Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 7, 2026, 2:09 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 254241 | 7.5 | 危険 | サン・マイクロシステムズ サイバートラスト株式会社 VMware レッドハット |
- | Sun Java SE および OpenJDK における権限を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2009-3881 | 2010-02-23 11:51 | 2009-11-9 | Show | GitHub Exploit DB Packet Storm |
| 254242 | 5 | 警告 | サン・マイクロシステムズ サイバートラスト株式会社 VMware レッドハット |
- | Sun Java SE および OpenJDK の Abstract Window Toolkit (AWT) における情報漏えいの脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2009-3880 | 2010-02-23 11:51 | 2009-11-9 | Show | GitHub Exploit DB Packet Storm |
| 254243 | 7.5 | 危険 | サン・マイクロシステムズ サイバートラスト株式会社 VMware レッドハット |
- | Sun Java SE および OpenJDK の X11 および Win32GraphicsDevice サブシステムにおける getConfigurations 関数による配列の複製に関する脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-3879 | 2010-02-23 11:51 | 2009-11-9 | Show | GitHub Exploit DB Packet Storm |
| 254244 | 5 | 警告 | サン・マイクロシステムズ VMware レッドハット |
- | Sun Java SE の TrueType フォント解析機能におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-3729 | 2010-02-23 11:51 | 2009-11-9 | Show | GitHub Exploit DB Packet Storm |
| 254245 | 5 | 警告 | アップル サイバートラスト株式会社 VMware サン・マイクロシステムズ レッドハット |
- | Sun Java SE および OpenJDK の Java Runtime Environment (JRE) における ディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2009-3728 | 2010-02-23 11:51 | 2009-11-9 | Show | GitHub Exploit DB Packet Storm |
| 254246 | 9.3 | 危険 | マイクロソフト | - | Microsoft Internet Explorer における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-0248 | 2010-02-22 12:15 | 2010-01-21 | Show | GitHub Exploit DB Packet Storm |
| 254247 | 9.3 | 危険 | マイクロソフト | - | Microsoft Internet Explorer における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-0244 | 2010-02-22 12:15 | 2010-01-21 | Show | GitHub Exploit DB Packet Storm |
| 254248 | 9.3 | 危険 | マイクロソフト | - | Microsoft Internet Explorer の URL 検証における任意のローカルプログラムを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-0027 | 2010-02-22 12:15 | 2010-01-21 | Show | GitHub Exploit DB Packet Storm |
| 254249 | 9.3 | 危険 | マイクロソフト | - | Microsoft Internet Explorer における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-0247 | 2010-02-22 12:14 | 2010-01-21 | Show | GitHub Exploit DB Packet Storm |
| 254250 | 9.3 | 危険 | マイクロソフト | - | Microsoft Internet Explorer における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-0246 | 2010-02-22 12:14 | 2010-01-21 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 7, 2026, 4:22 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 210331 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8017_firmware aqt1000_firmware ar8035_firmware csrb31024_firmware msm8917_firmware pm215_firmware pm3003a_firmware pm4125_firmware pm4250_firmware pm439_firmware pm45… |
Possible buffer overflow while updating ikev2 parameters due to lack of check of input validation for certain parameters received from the ePDG server in Snapdragon Auto, Snapdragon Compute, Snapdrag… |
CWE-129
Improper Validation of Array Index |
CVE-2020-11163 | 2024-11-21 13:56 | 2021-02-22 | Show | GitHub Exploit DB Packet Storm |
| 210332 | 6.7 |
MEDIUM
Local |
qualcomm |
aqt1000_firmware pm3003a_firmware pm456_firmware pm6125_firmware pm6150_firmware pm6150a_firmware pm6150l_firmware pm6250_firmware pm6350_firmware pm660_firmware pm660a_… |
Use after free issue in audio modules while removing and freeing objects during list iteration due to incorrect usage of macro in Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile |
CWE-416
Use After Free |
CVE-2020-11147 | 2024-11-21 13:56 | 2021-02-22 | Show | GitHub Exploit DB Packet Storm |
| 210333 | 5.3 |
MEDIUM
Network |
zulip | zulip_desktop | Zulip Desktop before 5.0.0 allows attackers to perform recording via the webcam and microphone due to a missing permission request handler. |
CWE-862
Missing Authorization |
CVE-2020-10858 | 2024-11-21 13:56 | 2021-02-6 | Show | GitHub Exploit DB Packet Storm |
| 210334 | 9.8 |
CRITICAL
Network |
zulip | zulip_desktop | Zulip Desktop before 5.0.0 improperly uses shell.openExternal and shell.openItem with untrusted content, leading to remote code execution. |
NVD-CWE-noinfo
|
CVE-2020-10857 | 2024-11-21 13:56 | 2021-02-6 | Show | GitHub Exploit DB Packet Storm |
| 210335 | 7.5 |
HIGH
Network |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8076_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware ar8151_firmware ar9380_firmware c… |
Buffer over-read can happen when the buffer length received from response handlers is more than the size of the payload in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Con… |
CWE-20 CWE-125 Improper Input Validation Out-of-bounds Read |
CVE-2020-11119 | 2024-11-21 13:56 | 2021-01-21 | Show | GitHub Exploit DB Packet Storm |
| 210336 | 6.4 |
MEDIUM
Local |
qualcomm |
msm8909w sdm630 qca6174a qca6574au qca6584au qca9377 msm8976 msm8937 msm8952 apq8096au msm8996au msm8917 sd450 sd835 sdx24 qcs605 sd855 qcs405 ap… |
Race condition in HAL layer while processing callback objects received from HIDL due to lack of synchronization between accessing objects in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer I… |
CWE-362
Race Condition |
CVE-2020-11152 | 2024-11-21 13:56 | 2021-01-21 | Show | GitHub Exploit DB Packet Storm |
| 210337 | 6.4 |
MEDIUM
Local |
qualcomm |
qca6574au qca6584au sdx55 sa6155p qca6390 qcm4290 qcs4290 sa8150p sa8155 sa8195p sda429w sdx55m sm7250p sd675 pm3003a pm6125 pm6150 pm6150a pm615… |
Race condition occurs while calling user space ioctl from two different threads can results to use after free issue in video in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdrago… |
CWE-362 CWE-416 Race Condition Use After Free |
CVE-2020-11151 | 2024-11-21 13:56 | 2021-01-21 | Show | GitHub Exploit DB Packet Storm |
| 210338 | 6.7 |
MEDIUM
Local |
qualcomm |
qca6574au msm8917 qcs605 sd855 apq8017 apq8053 sdx55 msm8953 sa6155p qca6390 sdm429w sa8150p sa8155 sa8195p sda429w sdx55m sm7250p sd429 sd439
Use after free issue in HIDL while using callback to post event in Rx thread when internal mutex is not acquired and meantime close is triggered and callback instance is deleted in Snapdragon Auto, S…
|
CWE-416
|
Use After Free
CVE-2020-11148
|
2024-11-21 13:56 |
2021-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 210339 | 6.7 |
MEDIUM
Local |
qualcomm |
qca6174a qca6574au qca6584au qca9377 qca9379 qca6574 qca6564 sd210 sd205 sdx24 qcs605 sd855 qca4020 qcs405 sdx55 sa6155p qca6390 sdm429w sa6155
Out of bound memory access in camera driver due to improper validation on data coming from UMD which is used for offset manipulation of pointer in Snapdragon Auto, Snapdragon Compute, Snapdragon Conn…
|
CWE-119
|
Incorrect Access of Indexable Resource ('Range Error')
CVE-2020-11150
|
2024-11-21 13:56 |
2021-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 210340 | 6.7 |
MEDIUM
Local |
qualcomm |
mdm9650 sdx20 qca6174a qca6574au qca6584au qca9377 qca9379 apq8096au qca6574 qca6564 qcs605 qca4020 qcs405 apq8053 sd855 sdx24 sd205 sd210 qca639… |
Out of bound access due to usage of an out-of-range pointer offset in the camera driver. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industria… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2020-11149 | 2024-11-21 13:56 | 2021-01-21 | Show | GitHub Exploit DB Packet Storm |