Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 8, 2026, noon
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 254361 | 6.8 | 警告 | サイバートラスト株式会社 Mozilla Foundation レッドハット |
- | Mozilla Firefox/SeaMonkey における認証されたリクエストを任意のアプリケーションに送信される脆弱性 |
CWE-Other
その他 |
CVE-2009-3983 | 2010-01-29 09:53 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
| 254362 | 9.3 | 危険 | Mozilla Foundation | - | 複数の Mozilla 製品の libtheora における任意のコードを実行される脆弱性 |
CWE-189
数値処理の問題 |
CVE-2009-3389 | 2010-01-28 12:16 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
| 254363 | 9.3 | 危険 | Mozilla Foundation | - | 複数の Mozilla 製品の liboggplay における任意のコードを実行される脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2009-3388 | 2010-01-28 12:16 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
| 254364 | 9.3 | 危険 | Mozilla Foundation | - | 複数の Mozilla 製品の JavaScript エンジンにおける任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-3982 | 2010-01-28 12:16 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
| 254365 | 9.3 | 危険 | サイバートラスト株式会社 Mozilla Foundation レッドハット |
- | 複数の Mozilla 製品のブラウザエンジンにおける任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-3981 | 2010-01-28 12:16 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
| 254366 | 9.3 | 危険 | Mozilla Foundation | - | 複数の Mozilla 製品のブラウザエンジンにおける任意のコードを実行される脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2009-3980 | 2010-01-28 12:15 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
| 254367 | 10 | 危険 | アドビシステムズ | - | Adobe Flash Media Server におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2009-3792 | 2010-01-27 10:02 | 2009-12-18 | Show | GitHub Exploit DB Packet Storm |
| 254368 | 5 | 警告 | アドビシステムズ | - | Adobe Flash Media Server におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-3791 | 2010-01-27 10:02 | 2009-12-18 | Show | GitHub Exploit DB Packet Storm |
| 254369 | 5.8 | 警告 | PostgreSQL.org ターボリナックス サン・マイクロシステムズ |
- | PostgreSQL における X.509 証明書の処理に関する任意の SSL-based PostgreSQL サーバになりすまされる脆弱性 |
CWE-310
暗号の問題 |
CVE-2009-4034 | 2010-01-26 11:48 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
| 254370 | 7.8 | 危険 | サイバートラスト株式会社 Linux レッドハット |
- | Linux kernel の do_insn_fetch 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2009-4031 | 2010-01-26 11:47 | 2009-11-29 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 8, 2026, 4:54 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 223511 | 4.9 |
MEDIUM
Network |
tianocore | edk2 | Improper authentication in EDK II may allow a privileged user to potentially enable information disclosure via network access. |
CWE-287
Improper Authentication |
CVE-2019-14553 | 2024-11-21 13:26 | 2020-11-24 | Show | GitHub Exploit DB Packet Storm |
| 223512 | 5.7 |
MEDIUM
Adjacent |
intel debian |
bios debian_linux |
Insufficient control flow management in BIOS firmware for 8th, 9th, 10th Generation Intel(R) Core(TM), Intel(R) Celeron(R) Processor 4000 & 5000 Series Processors may allow an authenticated user to p… |
NVD-CWE-Other
|
CVE-2019-14558 | 2024-11-21 13:26 | 2020-10-5 | Show | GitHub Exploit DB Packet Storm |
| 223513 | 8.0 |
HIGH
Adjacent |
intel | bios | Buffer overflow in BIOS firmware for 8th, 9th, 10th Generation Intel(R) Core(TM), Intel(R) Celeron(R) Processor 4000 & 5000 Series Processors may allow an authenticated user to potentially enable ele… |
CWE-120
Classic Buffer Overflow |
CVE-2019-14557 | 2024-11-21 13:26 | 2020-10-5 | Show | GitHub Exploit DB Packet Storm |
| 223514 | 4.4 |
MEDIUM
Local |
intel | bios | Improper initialization in BIOS firmware for 8th, 9th, 10th Generation Intel(R) Core(TM), Intel(R) Celeron(R) Processor 4000 & 5000 Series Processors may allow a privileged user to potentially enable… |
CWE-665
Improper Initialization |
CVE-2019-14556 | 2024-11-21 13:26 | 2020-10-5 | Show | GitHub Exploit DB Packet Storm |
| 223515 | 7.0 |
HIGH
Local |
qualcomm |
ipq6018_firmware kamorta_firmware mdm9205_firmware mdm9607_firmware nicobar_firmware qcs404_firmware qcs405_firmware qcs605_firmware qcs610_firmware rennell_firmware sa4… |
u'While processing SMCInvoke asynchronous message header, message count is modified leading to a TOCTOU race condition and lead to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdrago… |
CWE-787 CWE-367 Out-of-bounds Write Time-of-check Time-of-use (TOCTOU) Race Condition |
CVE-2019-14119 | 2024-11-21 13:26 | 2020-09-8 | Show | GitHub Exploit DB Packet Storm |
| 223516 | 7.8 |
HIGH
Local |
qualcomm |
bitra_firmware mdm9607_firmware qcs405_firmware saipan_firmware sc8180x_firmware sdx55_firmware sm6150_firmware sm7150_firmware sm8150_firmware sm8250_firmware sxr2130_f… |
u'Whenever the page list is updated via privileged user, the previous list elements are freed but are not deleted from the list which results in a use after free causing an unhandled page fault excep… |
CWE-416
Use After Free |
CVE-2019-14117 | 2024-11-21 13:26 | 2020-09-8 | Show | GitHub Exploit DB Packet Storm |
| 223517 | 5.5 |
MEDIUM
Local |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8076_firmware apq8096au_firmware apq8098_firmware kamorta_firmware mdm9150_firmware mdm9205_firmware mdm9206_firmware<… |
u'Information disclosure issue occurs as in current logic as secure touch is released without clearing the display session which can result in user reading the secure input while touch is in non-secu… |
CWE-459
Incomplete Cleanup |
CVE-2019-14115 | 2024-11-21 13:26 | 2020-09-8 | Show | GitHub Exploit DB Packet Storm |
| 223518 | 7.8 |
HIGH
Local |
qualcomm |
kamorta_firmware nicobar_firmware qcs404_firmware qcs610_firmware rennell_firmware sa515m_firmware sa6155p_firmware sc7180_firmware sc8180x_firmware sdx55_firmware sm615… |
u'Keymaster attestation key and device IDs provisioning which is a one time process is incorrectly allowed to be re-provisioned after a user data erase or a factory reset' in Snapdragon Auto, Snapdra… |
CWE-327
Use of a Broken or Risky Cryptographic Algorithm |
CVE-2019-14089 | 2024-11-21 13:26 | 2020-09-8 | Show | GitHub Exploit DB Packet Storm |
| 223519 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8076_firmware apq8096au_firmware apq8098_firmware bitra_firmware ipq6018_firmware ipq8074_firmware kamorta_firmware
u'Heap overflow in diag command handler due to lack of check of packet length received from user' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Conn…
|
CWE-20 |
CWE-787 CWE-190 Improper Input Validation Out-of-bounds Write Integer Overflow or Wraparound
CVE-2019-14074
|
2024-11-21 13:26 |
2020-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 223520 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8098_firmware kamorta_firmware mdm9150_firmware mdm9205_firmware mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8905_firmware msm8909_firmware
u'Pointer double free in HavenSvc due to not setting the pointer to NULL after freeing it' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobil…
|
CWE-415
|
Double Free
CVE-2019-14065
|
2024-11-21 13:26 |
2020-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|