Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 23, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 253161 | 7.2 | 危険 | マイクロソフト | - | Microsoft Windows XP および Windows Server 2003 の afd.sys における権限昇格の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-2005 | 2011-10-21 15:34 | 2011-10-11 | Show | GitHub Exploit DB Packet Storm |
| 253162 | 5 | 警告 | マイクロソフト | - | Microsoft Windows XP および Windows Server 2003 における権限昇格の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2011-2012 | 2011-10-21 15:31 | 2011-10-11 | Show | GitHub Exploit DB Packet Storm |
| 253163 | 9.3 | 危険 | マイクロソフト | - | Microsoft Forefront UAG の MicrosoftClient.jar における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2011-1969 | 2011-10-21 15:31 | 2011-10-11 | Show | GitHub Exploit DB Packet Storm |
| 253164 | 4.3 | 警告 | マイクロソフト | - | Microsoft Forefront UAG 2010 におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-1897 | 2011-10-21 15:30 | 2011-10-11 | Show | GitHub Exploit DB Packet Storm |
| 253165 | 4.3 | 警告 | マイクロソフト | - | Microsoft Forefront UAG 2010 におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-1896 | 2011-10-21 15:30 | 2011-10-11 | Show | GitHub Exploit DB Packet Storm |
| 253166 | 9.3 | 危険 | マイクロソフト | - | Microsoft Forefront UAG 2010 における CRLF インジェクションの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2011-1895 | 2011-10-21 15:28 | 2011-10-11 | Show | GitHub Exploit DB Packet Storm |
| 253167 | 9.3 | 危険 | マイクロソフト | - | Microsoft .NET Framework および Silverlight における任意のコードを実行される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-1253 | 2011-10-21 15:27 | 2011-10-11 | Show | GitHub Exploit DB Packet Storm |
| 253168 | 7.2 | 危険 | マイクロソフト | - | Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2011-2011 | 2011-10-21 15:26 | 2011-10-11 | Show | GitHub Exploit DB Packet Storm |
| 253169 | 9.3 | 危険 | マイクロソフト | - | Microsoft Windows の win32k.sys のバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2011-2003 | 2011-10-21 15:25 | 2011-10-11 | Show | GitHub Exploit DB Packet Storm |
| 253170 | 4.7 | 警告 | マイクロソフト | - | Microsoft Windows の win32k.sys におけるサービス運用妨害 (システムハング) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2011-2002 | 2011-10-21 15:25 | 2011-10-11 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 23, 2026, 4:08 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 195391 | 7.0 |
HIGH
Local |
qualcomm |
aqt1000_firmware qca6390_firmware qca6391_firmware qca6420_firmware qca6421_firmware qca6426_firmware qca6430_firmware qca6431_firmware qca6436_firmware qca6574au_firmware<… |
Possible memory corruption due to Improper handling of hypervisor unmap operations for concurrent memory operations in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consume… |
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition |
CVE-2021-1921 | 2024-11-21 14:45 | 2021-11-12 | Show | GitHub Exploit DB Packet Storm |
| 195392 | 7.8 |
HIGH
Local |
qualcomm |
aqt1000_firmware ar8035_firmware csrb31024_firmware qca6174a_firmware qca6390_firmware qca6391_firmware qca6420_firmware qca6421_firmware qca6426_firmware qca6430_firmware<… |
Possible integer overflow can occur due to improper length check while calculating count and grace period in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, S… |
CWE-190
Integer Overflow or Wraparound |
CVE-2021-1912 | 2024-11-21 14:45 | 2021-11-12 | Show | GitHub Exploit DB Packet Storm |
| 195393 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware apq8037_firmware apq8096au_firmware ar6003_firmware ar8035_firmware csr6030_firmware csrb31024_firmware fsm10055_firmwar… |
Possible heap overflow due to improper length check of domain while parsing the DNS response in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Indus… |
CWE-787
Out-of-bounds Write |
CVE-2021-1975 | 2024-11-21 14:45 | 2021-11-12 | Show | GitHub Exploit DB Packet Storm |
| 195394 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware apq8037_firmware apq8053_firmware apq8064au_firmware apq8096au_firmware aqt1000_firmware ar6003_firmware ar8035_firmware… |
A FTM Diag command can allow an arbitrary write into modem OS space in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2021-1973 | 2024-11-21 14:45 | 2021-11-12 | Show | GitHub Exploit DB Packet Storm |
| 195395 | 5.5 |
MEDIUM
Local |
qualcomm |
apq8009_firmware apq8009w_firmware apq8016_firmware apq8017_firmware apq8037_firmware apq8052_firmware apq8056_firmware apq8062_firmware apq8064au_firmware apq8076_firmware… |
Information disclosure through timing and power side-channels during mod exponentiation for RSA-CRT in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Co… |
CWE-203
Information Exposure Through Discrepancy |
CVE-2021-1924 | 2024-11-21 14:45 | 2021-11-12 | Show | GitHub Exploit DB Packet Storm |
| 195396 | 5.3 |
MEDIUM
Network |
qualcomm |
aqt1000_firmware ar8031_firmware ar8035_firmware ar9380_firmware csr8811_firmware csra6620_firmware csra6640_firmware csrb31024_firmware ipq4018_firmware ipq4028_firmware
Possible denial of service scenario can occur due to lack of length check on Channel Switch Announcement IE in beacon or probe response frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connec…
|
CWE-863
|
Incorrect Authorization
CVE-2021-1903
|
2024-11-21 14:45 |
2021-11-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 195397 | 7.1 |
HIGH
Adjacent |
commscope | arris_surfboard_sb8200_firmware | The password change utility for the Arris SurfBoard SB8200 can have safety measures bypassed that allow any logged-in user to change the administrator password. |
CWE-863
Incorrect Authorization |
CVE-2021-20119 | 2024-11-21 14:45 | 2021-11-10 | Show | GitHub Exploit DB Packet Storm |
| 195398 | 6.7 |
MEDIUM
Local |
tenable | nessus | Nessus versions 8.15.2 and earlier were found to contain a local privilege escalation vulnerability which could allow an authenticated, local administrator to run specific executables on the Nessus A… |
NVD-CWE-noinfo
|
CVE-2021-20135 | 2024-11-21 14:45 | 2021-11-3 | Show | GitHub Exploit DB Packet Storm |
| 195399 | 9.8 |
CRITICAL
Network |
zohocorp | manageengine_log360 | ManageEngine Log360 Builds < 5235 are affected by an improper access control vulnerability allowing database configuration overwrite. An unauthenticated remote attacker can send a specially crafted m… |
CWE-306
Missing Authentication for Critical Function |
CVE-2021-20136 | 2024-11-21 14:45 | 2021-11-2 | Show | GitHub Exploit DB Packet Storm |
| 195400 | 6.5 |
MEDIUM
Network |
apple |
watchos macos |
A logic issue was addressed with improved state management. This issue is fixed in watchOS 7.6, macOS Big Sur 11.5. Visiting a maliciously crafted webpage may lead to a system denial of service. |
NVD-CWE-noinfo
|
CVE-2021-1821 | 2024-11-21 14:45 | 2021-10-29 | Show | GitHub Exploit DB Packet Storm |