Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 4, 2026, 4 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 252641 | 5.8 | 警告 | AnGuanJia | - | Android 用 AnGuanJia における SMS/MMS メッセージおよび連絡先リストを読まれる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-4773 | 2012-01-27 15:07 | 2012-01-25 | Show | GitHub Exploit DB Packet Storm |
| 252642 | 5.8 | 警告 | Qihoo 360 Technology | - | Android 用 360 KouXin における SMS メッセージおよび連絡先リストを読まれる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-4772 | 2012-01-27 15:06 | 2012-01-25 | Show | GitHub Exploit DB Packet Storm |
| 252643 | 5.8 | 警告 | Lucion Technologies | - | Android 用 Scan to PDF Free におけるスキャンされたファイルおよび Google アカウントを読まれる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-4771 | 2012-01-27 15:05 | 2012-01-25 | Show | GitHub Exploit DB Packet Storm |
| 252644 | 5.8 | 警告 | QIWI Wallet | - | Android 用 QIWI Wallet における金銭に関する情報を読まれる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-4770 | 2012-01-27 15:03 | 2012-01-25 | Show | GitHub Exploit DB Packet Storm |
| 252645 | 5.8 | 警告 | Qihoo 360 Technology | - | Android 用 360 MobileSafe における SMS メッセージおよび連絡先リストを読まれる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-4769 | 2012-01-27 14:56 | 2012-01-25 | Show | GitHub Exploit DB Packet Storm |
| 252646 | 5.8 | 警告 | Ming Software | - | Android 用 Ming Blacklist Free におけるブラックリストおよび連絡先リストを読まれる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-4705 | 2012-01-27 14:56 | 2012-01-25 | Show | GitHub Exploit DB Packet Storm |
| 252647 | 5.8 | 警告 | Voxofon LLC | - | Android 用 Voxofon における SMS 情報を読まれる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-4704 | 2012-01-27 14:54 | 2012-01-25 | Show | GitHub Exploit DB Packet Storm |
| 252648 | 5.8 | 警告 | Nathaniel Kh | - | Android 用 Limit My Call における通話履歴および連絡先リストを読まれる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-4703 | 2012-01-27 14:52 | 2012-01-25 | Show | GitHub Exploit DB Packet Storm |
| 252649 | 5.8 | 警告 | Nimbuzz | - | Android 用 Nimbuzz における連絡先リストを読まれる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-4702 | 2012-01-27 14:46 | 2012-01-25 | Show | GitHub Exploit DB Packet Storm |
| 252650 | 5.8 | 警告 | fa | - | Android 用 CallConfirm における allow/block リストを読まれる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-4701 | 2012-01-27 14:45 | 2012-01-25 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 5, 2026, 4:11 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 202601 | 9.8 |
CRITICAL
Network |
hp | intelligent_management_center | A deployselectsoftware expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07). |
CWE-917
Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection') |
CVE-2020-7148 | 2024-11-21 14:36 | 2020-10-20 | Show | GitHub Exploit DB Packet Storm |
| 202602 | 9.8 |
CRITICAL
Network |
hp | intelligent_management_center | A deployselectbootrom expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07). |
CWE-917
Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection') |
CVE-2020-7147 | 2024-11-21 14:36 | 2020-10-20 | Show | GitHub Exploit DB Packet Storm |
| 202603 | 9.8 |
CRITICAL
Network |
hp | intelligent_management_center | A devgroupselect expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07). |
CWE-917
Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection') |
CVE-2020-7146 | 2024-11-21 14:36 | 2020-10-20 | Show | GitHub Exploit DB Packet Storm |
| 202604 | 9.8 |
CRITICAL
Network |
hp | intelligent_management_center | A chooseperfview expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07). |
CWE-917
Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection') |
CVE-2020-7145 | 2024-11-21 14:36 | 2020-10-20 | Show | GitHub Exploit DB Packet Storm |
| 202605 | 9.8 |
CRITICAL
Network |
hp | intelligent_management_center | A comparefilesresult expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07). |
CWE-917
Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection') |
CVE-2020-7144 | 2024-11-21 14:36 | 2020-10-20 | Show | GitHub Exploit DB Packet Storm |
| 202606 | 9.8 |
CRITICAL
Network |
hp | intelligent_management_center | A faultdevparasset expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07). |
CWE-917
Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection') |
CVE-2020-7143 | 2024-11-21 14:36 | 2020-10-20 | Show | GitHub Exploit DB Packet Storm |
| 202607 | 9.8 |
CRITICAL
Network |
hp | intelligent_management_center | A eventinfo_content expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07). |
CWE-917
Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection') |
CVE-2020-7142 | 2024-11-21 14:36 | 2020-10-20 | Show | GitHub Exploit DB Packet Storm |
| 202608 | 9.8 |
CRITICAL
Network |
hp | intelligent_management_center | A adddevicetoview expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07). |
CWE-917
Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection') |
CVE-2020-7141 | 2024-11-21 14:36 | 2020-10-20 | Show | GitHub Exploit DB Packet Storm |
| 202609 | 5.5 |
MEDIUM
Local |
blackberry | unified_endpoint_manager | An improper input validation vulnerability in the UEM Core of BlackBerry UEM version(s) 12.13.0, 12.12.1a QF2 (and earlier), and 12.11.1 QF3 (and earlier) could allow an attacker to potentially cause… |
CWE-20
Improper Input Validation |
CVE-2020-6933 | 2024-11-21 14:36 | 2020-10-14 | Show | GitHub Exploit DB Packet Storm |
| 202610 | 9.8 |
CRITICAL
Network |
zte | zxone_19700_snpe_firmware | A ZTE product is impacted by the improper access control vulnerability. Due to lack of an authentication protection mechanism in the program, attackers could use this vulnerability to gain access rig… |
CWE-306
Missing Authentication for Critical Function |
CVE-2020-6875 | 2024-11-21 14:36 | 2020-10-6 | Show | GitHub Exploit DB Packet Storm |