Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 7, 2026, 2:09 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 254201 | 10 | 危険 | マイクロソフト | - | Microsoft Windows の TCP/IP 実装における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-0239 | 2010-03-1 11:36 | 2010-02-9 | Show | GitHub Exploit DB Packet Storm |
| 254202 | 9.3 | 危険 | マイクロソフト | - | Microsoft Windows の SMB クライアント実装における権限昇格の脆弱性 |
CWE-362
競合状態 |
CVE-2010-0017 | 2010-03-1 11:35 | 2010-02-9 | Show | GitHub Exploit DB Packet Storm |
| 254203 | 9.3 | 危険 | マイクロソフト | - | Microsoft Windows の SMB クライアント実装における任意のコードを実行される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-0016 | 2010-03-1 11:35 | 2010-02-9 | Show | GitHub Exploit DB Packet Storm |
| 254204 | 5 | 警告 | 日立 | - | uCosminexus Portal Framework におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
- | 2010-02-26 11:36 | 2010-01-29 | Show | GitHub Exploit DB Packet Storm |
| 254205 | 2.6 | 注意 | tDiary開発プロジェクト | - | tDiary 付属のプラグイン tb-send.rb におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-0726 | 2010-02-25 15:03 | 2010-02-25 | Show | GitHub Exploit DB Packet Storm |
| 254206 | 4.3 | 警告 | サン・マイクロシステムズ | - | Sun ONE/iPlanet Web Server における HTTP リクエストを非表示にされる脆弱性 |
CWE-Other
その他 |
CVE-2003-1578 | 2010-02-25 12:36 | 2003-11-14 | Show | GitHub Exploit DB Packet Storm |
| 254207 | 2.6 | 注意 | サン・マイクロシステムズ | - | Sun ONE/iPlanet Web Server におけるログファイルに任意のテキストを挿入される脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2003-1577 | 2010-02-25 12:36 | 2003-11-14 | Show | GitHub Exploit DB Packet Storm |
| 254208 | 5 | 警告 | IBM | - | IBM WebSphere Application Server の Single Sign-on 機能における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2010-0563 | 2010-02-25 12:35 | 2010-02-5 | Show | GitHub Exploit DB Packet Storm |
| 254209 | 5 | 警告 | アップル | - | Apple Safari の WebKit における任意の Web サイトにリクエストされる脆弱性 |
CWE-Other
その他 |
CVE-2009-2841 | 2010-02-25 12:33 | 2009-11-11 | Show | GitHub Exploit DB Packet Storm |
| 254210 | 10 | 危険 | アップル | - | Apple Safari の WebKit における任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-3384 | 2010-02-25 12:33 | 2009-11-11 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 7, 2026, 4:22 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 223601 | 7.8 |
HIGH
Local |
qualcomm |
qcs605_firmware sdm439_firmware sdx24_firmware |
Out of bound access while allocating memory for an array in camera due to improper validation of elements parameters in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivi… |
CWE-129
Improper Validation of Array Index |
CVE-2019-14046 | 2024-11-21 13:25 | 2020-02-7 | Show | GitHub Exploit DB Packet Storm |
| 223602 | 7.8 |
HIGH
Local |
qualcomm |
qcs605_firmware sdm439_firmware sdm630_firmware sdm636_firmware sdm660_firmware sdx24_firmware |
Out of bound access due to access of uninitialized memory segment in an array of pointers while normal camera open close in Snapdragon Consumer IOT, Snapdragon Mobile in QCS605, SDM439, SDM630, SDM63… |
CWE-129 CWE-908 Improper Validation of Array Index Use of Uninitialized Resource |
CVE-2019-14044 | 2024-11-21 13:25 | 2020-02-7 | Show | GitHub Exploit DB Packet Storm |
| 223603 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8096au_firmware apq8098_firmware mdm9206_firmware mdm9207c_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware… |
Possibility of use-after-free and double free because of not marking buffer as NULL after freeing can lead to dangling pointer access in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Elect… |
CWE-415 CWE-416 Double Free Use After Free |
CVE-2019-14055 | 2024-11-21 13:25 | 2020-02-7 | Show | GitHub Exploit DB Packet Storm |
| 223604 | 7.8 |
HIGH
Local |
qualcomm |
apq8017_firmware apq8053_firmware apq8096au_firmware mdm9206_firmware mdm9207c_firmware mdm9607_firmware mdm9640_firmware msm8953_firmware qcn7605_firmware qcs605_firmware<… |
Stage-2 fault will occur while writing to an ION system allocation which has been assigned to non-HLOS memory which is non-standard in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electro… |
CWE-617
Reachable Assertion |
CVE-2019-14049 | 2024-11-21 13:25 | 2020-02-7 | Show | GitHub Exploit DB Packet Storm |
| 223605 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8096au_firmware apq8098_firmware mdm9206_firmware mdm9207c_firmware md9607_firmware mdm9640_firmware mdm9650_firmware<… |
During listener modified response processing, a buffer overrun occurs due to lack of buffer size verification when updating message buffer with physical address information in Snapdragon Auto, Snapdr… |
CWE-120
Classic Buffer Overflow |
CVE-2019-14041 | 2024-11-21 13:25 | 2020-02-7 | Show | GitHub Exploit DB Packet Storm |
| 223606 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8096au_firmware apq8098_firmware mdm9150_firmware mdm9206_firmware mdm9207c_firmware mdm9607_firmware mdm9640_firmware… |
Using memory after being freed in qsee due to wrong implementation can lead to unexpected behavior such as execution of unknown code in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, S… |
CWE-416
Use After Free |
CVE-2019-14040 | 2024-11-21 13:25 | 2020-02-7 | Show | GitHub Exploit DB Packet Storm |
| 223607 | 7.8 |
HIGH
Local |
qualcomm |
apq8053_firmware apq8096au_firmware apq8098_firmware msm8909w_firmware msm8917_firmware msm8920_firmware msm8937_firmware msm8940_firmware msm8953_firmware msm8996au_firmwa… |
APKs without proper permission may bind to CallEnhancementService and can lead to unauthorized access to call status in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Indust… |
CWE-276
Incorrect Default Permissions |
CVE-2019-14002 | 2024-11-21 13:25 | 2020-02-7 | Show | GitHub Exploit DB Packet Storm |
| 223608 | 7.8 |
HIGH
Local |
rockwellautomation | arena_simulation | A maliciously crafted program file opened by an unsuspecting user of Rockwell Automation Arena Simulation Software version 16.00.00 and earlier may result in the limited exposure of information relat… |
NVD-CWE-Other
|
CVE-2019-13521 | 2024-11-21 13:25 | 2020-01-28 | Show | GitHub Exploit DB Packet Storm |
| 223609 | 7.8 |
HIGH
Local |
rockwellautomation | arena_simulation | A maliciously crafted program file opened by an unsuspecting user of Rockwell Automation Arena Simulation Software version 16.00.00 and earlier may result in the limited exposure of information relat… |
CWE-843
Type Confusion |
CVE-2019-13519 | 2024-11-21 13:25 | 2020-01-28 | Show | GitHub Exploit DB Packet Storm |
| 223610 | 7.8 |
HIGH
Local |
qualcomm |
apq8064_firmware apq8096au_firmware ipq4019_firmware ipq8064_firmware ipq8074_firmware mdm9607_firmware mdm9615_firmware mdm9640_firmware msm8996au_firmware qcn7605_firmware |
Possible buffer overflow issue in error processing due to improper validation of array index value in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdrago… |
CWE-129
Improper Validation of Array Index |
CVE-2019-14036 | 2024-11-21 13:25 | 2020-01-21 | Show | GitHub Exploit DB Packet Storm |