Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 4, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 254001 | 6.8 | 警告 | IBM | - | IBM WebSphere Application Server (WAS) におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2009-2746 | 2010-01-12 14:48 | 2009-11-13 | Show | GitHub Exploit DB Packet Storm |
| 254002 | 5 | 警告 | アップル | - | Apple Safari におけるローカル HTML ファイルを読まれる脆弱性 |
CWE-Other
その他 |
CVE-2009-2842 | 2010-01-7 12:09 | 2009-11-11 | Show | GitHub Exploit DB Packet Storm |
| 254003 | 5.5 | 警告 | シックス・アパート株式会社 | - | Movable Type におけるアクセス制限回避の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
- | 2010-01-6 15:01 | 2010-01-6 | Show | GitHub Exploit DB Packet Storm |
| 254004 | 9.3 | 危険 | マイクロソフト | - | Microsoft Office Word および Open XML File Format Converter における、任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3135 | 2010-01-6 14:44 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 254005 | 5 | 警告 | トレンドマイクロ 日本電気 Apache Software Foundation 富士通 サイバートラスト株式会社 サン・マイクロシステムズ ヒューレット・パッカード レッドハット |
- | Apache Tomcat の Apache HTTP Server との組合せによるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2007-0450 | 2010-01-6 14:43 | 2007-03-16 | Show | GitHub Exploit DB Packet Storm |
| 254006 | 9.3 | 危険 | マイクロソフト | - | Microsoft Office Excel および Open XML File Format Converter におけるオブジェクトを含むスプレッドシートの処理に関する任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3133 | 2010-01-5 16:18 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 254007 | 9.3 | 危険 | マイクロソフト | - | Microsoft Office Excel および Open XML File Format Converter における BIFF レコードの処理に関する任意のコードを実行される脆弱性 |
CWE-119
バッファエラー |
CVE-2009-3130 | 2010-01-5 16:18 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 254008 | 9.3 | 危険 | マイクロソフト | - | 複数の Microsoft 製品におけるエクセルファイルのフォーマットの処理に関する任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3134 | 2010-01-5 16:18 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 254009 | 9.3 | 危険 | マイクロソフト | - | 複数の Microsoft 製品における計算式を含むスプレッドシートの処理に関する任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3132 | 2010-01-5 16:18 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 254010 | 9.3 | 危険 | マイクロソフト | - | 複数の Microsoft 製品におけるセルに含まれる計算式の処理に関する任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3131 | 2010-01-5 16:17 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 4, 2026, 4:06 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 222561 | 7.5 |
HIGH
Network |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8064_firmware apq8096au_firmware apq8098_firmware mdm9206_firmware mdm9207c_firmware mdm9607_firmware msm8905_firmware… |
Null-pointer dereference can occur while accessing the segment element info when it is not allocated and assigned in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer … |
CWE-476
NULL Pointer Dereference |
CVE-2019-14061 | 2024-11-21 13:26 | 2020-03-5 | Show | GitHub Exploit DB Packet Storm |
| 222562 | 9.8 |
CRITICAL
Network |
microvirt | memu | An issue was discovered in Microvirt MEmu all versions prior to 7.0.2. A guest Android operating system inside the MEmu emulator contains a /system/bin/systemd binary that is run with root privileges… |
CWE-78
OS Command |
CVE-2019-14514 | 2024-11-21 13:26 | 2020-02-11 | Show | GitHub Exploit DB Packet Storm |
| 222563 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware mdm9206_firmware mdm9207c_firmware mdm9607_firmware qcs605_firmware sdm429w_firmware sdx24_firmware sm8150_firmware sxr1130_firmware |
Possible use after free issue while CRM is accessing the link pointer from device private data due to lack of resource protection in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snap… |
CWE-416
Use After Free |
CVE-2019-14088 | 2024-11-21 13:26 | 2020-02-7 | Show | GitHub Exploit DB Packet Storm |
| 222564 | 9.1 |
CRITICAL
Network |
qualcomm |
ipq4019_firmware ipq6018_firmware ipq8064_firmware ipq8074_firmware mdm9607_firmware nicobar_firmware qcs405_firmware rennell_firmware sa6155p_firmware saipan_firmware s… |
Out of bound access due to Invalid inputs to dapm mux settings which results into kernel failure in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon… |
CWE-125
Out-of-bounds Read |
CVE-2019-14063 | 2024-11-21 13:26 | 2020-02-7 | Show | GitHub Exploit DB Packet Storm |
| 222565 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8098_firmware ipq4019_firmware ipq6018_firmware ipq8064_firmware ipq8074_firmware mdm9150_firmware mdm9206_firmware
Uninitialized stack data gets used If memory is not allocated for blob or if the allocated blob is less than the struct size required due to lack of check of return value for read or write blob in Sn…
|
CWE-824
|
Access of Uninitialized Pointer
CVE-2019-14060
|
2024-11-21 13:26 |
2020-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 222566 | 9.1 |
CRITICAL
Network |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8064_firmware apq8096au_firmware apq8098_firmware mdm9206_firmware mdm9207c_firmware mdm9607_firmware msm8905_firmware… |
Buffer Over read of codec private data while parsing an mkv file due to lack of check of buffer size before read in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer I… |
CWE-125
Out-of-bounds Read |
CVE-2019-14057 | 2024-11-21 13:26 | 2020-02-7 | Show | GitHub Exploit DB Packet Storm |
| 222567 | 5.5 |
MEDIUM
Local |
intel | chipset_inf_utility | Improper access control in the installer for Intel(R) Chipset Device Software INF Utility before version 10.1.18 may allow an authenticated user to potentially enable denial of service via local acce… |
NVD-CWE-noinfo
|
CVE-2019-14596 | 2024-11-21 13:26 | 2020-01-18 | Show | GitHub Exploit DB Packet Storm |
| 222568 | 7.5 |
HIGH
Network |
ricoh |
sp_c250sf_firmware sp_c252sf_firmware sp_c250dn_firmware sp_c252dn_firmware sp_330sn_firmware sp_330sfn_firmware sp_330dn_firmware sp_3710sf_firmware sp_3710dn_firmware sp_… |
Ricoh SP C250DN 1.06 devices have Incorrect Access Control (issue 2 of 2). |
NVD-CWE-noinfo
|
CVE-2019-14306 | 2024-11-21 13:26 | 2020-01-11 | Show | GitHub Exploit DB Packet Storm |
| 222569 | 8.8 |
HIGH
Network |
ricoh |
sp_c250sf_firmware sp_c252sf_firmware sp_c250dn_firmware sp_c252dn_firmware m_c250fw_firmware m_c250fwb_firmware p_c300w_firmware p_c301w_firmware sp_330sn_firmware sp_330s… |
Ricoh SP C250DN 1.06 devices allow CSRF. |
CWE-352
Origin Validation Error |
CVE-2019-14304 | 2024-11-21 13:26 | 2020-01-11 | Show | GitHub Exploit DB Packet Storm |
| 222570 | 6.8 |
MEDIUM
Physics |
ricoh |
sp_c250sf_firmware sp_c252sf_firmware sp_c250dn_firmware sp_c252dn_firmware sp_330sn_firmware sp_330sfn_firmware sp_330dn_firmware sp_3710sf_firmware sp_3710dn_firmware sp_… |
On Ricoh SP C250DN 1.06 devices, a debug port can be used. |
NVD-CWE-noinfo
|
CVE-2019-14302 | 2024-11-21 13:26 | 2020-01-11 | Show | GitHub Exploit DB Packet Storm |