Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 9, 2026, 10 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 254741 | 6.8 | 警告 | アップル サイバートラスト株式会社 Python Software Foundation サン・マイクロシステムズ レッドハット |
- | Python の imageop.c における整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2008-1679 | 2010-01-19 15:48 | 2008-04-22 | Show | GitHub Exploit DB Packet Storm |
| 254742 | 5.8 | 警告 | アップル サイバートラスト株式会社 Python Software Foundation サン・マイクロシステムズ レッドハット |
- | Python の imageop モジュールにおける複数の整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2007-4965 | 2010-01-19 15:47 | 2007-09-18 | Show | GitHub Exploit DB Packet Storm |
| 254743 | 7.5 | 危険 | アップル | - | Mac OS X 用の Java における任意のコードを実行される脆弱性 |
CWE-310
暗号の問題 |
CVE-2009-2843 | 2010-01-18 12:22 | 2009-12-3 | Show | GitHub Exploit DB Packet Storm |
| 254744 | 6.8 | 警告 | アップル GNU Project サン・マイクロシステムズ サイバートラスト株式会社 レッドハット |
- | GNU tar の contains_dot_dot() 関数におけるディレクトリトラバーサルの脆弱性 | - | CVE-2007-4131 | 2010-01-18 12:21 | 2007-08-23 | Show | GitHub Exploit DB Packet Storm |
| 254745 | 4.6 | 警告 | IBM | - | IBM DB2 の dasauto における管理者権限を持たないユーザが実行可能な脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2009-4150 | 2010-01-15 14:10 | 2009-12-2 | Show | GitHub Exploit DB Packet Storm |
| 254746 | 2.1 | 注意 | サン・マイクロシステムズ | - | Sun Solaris の ldap_cachemgr におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2009-4080 | 2010-01-15 14:10 | 2009-11-24 | Show | GitHub Exploit DB Packet Storm |
| 254747 | 5 | 警告 | サン・マイクロシステムズ | - | Sun Solaris の sshd におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-4075 | 2010-01-15 14:09 | 2009-11-23 | Show | GitHub Exploit DB Packet Storm |
| 254748 | 2.6 | 注意 | オラクル | - | Oracle Application Server におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
- | 2010-01-14 15:01 | 2010-01-14 | Show | GitHub Exploit DB Packet Storm |
| 254749 | 9.3 | 危険 | マイクロソフト | - | Microsoft Internet Explorer に脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3672 | 2010-01-14 12:08 | 2009-11-25 | Show | GitHub Exploit DB Packet Storm |
| 254750 | 9.3 | 危険 | サン・マイクロシステムズ VMware |
- | Sun Java SE の java.lang パッケージにおける脆弱性 |
CWE-362
競合状態 |
CVE-2009-2724 | 2010-01-14 12:08 | 2009-08-10 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 9, 2026, 5:07 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 210911 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8017_firmware apq8053_firmware aqt1000_firmware csrb31024_firmware msm8917_firmware msm8920_firmware msm8940_firmware msm8953_firmware msm8976_firmware msm8976sg_firmwar… |
Possible buffer overflow while updating ikev2 parameters for delete payloads received during informational exchange due to lack of check of input validation for certain parameters received from the e… |
CWE-129
Improper Validation of Array Index |
CVE-2020-11291 | 2024-11-21 13:57 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |
| 210912 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware apq8037_firmware apq8053_firmware apq8084_firmware apq8096au_firmware aqt1000_firmware ar6003_firmware csr6030_firmware<… |
Possible buffer overflow in voice service due to lack of input validation of parameters in QMI Voice API in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snap… |
CWE-120
Classic Buffer Overflow |
CVE-2020-11292 | 2024-11-21 13:57 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |
| 210913 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8017_firmware apq8053_firmware aqt1000_firmware ar8035_firmware csrb31024_firmware msm8917_firmware msm8920_firmware msm8940_firmware msm8953_firmware msm8976_firmware
While processing server certificate from IPSec server, certificate validation for subject alternative name API can cause heap overflow which can lead to memory corruption in Snapdragon Auto, Snapdrag…
|
CWE-787
|
Out-of-bounds Write
CVE-2020-11176
|
2024-11-21 13:57 |
2021-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 210914 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware apq8053_firmware apq8064au_firmware apq8076_firmware apq8096au_firmware aqt1000_firmware ar7420_firmware ar8031_firmware… |
Stack out-of-bounds write occurs while setting up a cipher device if the provided IV length exceeds the max limit value in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Con… |
CWE-787
Out-of-bounds Write |
CVE-2020-11267 | 2024-11-21 13:57 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |
| 210915 | 6.5 |
MEDIUM
Local |
qualcomm |
ar7420_firmware ar9580_firmware csr8811_firmware ipq4018_firmware ipq4019_firmware ipq4028_firmware ipq4029_firmware qca10901_firmware qca4024_firmware qca7500_firmware … |
Image address is dereferenced before validating its range which can cause potential QSEE information leakage in Snapdragon Wired Infrastructure and Networking |
NVD-CWE-Other
|
CVE-2020-11266 | 2024-11-21 13:57 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |
| 210916 | 5.5 |
MEDIUM
Local |
qualcomm |
ar7420_firmware ar9580_firmware csr8811_firmware ipq4018_firmware ipq4019_firmware ipq4028_firmware ipq4029_firmware qca10901_firmware qca4024_firmware qca7500_firmware … |
Information disclosure issue due to lack of validation of pointer arguments passed to TZ BSP in Snapdragon Wired Infrastructure and Networking |
CWE-125
Out-of-bounds Read |
CVE-2020-11265 | 2024-11-21 13:57 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |
| 210917 | 8.4 |
HIGH
Local |
qualcomm |
apq8017_firmware apq8053_firmware aqt1000_firmware msm8917_firmware msm8953_firmware pm215_firmware pm3003a_firmware pm4125_firmware pm439_firmware pm456_firmware pm6125… |
An improper free of uninitialized memory can occur in DIAG services in Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile |
CWE-908
Use of Uninitialized Resource |
CVE-2020-11260 | 2024-11-21 13:57 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |
| 210918 | 7.0 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware apq8053_firmware apq8064au_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware ar8151_firmware<… |
A race between command submission and destroying the context can cause an invalid context being added to the list leads to use after free issue. in Snapdragon Auto, Snapdragon Compute, Snapdragon Con… |
CWE-362 CWE-416 Race Condition Use After Free |
CVE-2020-11262 | 2024-11-21 13:57 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |
| 210919 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware apq8037_firmware apq8053_firmware apq8064au_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware… |
Memory corruption due to improper check to return error when user application requests memory allocation of a huge size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Con… |
CWE-20
Improper Input Validation |
CVE-2020-11261 | 2024-11-21 13:57 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |
| 210920 | 8.8 |
HIGH
Local |
qualcomm |
ar7420_firmware ar9580_firmware csr8811_firmware ipq4018_firmware ipq4019_firmware ipq4028_firmware ipq4029_firmware qca10901_firmware qca4024_firmware qca7500_firmware … |
Memory corruption due to lack of validation of pointer arguments passed to Trustzone BSP in Snapdragon Wired Infrastructure and Networking |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2020-11259 | 2024-11-21 13:57 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |