Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 6, 2026, 2 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 253931 | 7.5 | 危険 | 日立 | - | Cosminexus、Processing Kit for XML および Hitachi Developer's Kit for Java におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
- | 2010-02-2 11:42 | 2009-12-22 | Show | GitHub Exploit DB Packet Storm |
| 253932 | 4.3 | 警告 | VMware | - | 複数の VMware 製品におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-3731 | 2010-02-1 11:52 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
| 253933 | 10 | 危険 | サイバートラスト株式会社 Linux |
- | Linux kernel および gxsnmp パッケージの asn1 の実装における任意のコードを実行される脆弱性 |
CWE-119
バッファエラー |
CVE-2008-1673 | 2010-02-1 11:51 | 2008-06-10 | Show | GitHub Exploit DB Packet Storm |
| 253934 | 10 | 危険 | ヒューレット・パッカード | - | 複数の Symantec 製品の VRTSweb における任意のコードを実行される脆弱性 |
CWE-287
不適切な認証 |
CVE-2009-3027 | 2010-02-1 11:51 | 2009-12-8 | Show | GitHub Exploit DB Packet Storm |
| 253935 | 9.3 | 危険 | KDE project Glyph & Cog, LLC GNOME Project サイバートラスト株式会社 レッドハット |
- | Xpdf、gpdf および kpdf の FoFiType1::parse 関数における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-4035 | 2010-01-29 09:54 | 2009-12-16 | Show | GitHub Exploit DB Packet Storm |
| 253936 | 7.8 | 危険 | Mozilla Foundation | - | Mozilla Firefox/SeaMonkey の GeckoActiveXObject 関数における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2009-3987 | 2010-01-29 09:54 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
| 253937 | 7.6 | 危険 | サイバートラスト株式会社 Mozilla Foundation レッドハット |
- | Mozilla Firefox/SeaMonkey における任意の JavaScript を実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3986 | 2010-01-29 09:54 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
| 253938 | 6.8 | 警告 | サイバートラスト株式会社 Mozilla Foundation レッドハット |
- | Mozilla Firefox/SeaMonkey におけるコンテンツを偽装される脆弱性 |
CWE-Other
その他 |
CVE-2009-3985 | 2010-01-29 09:53 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
| 253939 | 6.8 | 警告 | サイバートラスト株式会社 Mozilla Foundation レッドハット |
- | Mozilla Firefox/SeaMonkey における http URL または file URL の SSL インジケータを偽装される脆弱性 |
CWE-Other
その他 |
CVE-2009-3984 | 2010-01-29 09:53 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
| 253940 | 6.8 | 警告 | サイバートラスト株式会社 Mozilla Foundation レッドハット |
- | Mozilla Firefox/SeaMonkey における認証されたリクエストを任意のアプリケーションに送信される脆弱性 |
CWE-Other
その他 |
CVE-2009-3983 | 2010-01-29 09:53 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 6, 2026, 4:08 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 209971 | 7.1 |
HIGH
Local |
qualcomm |
apq8053_firmware apq8064au_firmware apq8096au_firmware ar8031_firmware ar8151_firmware csra6620_firmware csra6640_firmware mdm9650_firmware msm8996au_firmware pm215_firmwar… |
Out-of-bounds memory access can occur while calculating alignment requirements for a negative width from external components in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdrago… |
CWE-125
Out-of-bounds Read |
CVE-2020-11161 | 2024-11-21 13:56 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |
| 209972 | 6.7 |
MEDIUM
Local |
qualcomm |
apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware csra6620_firmware csra6640_firmware mdm9650_firmware pm215_firmware pm3003a_firmware pm6125_firmware … |
Resource leakage issue during dci client registration due to reference count is not decremented if dci client registration fails in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapd… |
CWE-190
Integer Overflow or Wraparound |
CVE-2020-11160 | 2024-11-21 13:56 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |
| 209973 | 9.8 |
CRITICAL
Network |
qualcomm |
aqt1000_firmware ar8031_firmware ar8035_firmware csr8811_firmware csra6620_firmware csra6640_firmware ipq5010_firmware ipq5018_firmware ipq6000_firmware ipq6005_firmware
Possible stack out of bound write might happen due to time bitmap length and bit duration fields of the attributes like NAN ranging setup attribute inside a NAN management frame are not Properly vali…
|
CWE-787 |
CWE-129 Out-of-bounds Write Improper Validation of Array Index
CVE-2020-11134
|
2024-11-21 13:56 |
2021-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 209974 | 9.1 |
CRITICAL
Network |
qualcomm |
apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware ar9380_firmware csr8811_firmware csra6620_firmware csra6640_firmware ipq4018_firmware ipq4028_firmware
Possible out of bound read while WLAN frame parsing due to lack of check for body and header length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Co…
|
CWE-125
|
Out-of-bounds Read
CVE-2020-11126
|
2024-11-21 13:56 |
2021-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 209975 | 7.1 |
HIGH
Network |
infinispan redhat netapp |
infinispan-server-rest data_grid oncommand_insight |
A flaw was found in Infinispan version 10, where it is possible to perform various actions that could have side effects using GET requests. This flaw allows an attacker to perform a cross-site reques… | - | CVE-2020-10771 | 2024-11-21 13:56 | 2021-06-2 | Show | GitHub Exploit DB Packet Storm |
| 209976 | 5.5 |
MEDIUM
Local |
linux | linux_kernel | A memory disclosure flaw was found in the Linux kernel's versions before 4.18.0-193.el8 in the sysctl subsystem when reading the /proc/sys/kernel/rh_features file. This flaw allows a local user to re… | - | CVE-2020-10774 | 2024-11-21 13:56 | 2021-05-28 | Show | GitHub Exploit DB Packet Storm |
| 209977 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8017_firmware aqt1000_firmware ar8035_firmware csrb31024_firmware msm8917_firmware pm215_firmware pm3003a_firmware pm4125_firmware pm4250_firmware pm439_firmware pm45… |
Possible buffer overflow while updating ikev2 parameters due to lack of check of input validation for certain parameters received from the ePDG server in Snapdragon Auto, Snapdragon Compute, Snapdrag… |
CWE-129
Improper Validation of Array Index |
CVE-2020-11163 | 2024-11-21 13:56 | 2021-02-22 | Show | GitHub Exploit DB Packet Storm |
| 209978 | 6.7 |
MEDIUM
Local |
qualcomm |
aqt1000_firmware pm3003a_firmware pm456_firmware pm6125_firmware pm6150_firmware pm6150a_firmware pm6150l_firmware pm6250_firmware pm6350_firmware pm660_firmware pm660a_… |
Use after free issue in audio modules while removing and freeing objects during list iteration due to incorrect usage of macro in Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile |
CWE-416
Use After Free |
CVE-2020-11147 | 2024-11-21 13:56 | 2021-02-22 | Show | GitHub Exploit DB Packet Storm |
| 209979 | 5.3 |
MEDIUM
Network |
zulip | zulip_desktop | Zulip Desktop before 5.0.0 allows attackers to perform recording via the webcam and microphone due to a missing permission request handler. |
CWE-862
Missing Authorization |
CVE-2020-10858 | 2024-11-21 13:56 | 2021-02-6 | Show | GitHub Exploit DB Packet Storm |
| 209980 | 9.8 |
CRITICAL
Network |
zulip | zulip_desktop | Zulip Desktop before 5.0.0 improperly uses shell.openExternal and shell.openItem with untrusted content, leading to remote code execution. |
NVD-CWE-noinfo
|
CVE-2020-10857 | 2024-11-21 13:56 | 2021-02-6 | Show | GitHub Exploit DB Packet Storm |