Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 7, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 254411 | 6.8 | 警告 | アップル GNU Project サン・マイクロシステムズ サイバートラスト株式会社 レッドハット |
- | GNU tar の contains_dot_dot() 関数におけるディレクトリトラバーサルの脆弱性 | - | CVE-2007-4131 | 2010-01-18 12:21 | 2007-08-23 | Show | GitHub Exploit DB Packet Storm |
| 254412 | 4.6 | 警告 | IBM | - | IBM DB2 の dasauto における管理者権限を持たないユーザが実行可能な脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2009-4150 | 2010-01-15 14:10 | 2009-12-2 | Show | GitHub Exploit DB Packet Storm |
| 254413 | 2.1 | 注意 | サン・マイクロシステムズ | - | Sun Solaris の ldap_cachemgr におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2009-4080 | 2010-01-15 14:10 | 2009-11-24 | Show | GitHub Exploit DB Packet Storm |
| 254414 | 5 | 警告 | サン・マイクロシステムズ | - | Sun Solaris の sshd におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-4075 | 2010-01-15 14:09 | 2009-11-23 | Show | GitHub Exploit DB Packet Storm |
| 254415 | 2.6 | 注意 | オラクル | - | Oracle Application Server におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
- | 2010-01-14 15:01 | 2010-01-14 | Show | GitHub Exploit DB Packet Storm |
| 254416 | 9.3 | 危険 | マイクロソフト | - | Microsoft Internet Explorer に脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3672 | 2010-01-14 12:08 | 2009-11-25 | Show | GitHub Exploit DB Packet Storm |
| 254417 | 9.3 | 危険 | サン・マイクロシステムズ VMware |
- | Sun Java SE の java.lang パッケージにおける脆弱性 |
CWE-362
競合状態 |
CVE-2009-2724 | 2010-01-14 12:08 | 2009-08-10 | Show | GitHub Exploit DB Packet Storm |
| 254418 | 10 | 危険 | サン・マイクロシステムズ VMware |
- | Sun Java SE の Provider クラスにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-2721 | 2010-01-14 12:08 | 2009-08-10 | Show | GitHub Exploit DB Packet Storm |
| 254419 | 5 | 警告 | 有限会社シースリー | - | WebCalenderC3 におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2010-0348 | 2010-01-12 15:01 | 2010-01-12 | Show | GitHub Exploit DB Packet Storm |
| 254420 | 4.3 | 警告 | 有限会社シースリー | - | WebCalenderC3 におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-0349 | 2010-01-12 15:00 | 2010-01-12 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 7, 2026, 4:22 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 210181 | 6.0 |
MEDIUM
Local |
qualcomm |
apq8017_firmware apq8037_firmware apq8053_firmware apq8064au_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware ar8151_firmware csra6620_firmware<… |
Out of bound read can happen in Widevine TA while copying data to buffer from user data due to lack of check of buffer length received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity,… |
CWE-125
Out-of-bounds Read |
CVE-2020-11293 | 2024-11-21 13:57 | 2021-05-7 | Show | GitHub Exploit DB Packet Storm |
| 210182 | 7.8 |
HIGH
Local |
qualcomm |
aqt1000_firmware ar8031_firmware ar8035_firmware csra6620_firmware csra6640_firmware csrb31024_firmware fsm10055_firmware fsm10056_firmware mdm9205_firmware pm3003a_firmwar… |
Out of bound write can occur in playready while processing command due to lack of input validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2020-11288 | 2024-11-21 13:57 | 2021-05-7 | Show | GitHub Exploit DB Packet Storm |
| 210183 | 9.1 |
CRITICAL
Network |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware apq8037_firmware apq8053_firmware apq8084_firmware apq8096au_firmware aqt1000_firmware ar8151_firmware csr6030_firmware<… |
Buffer over-read while unpacking the RTCP packet we may read extra byte if wrong length is provided in RTCP packets in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consume… |
CWE-125
Out-of-bounds Read |
CVE-2020-11285 | 2024-11-21 13:57 | 2021-05-7 | Show | GitHub Exploit DB Packet Storm |
| 210184 | 7.5 |
HIGH
Network |
qualcomm |
aqt1000_firmware csrb31024_firmware fsm10055_firmware fsm10056_firmware pm3003a_firmware pm456_firmware pm6125_firmware pm6150_firmware pm6150a_firmware pm6150l_firmware
Denial of service in MODEM due to assert to the invalid configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon M…
|
CWE-617
|
Reachable Assertion
CVE-2020-11274
|
2024-11-21 13:57 |
2021-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 210185 | 7.5 |
HIGH
Network |
qualcomm |
csrb31024_firmware pm3003a_firmware pm6150a_firmware pm6150l_firmware pm6350_firmware pm7150a_firmware pm7150l_firmware pm7250_firmware pm7250b_firmware pm8005_firmware … |
Histogram type KPI was teardown with the assumption of the existence of histogram binning info and will lead to null pointer access when histogram binning info is missing due to lack of null check in… |
CWE-476
NULL Pointer Dereference |
CVE-2020-11273 | 2024-11-21 13:57 | 2021-05-7 | Show | GitHub Exploit DB Packet Storm |
| 210186 | 7.5 |
HIGH
Network |
qualcomm |
mdm9635m mdm9615 mdm9640 mdm9645 qca6174a qca6584 msm8974 msm8939 sd210 apq8009 apq8016 qca6174 msm8108 msm8208 msm8209 msm8608 wcd9330 mdm8215 m… |
Potential UE reset while decoding a crafted Sib1 or SIB1 that schedules unsupported SIBs and can lead to denial of service in Snapdragon Auto, Snapdragon Mobile |
CWE-20
Improper Input Validation |
CVE-2020-11268 | 2024-11-21 13:57 | 2021-05-7 | Show | GitHub Exploit DB Packet Storm |
| 210187 | 5.5 |
MEDIUM
Local |
qualcomm |
qca6574au sa6155p sa8155p sa6145p sa6150p sa8150p sa8195p pm6150a pm6150l pm6350 pm660 pm660l pm7250b pm8008 pm8009 pm8350 pm8350b pm8350bh pm835… |
Memory corruption during buffer allocation due to dereferencing session ctx pointer without checking if pointer is valid in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mo… |
CWE-476
NULL Pointer Dereference |
CVE-2020-11254 | 2024-11-21 13:57 | 2021-05-7 | Show | GitHub Exploit DB Packet Storm |
| 210188 | 7.5 |
HIGH
Network |
qualcomm |
aqt1000_firmware ar8035_firmware fsm10055_firmware fsm10056_firmware pm3003a_firmware pm7150a_firmware pm7150l_firmware pm7250_firmware pm7250b_firmware pm8004_firmware … |
RRC sends a connection establishment success to NAS even though connection setup validation returns failure and leads to denial of service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectiv… |
CWE-755
Improper Handling of Exceptional Conditions |
CVE-2020-11243 | 2024-11-21 13:57 | 2021-04-7 | Show | GitHub Exploit DB Packet Storm |
| 210189 | 9.1 |
CRITICAL
Network |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware apq8037_firmware apq8053_firmware apq8084_firmware apq8096au_firmware aqt1000_firmware ar6003_firmware ar8035_firmware
Out of bound read occurs while processing crafted SDP due to lack of check of null string in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity…
|
CWE-125
|
Out-of-bounds Read
CVE-2020-11191
|
2024-11-21 13:57 |
2021-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 210190 | 7.5 |
HIGH
Network |
qualcomm |
apq8009_firmware apq8017_firmware apq8037_firmware apq8053_firmware aqt1000_firmware csrb31024_firmware mdm8207_firmware mdm9205_firmware mdm9206_firmware mdm9207_firmware<… |
Denial of service while processing RTCP packets containing multiple SDES reports due to memory for last SDES packet is freed and rest of the memory is leaked in Snapdragon Auto, Snapdragon Compute, S… |
CWE-401
Missing Release of Memory after Effective Lifetime |
CVE-2020-11255 | 2024-11-21 13:57 | 2021-04-7 | Show | GitHub Exploit DB Packet Storm |