Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 1, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 252081 | 6.9 | 警告 | マイクロソフト | - | Microsoft Windows における権限昇格の脆弱性 |
CWE-Other
その他 |
CVE-2010-3966 | 2011-01-14 15:42 | 2010-12-14 | Show | GitHub Exploit DB Packet Storm |
| 252082 | 6.9 | 警告 | マイクロソフト | - | Windows Media Encoder における権限昇格の脆弱性 |
CWE-Other
その他 |
CVE-2010-3965 | 2011-01-14 15:39 | 2010-12-14 | Show | GitHub Exploit DB Packet Storm |
| 252083 | 6.9 | 警告 | マイクロソフト | - | Microsoft Windows Movie Maker における権限昇格の脆弱性 |
CWE-Other
その他 |
CVE-2010-3967 | 2011-01-14 15:36 | 2010-12-14 | Show | GitHub Exploit DB Packet Storm |
| 252084 | 7.2 | 危険 | マイクロソフト | - | Microsoft Windows の Windows Task Scheduler における権限昇格の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-3338 | 2011-01-14 15:31 | 2010-12-14 | Show | GitHub Exploit DB Packet Storm |
| 252085 | 6.9 | 警告 | マイクロソフト | - | Microsoft Windows の OpenType Font ドライバにおける権限昇格の脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-3959 | 2011-01-14 15:27 | 2010-12-14 | Show | GitHub Exploit DB Packet Storm |
| 252086 | 5 | 警告 | アップル サイバートラスト株式会社 OpenLDAP Foundation ターボリナックス VMware レッドハット |
- | OpenLDAP の IA5StringNormalize 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-0212 | 2011-01-14 14:45 | 2010-06-30 | Show | GitHub Exploit DB Packet Storm |
| 252087 | 5 | 警告 | アップル サイバートラスト株式会社 OpenLDAP Foundation ターボリナックス VMware レッドハット |
- | OpenLDAP の slap_modrdn2mods 関数における任意のコードを実行される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-0211 | 2011-01-14 14:45 | 2010-06-30 | Show | GitHub Exploit DB Packet Storm |
| 252088 | 6.2 | 警告 | サイバートラスト株式会社 VMware Todd C. Miller レッドハット |
- | sudo における権限昇格の脆弱性 |
CWE-DesignError
|
CVE-2010-2956 | 2011-01-14 14:44 | 2010-09-7 | Show | GitHub Exploit DB Packet Storm |
| 252089 | - | - | GNU Project VMware サイバートラスト株式会社 レッドハット |
- | glibc に権限昇格の脆弱性 | - | CVE-2010-3847 | 2011-01-14 14:42 | 2010-10-26 | Show | GitHub Exploit DB Packet Storm |
| 252090 | 7.8 | 危険 | マイクロソフト アドビシステムズ 日本電気 |
- | Microsoft Visual Studio の ATL における終端文字列の処理に関する重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2009-2495 | 2011-01-14 14:33 | 2009-07-28 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 2, 2026, 4:08 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 197431 | 8.6 |
HIGH
Network |
cisco | ios_xr | Multiple vulnerabilities in the Distance Vector Multicast Routing Protocol (DVMRP) feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to either immediately crash the Int… |
CWE-770
Allocation of Resources Without Limits or Throttling |
CVE-2020-3569 | 2024-11-21 14:31 | 2020-09-23 | Show | GitHub Exploit DB Packet Storm |
| 197432 | 5.5 |
MEDIUM
Local |
qualcomm |
bitra_firmware kamorta_firmware nicobar_firmware qcs404_firmware qcs610_firmware rennell_firmware sa6155p_firmware sa8155p_firmware saipan_firmware sc7180_firmware sc818… |
u'During execution after Address Space Layout Randomization is turned on for QTEE, part of code is still mapped at known address including code segments' in Snapdragon Auto, Snapdragon Compute, Snapd… |
NVD-CWE-noinfo
|
CVE-2020-3679 | 2024-11-21 14:31 | 2020-09-9 | Show | GitHub Exploit DB Packet Storm |
| 197433 | 5.5 |
MEDIUM
Local |
qualcomm |
nicobar_firmware qcs405_firmware saipan_firmware sc8180x_firmware sdx55_firmware sm8150_firmware sm8250_firmware sxr2130_firmware |
Information can leak into userspace due to improper transfer of data from kernel to userspace in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mo… |
CWE-125
Out-of-bounds Read |
CVE-2020-3674 | 2024-11-21 14:31 | 2020-09-9 | Show | GitHub Exploit DB Packet Storm |
| 197434 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware kamorta_firmware mdm9607_firmware msm8917_firmware msm8953_firmware nicobar_firmware qcm2150_firmware qcs405_firmware qcs605_firmware qm215_firmware ren… |
Out of bound access can happen in MHI command process due to lack of check of command channel id value received from MHI devices in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapd… |
CWE-120
Classic Buffer Overflow |
CVE-2020-3656 | 2024-11-21 14:31 | 2020-09-9 | Show | GitHub Exploit DB Packet Storm |
| 197435 | 9.1 |
CRITICAL
Network |
qualcomm |
apq8053_firmware apq8096au_firmware apq8098_firmware kamorta_firmware mdm9150_firmware mdm9205_firmware mdm9206_firmware mdm9607_firmware mdm9625_firmware mdm9635m_firmware… |
u'Multiple Read overflows issue due to improper length check while decoding Generic NAS transport/EMM info' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT,… |
CWE-191
Integer Underflow (Wrap or Wraparound) |
CVE-2020-3634 | 2024-11-21 14:31 | 2020-09-9 | Show | GitHub Exploit DB Packet Storm |
| 197436 | 7.1 |
HIGH
Local |
qualcomm |
kamorta_firmware nicobar_firmware qcs605_firmware qcs610_firmware rennell_firmware sc7180_firmware sda660_firmware sdm630_firmware sdm636_firmware sdm660_firmware sdm670… |
u'Buffer over-read Issue in Q6 testbus framework due to diag packet length is not completely validated before accessing the field and leads to Information disclosure.' in Snapdragon Compute, Snapdrag… |
CWE-20 CWE-125 Improper Input Validation Out-of-bounds Read |
CVE-2020-3617 | 2024-11-21 14:31 | 2020-09-9 | Show | GitHub Exploit DB Packet Storm |
| 197437 | 6.5 |
MEDIUM
Adjacent |
qualcomm debian arista |
apq8053_firmware ipq4019_firmware ipq8064_firmware msm8909w_firmware msm8996au_firmware qca9531_firmware qcn5502_firmware qcs405_firmware sdx20_firmware sm6150_firmware … |
u'Specifically timed and handcrafted traffic can cause internal errors in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure over the… |
CWE-319
Cleartext Transmission of Sensitive Information |
CVE-2020-3702 | 2024-11-21 14:31 | 2020-09-8 | Show | GitHub Exploit DB Packet Storm |
| 197438 | 9.8 |
CRITICAL
Network |
qualcomm |
ipq5018_firmware ipq6018_firmware ipq8074_firmware kamorta_firmware nicobar_firmware qca6390_firmware qcn7605_firmware qcs404_firmware qcs405_firmware rennell_firmware s… |
u'Potential integer underflow while parsing Service Info and IPv6 link-local TLVs that comes as part of NDPE attribute' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Con… |
CWE-191
Integer Underflow (Wrap or Wraparound) |
CVE-2020-3675 | 2024-11-21 14:31 | 2020-09-8 | Show | GitHub Exploit DB Packet Storm |
| 197439 | 7.8 |
HIGH
Local |
qualcomm | msm8909w_firmware | u'Possible out of bound write in DSP driver code due to lack of check of data received from user' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdrago… |
CWE-20 CWE-787 Improper Input Validation Out-of-bounds Write |
CVE-2020-3648 | 2024-11-21 14:31 | 2020-09-8 | Show | GitHub Exploit DB Packet Storm |
| 197440 | 7.8 |
HIGH
Local |
qualcomm |
mdm9607_firmware qcs405_firmware sc8180x_firmware sdx55_firmware sm6150_firmware sm7150_firmware sm8150_firmware |
u'Potential buffer overflow when accessing npu debugfs node "off"/"log" with large buffer size' in Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM960… |
CWE-787
Out-of-bounds Write |
CVE-2020-3647 | 2024-11-21 14:31 | 2020-09-8 | Show | GitHub Exploit DB Packet Storm |