-10-24	Show	GitHub Exploit DB Packet Storm

250146	3.6	注意	Artsoft Entertainment	-	Artsoft Entertainment の Rocks'n'Diamonds における任意のファイルを上書きされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4606	2011-12-19 15:05	2011-12-15	Show	GitHub Exploit DB Packet Storm

250147	4.3	警告	Digium	-	Asterisk の channels/chan_sip.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-200 情報漏えい	CVE-2011-4598	2011-12-19 15:03	2011-11-2	Show	GitHub Exploit DB Packet Storm

250148	5	警告	Digium	-	Asterisk の UDP 実装での SIP におけるユーザ名を列挙される脆弱性	CWE-200 情報漏えい	CVE-2011-4597	2011-12-19 15:01	2011-07-18	Show	GitHub Exploit DB Packet Storm

250149	7.5	危険	Caupo.Net	-	CaupoShop Pro および CaupoShop Classic におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-4832	2011-12-19 13:44	2011-12-15	Show	GitHub Exploit DB Packet Storm

250150	4	警告	David Azoulay	-	Web File Browser の webFileBrowser.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-4831	2011-12-19 13:43	2011-12-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211051	8.8	HIGH Local	qualcomm	ar8035_firmware pm4125_firmware pm4250_firmware pm6125_firmware pm6150a_firmware pm6150l_firmware pm6350_firmware pm7250b_firmware pm8008_firmware pmd9655_firmware pmi63…	Possible memory corruption in RPM region due to improper XPU configuration in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking	CWE-787 Out-of-bounds Write	CVE-2020-11210	2024-11-21 13:57	2021-04-7	Show	GitHub Exploit DB Packet Storm

211052	5.5	MEDIUM Local	qualcomm	csrb31024_firmware pm3003a_firmware pm6150a_firmware pm6150l_firmware pm6350_firmware pm7150a_firmware pm7150l_firmware pm7250_firmware pm7250b_firmware pm8008_firmware …	Memory corruption due to invalid value of total dimension in the non-histogram type KPI could lead to a denial of service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon M…	CWE-787 Out-of-bounds Write	CVE-2020-11236	2024-11-21 13:57	2021-04-7	Show	GitHub Exploit DB Packet Storm

211053	7.8	HIGH Local	qualcomm	apq8009_firmware apq8009w_firmware apq8017_firmware apq8053_firmware apq8064au_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware ar8151_firmware<…	When sending a socket event message to a user application, invalid information will be passed if socket is freed by other thread resulting in a Use After Free condition in Snapdragon Auto, Snapdragon…	CWE-416 Use After Free	CVE-2020-11234	2024-11-21 13:57	2021-04-7	Show	GitHub Exploit DB Packet Storm

211054	6.7	MEDIUM Local	qualcomm	apq8017_firmware apq8053_firmware aqt1000_firmware msm8917_firmware msm8953_firmware pm215_firmware pm3003a_firmware pm439_firmware pm6125_firmware pm6150_firmware pm615…	Two threads call one or both functions concurrently leading to corruption of pointers and reference counters which in turn can lead to heap corruption in Snapdragon Compute, Snapdragon Connectivity, …	CWE-415 Double Free	CVE-2020-11231	2024-11-21 13:57	2021-04-7	Show	GitHub Exploit DB Packet Storm

211055	9.8	CRITICAL Network	qualcomm	apq8009_firmware apq8009w_firmware apq8017_firmware apq8037_firmware apq8053_firmware apq8084_firmware apq8096au_firmware aqt1000_firmware ar8035_firmware ar8151_firmware	Out of bound write while parsing RTT/TTY packet parsing due to lack of check of buffer size before copying into buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Cons…	CWE-787 CWE-129 Out-of-bounds Write Improper Validation of Array Index	CVE-2020-11227	2024-11-21 13:57	2021-03-17	Show	GitHub Exploit DB Packet Storm

211056	5.5	MEDIUM Local	qualcomm	apq8009_firmware apq8009w_firmware apq8017_firmware apq8037_firmware apq8053_firmware apq8084_firmware apq8096au_firmware aqt1000_firmware ar8035_firmware ar8151_firmware	Usage of syscall by non-secure entity can allow extraction of secure QTEE diagnostic information in clear text form due to insufficient checks in the syscall handler and leads to information disclosu…	CWE-200 Information Exposure	CVE-2020-11221	2024-11-21 13:57	2021-03-17	Show	GitHub Exploit DB Packet Storm

211057	5.5	MEDIUM Local	qualcomm	apq8009_firmware apq8009w_firmware apq8017_firmware apq8037_firmware apq8053_firmware apq8084_firmware apq8096au_firmware aqt1000_firmware ar8035_firmware ar8151_firmware	HLOS to access EL3 stack canary by just mapping imem region due to Improper access control and can lead to information exposure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdr…	CWE-200 Information Exposure	CVE-2020-11199	2024-11-21 13:57	2021-03-17	Show	GitHub Exploit DB Packet Storm

211058	7.8	HIGH Local	qualcomm	apq8009_firmware apq8009w_firmware apq8017_firmware apq8053_firmware apq8064au_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware ar8151_firmware<…	Use after free in GPU driver while mapping the user memory to GPU memory due to improper check of referenced memory in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consume…	CWE-416 Use After Free	CVE-2020-11309	2024-11-21 13:57	2021-03-17	Show	GitHub Exploit DB Packet Storm

211059	6.8	MEDIUM Physics	qualcomm	apq8009_firmware aqt1000_firmware ar8031_firmware ar8035_firmware ar8151_firmware csra6620_firmware csra6640_firmware csrb31024_firmware fsm10055_firmware fsm10056_firmware…	Buffer overflow occurs when trying to convert ASCII string to Unicode string if the actual size is more than required in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consu…	CWE-129 Improper Validation of Array Index	CVE-2020-11308	2024-11-21 13:57	2021-03-17	Show	GitHub Exploit DB Packet Storm

211060	9.1	CRITICAL Network	qualcomm	apq8009_firmware apq8009w_firmware apq8017_firmware apq8037_firmware apq8053_firmware apq8084_firmware apq8096au_firmware aqt1000_firmware ar6003_firmware ar8151_firmware	Potential out of bound read exception when UE receives unusually large number of padding octets in the beginning of ROHC header in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdr…	CWE-125 Out-of-bounds Read	CVE-2020-11166	2024-11-21 13:57	2021-03-17	Show	GitHub Exploit DB Packet Storm