Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 7, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 254411 | 6.8 | 警告 | アップル GNU Project サン・マイクロシステムズ サイバートラスト株式会社 レッドハット |
- | GNU tar の contains_dot_dot() 関数におけるディレクトリトラバーサルの脆弱性 | - | CVE-2007-4131 | 2010-01-18 12:21 | 2007-08-23 | Show | GitHub Exploit DB Packet Storm |
| 254412 | 4.6 | 警告 | IBM | - | IBM DB2 の dasauto における管理者権限を持たないユーザが実行可能な脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2009-4150 | 2010-01-15 14:10 | 2009-12-2 | Show | GitHub Exploit DB Packet Storm |
| 254413 | 2.1 | 注意 | サン・マイクロシステムズ | - | Sun Solaris の ldap_cachemgr におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2009-4080 | 2010-01-15 14:10 | 2009-11-24 | Show | GitHub Exploit DB Packet Storm |
| 254414 | 5 | 警告 | サン・マイクロシステムズ | - | Sun Solaris の sshd におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-4075 | 2010-01-15 14:09 | 2009-11-23 | Show | GitHub Exploit DB Packet Storm |
| 254415 | 2.6 | 注意 | オラクル | - | Oracle Application Server におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
- | 2010-01-14 15:01 | 2010-01-14 | Show | GitHub Exploit DB Packet Storm |
| 254416 | 9.3 | 危険 | マイクロソフト | - | Microsoft Internet Explorer に脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3672 | 2010-01-14 12:08 | 2009-11-25 | Show | GitHub Exploit DB Packet Storm |
| 254417 | 9.3 | 危険 | サン・マイクロシステムズ VMware |
- | Sun Java SE の java.lang パッケージにおける脆弱性 |
CWE-362
競合状態 |
CVE-2009-2724 | 2010-01-14 12:08 | 2009-08-10 | Show | GitHub Exploit DB Packet Storm |
| 254418 | 10 | 危険 | サン・マイクロシステムズ VMware |
- | Sun Java SE の Provider クラスにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-2721 | 2010-01-14 12:08 | 2009-08-10 | Show | GitHub Exploit DB Packet Storm |
| 254419 | 5 | 警告 | 有限会社シースリー | - | WebCalenderC3 におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2010-0348 | 2010-01-12 15:01 | 2010-01-12 | Show | GitHub Exploit DB Packet Storm |
| 254420 | 4.3 | 警告 | 有限会社シースリー | - | WebCalenderC3 におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-0349 | 2010-01-12 15:00 | 2010-01-12 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 7, 2026, 4:22 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 223611 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8053_firmware msm8909w_firmware msm8917_firmware msm8953_firmware nicobar_firmware qcs605_firmware qm215_firmware rennell_firmware sa6155p_firmware s… |
Use after free while processing eeprom query as there is a chance to not unlock mutex after error occurs in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Sn… |
CWE-416
Use After Free |
CVE-2019-14034 | 2024-11-21 13:25 | 2020-01-21 | Show | GitHub Exploit DB Packet Storm |
| 223612 | 9.8 |
CRITICAL
Network |
qualcomm |
nicobar_firmware sdm670_firmware sdm710_firmware sdm845_firmware sm6150_firmware sm8150_firmware sm8250_firmware sxr2130_firmware |
Possible buffer overflow when byte array receives incorrect input from reading source as array is not null terminated in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in Nicob… |
CWE-120
Classic Buffer Overflow |
CVE-2019-14014 | 2024-11-21 13:25 | 2020-01-21 | Show | GitHub Exploit DB Packet Storm |
| 223613 | 7.5 |
HIGH
Network |
qualcomm |
mdm9150_firmware mdm9607_firmware mdm9650_firmware sdm660_firmware sdm845_firmware sm8150_firmware sm8250_firmware sxr2130_firmware |
Possible null pointer dereference issue in location assistance data processing due to missing null check on resources before using it in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industria… |
CWE-476
NULL Pointer Dereference |
CVE-2019-14008 | 2024-11-21 13:25 | 2020-01-21 | Show | GitHub Exploit DB Packet Storm |
| 223614 | 7.8 |
HIGH
Local |
qualcomm |
msm8917_firmware msm8953_firmware nicobar_firmware qm215_firmware rennell_firmware sdm429_firmware sdm439_firmware sdm450_firmware sdm632_firmware sdm670_firmware sdm710… |
Possible stack-use-after-scope issue in NFC usecase for card emulation in Snapdragon Auto, Snapdragon Industrial IOT, Snapdragon Mobile in MSM8917, MSM8953, Nicobar, QM215, Rennell, SDM429, SDM439, S… |
CWE-416
Use After Free |
CVE-2019-14024 | 2024-11-21 13:25 | 2020-01-21 | Show | GitHub Exploit DB Packet Storm |
| 223615 | 7.8 |
HIGH
Local |
qualcomm |
mdm9607_firmware nicobar_firmware rennell_firmware sa6155p_firmware sdx55_firmware sm6150_firmware sm7150_firmware sm8150_firmware sm8250_firmware sxr2130_firmware |
String format issue will occur while processing HLOS data as there is no user input validation to ensure inputs are properly NULL terminated before string copy in Snapdragon Auto, Snapdragon Consumer… |
NVD-CWE-Other
|
CVE-2019-14023 | 2024-11-21 13:25 | 2020-01-21 | Show | GitHub Exploit DB Packet Storm |
| 223616 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8064_firmware apq8096au_firmware apq8098_firmware mdm9206_firmware mdm9207c_firmware mdm9607_firmware msm8905_firmware… |
Heap buffer overflow can occur while parsing invalid MKV clip which is not standard and have invalid vorbis codec data in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Cons… |
CWE-787
Out-of-bounds Write |
CVE-2019-14017 | 2024-11-21 13:25 | 2020-01-21 | Show | GitHub Exploit DB Packet Storm |
| 223617 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8064_firmware apq8096au_firmware apq8098_firmware mdm9206_firmware mdm9207c_firmware mdm9607_firmware msm8905_firmware… |
Integer overflow occurs while playing the clip which is nonstandard in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT… |
CWE-190
Integer Overflow or Wraparound |
CVE-2019-14016 | 2024-11-21 13:25 | 2020-01-21 | Show | GitHub Exploit DB Packet Storm |
| 223618 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8064_firmware apq8096au_firmware apq8098_firmware mdm9206_firmware mdm9207c_firmware mdm9607_firmware msm8905_firmware… |
While parsing invalid super index table, elements within super index table may exceed total chunk size and invalid data is read into the table in Snapdragon Auto, Snapdragon Compute, Snapdragon Conne… |
CWE-120
Classic Buffer Overflow |
CVE-2019-14013 | 2024-11-21 13:25 | 2020-01-21 | Show | GitHub Exploit DB Packet Storm |
| 223619 | 7.5 |
HIGH
Network |
qualcomm |
mdm9607_firmware nicobar_firmware rennell_firmware sa6155p_firmware sdm660_firmware sdx55_firmware sm6150_firmware sm7150_firmware sm8150_firmware sm8250_firmware sxr213… |
The device may enter into error state when some tool or application gets failure at 1st buffer map all and performs 2nd buffer map which happens to be at same physical address in Snapdragon Auto, Sna… |
CWE-20
Improper Input Validation |
CVE-2019-14010 | 2024-11-21 13:25 | 2020-01-21 | Show | GitHub Exploit DB Packet Storm |
| 223620 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8064_firmware apq8096au_firmware apq8098_firmware mdm9206_firmware mdm9207c_firmware mdm9607_firmware msm8905_firmware… |
Buffer overflow occur while playing the clip which is nonstandard due to lack of offset length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdrag… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2019-14006 | 2024-11-21 13:25 | 2020-01-21 | Show | GitHub Exploit DB Packet Storm |