Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254411	6.8	警告	アップル GNU Project サン・マイクロシステムズサイバートラスト株式会社レッドハット	-	GNU tar の contains_dot_dot() 関数におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-4131	2010-01-18 12:21	2007-08-23	Show	GitHub Exploit DB Packet Storm

254412	4.6	警告	IBM	-	IBM DB2 の dasauto における管理者権限を持たないユーザが実行可能な脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4150	2010-01-15 14:10	2009-12-2	Show	GitHub Exploit DB Packet Storm

254413	2.1	注意	サン・マイクロシステムズ	-	Sun Solaris の ldap_cachemgr におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2009-4080	2010-01-15 14:10	2009-11-24	Show	GitHub Exploit DB Packet Storm

254414	5	警告	サン・マイクロシステムズ	-	Sun Solaris の sshd におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-4075	2010-01-15 14:09	2009-11-23	Show	GitHub Exploit DB Packet Storm

254415	2.6	注意	オラクル	-	Oracle Application Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	-	2010-01-14 15:01	2010-01-14	Show	GitHub Exploit DB Packet Storm

254416	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer に脆弱性	CWE-94 コード・インジェクション	CVE-2009-3672	2010-01-14 12:08	2009-11-25	Show	GitHub Exploit DB Packet Storm

254417	9.3	危険	サン・マイクロシステムズ VMware	-	Sun Java SE の java.lang パッケージにおける脆弱性	CWE-362 競合状態	CVE-2009-2724	2010-01-14 12:08	2009-08-10	Show	GitHub Exploit DB Packet Storm

254418	10	危険	サン・マイクロシステムズ VMware	-	Sun Java SE の Provider クラスにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-2721	2010-01-14 12:08	2009-08-10	Show	GitHub Exploit DB Packet Storm

254419	5	警告	有限会社シースリー	-	WebCalenderC3 におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-0348	2010-01-12 15:01	2010-01-12	Show	GitHub Exploit DB Packet Storm

254420	4.3	警告	有限会社シースリー	-	WebCalenderC3 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0349	2010-01-12 15:00	2010-01-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210331	9.8	CRITICAL Network	qualcomm	apq8017_firmware aqt1000_firmware ar8035_firmware csrb31024_firmware msm8917_firmware pm215_firmware pm3003a_firmware pm4125_firmware pm4250_firmware pm439_firmware pm45…	Possible buffer overflow while updating ikev2 parameters due to lack of check of input validation for certain parameters received from the ePDG server in Snapdragon Auto, Snapdragon Compute, Snapdrag…	CWE-129 Improper Validation of Array Index	CVE-2020-11163	2024-11-21 13:56	2021-02-22	Show	GitHub Exploit DB Packet Storm

210332	6.7	MEDIUM Local	qualcomm	aqt1000_firmware pm3003a_firmware pm456_firmware pm6125_firmware pm6150_firmware pm6150a_firmware pm6150l_firmware pm6250_firmware pm6350_firmware pm660_firmware pm660a_…	Use after free issue in audio modules while removing and freeing objects during list iteration due to incorrect usage of macro in Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile	CWE-416 Use After Free	CVE-2020-11147	2024-11-21 13:56	2021-02-22	Show	GitHub Exploit DB Packet Storm

210333	5.3	MEDIUM Network	zulip	zulip_desktop	Zulip Desktop before 5.0.0 allows attackers to perform recording via the webcam and microphone due to a missing permission request handler.	CWE-862 Missing Authorization	CVE-2020-10858	2024-11-21 13:56	2021-02-6	Show	GitHub Exploit DB Packet Storm

210334	9.8	CRITICAL Network	zulip	zulip_desktop	Zulip Desktop before 5.0.0 improperly uses shell.openExternal and shell.openItem with untrusted content, leading to remote code execution.	NVD-CWE-noinfo	CVE-2020-10857	2024-11-21 13:56	2021-02-6	Show	GitHub Exploit DB Packet Storm

210335	7.5	HIGH Network	qualcomm	apq8009_firmware apq8017_firmware apq8053_firmware apq8076_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware ar8151_firmware ar9380_firmware c…	Buffer over-read can happen when the buffer length received from response handlers is more than the size of the payload in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Con…	CWE-20 CWE-125 Improper Input Validation Out-of-bounds Read	CVE-2020-11119	2024-11-21 13:56	2021-01-21	Show	GitHub Exploit DB Packet Storm

210336	6.4	MEDIUM Local	qualcomm	msm8909w sdm630 qca6174a qca6574au qca6584au qca9377 msm8976 msm8937 msm8952 apq8096au msm8996au msm8917 sd450 sd835 sdx24 qcs605 sd855 qcs405 ap…	Race condition in HAL layer while processing callback objects received from HIDL due to lack of synchronization between accessing objects in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer I…	CWE-362 Race Condition	CVE-2020-11152	2024-11-21 13:56	2021-01-21	Show	GitHub Exploit DB Packet Storm

210337	6.4	MEDIUM Local	qualcomm	qca6574au qca6584au sdx55 sa6155p qca6390 qcm4290 qcs4290 sa8150p sa8155 sa8195p sda429w sdx55m sm7250p sd675 pm3003a pm6125 pm6150 pm6150a pm615…	Race condition occurs while calling user space ioctl from two different threads can results to use after free issue in video in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdrago…	CWE-362 CWE-416 Race Condition Use After Free	CVE-2020-11151	2024-11-21 13:56	2021-01-21	Show	GitHub Exploit DB Packet Storm

210338	6.7	MEDIUM Local	qualcomm	qca6574au msm8917 qcs605 sd855 apq8017 apq8053 sdx55 msm8953 sa6155p qca6390 sdm429w sa8150p sa8155 sa8195p sda429w sdx55m sm7250p sd429 sd439	Use after free issue in HIDL while using callback to post event in Rx thread when internal mutex is not acquired and meantime close is triggered and callback instance is deleted in Snapdragon Auto, S…	CWE-416 Use After Free	CVE-2020-11148	2024-11-21 13:56	2021-01-21	Show	GitHub Exploit DB Packet Storm

210339	6.7	MEDIUM Local	qualcomm	qca6174a qca6574au qca6584au qca9377 qca9379 qca6574 qca6564 sd210 sd205 sdx24 qcs605 sd855 qca4020 qcs405 sdx55 sa6155p qca6390 sdm429w sa6155	Out of bound memory access in camera driver due to improper validation on data coming from UMD which is used for offset manipulation of pointer in Snapdragon Auto, Snapdragon Compute, Snapdragon Conn…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2020-11150	2024-11-21 13:56	2021-01-21	Show	GitHub Exploit DB Packet Storm

210340	6.7	MEDIUM Local	qualcomm	mdm9650 sdx20 qca6174a qca6574au qca6584au qca9377 qca9379 apq8096au qca6574 qca6564 qcs605 qca4020 qcs405 apq8053 sd855 sdx24 sd205 sd210 qca639…	Out of bound access due to usage of an out-of-range pointer offset in the camera driver. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industria…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2020-11149	2024-11-21 13:56	2021-01-21	Show	GitHub Exploit DB Packet Storm