Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 12, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 255201 | 2.6 | 注意 | オラクル | - | Oracle Application Server におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
- | 2010-01-14 15:01 | 2010-01-14 | Show | GitHub Exploit DB Packet Storm |
| 255202 | 9.3 | 危険 | マイクロソフト | - | Microsoft Internet Explorer に脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3672 | 2010-01-14 12:08 | 2009-11-25 | Show | GitHub Exploit DB Packet Storm |
| 255203 | 9.3 | 危険 | サン・マイクロシステムズ VMware |
- | Sun Java SE の java.lang パッケージにおける脆弱性 |
CWE-362
競合状態 |
CVE-2009-2724 | 2010-01-14 12:08 | 2009-08-10 | Show | GitHub Exploit DB Packet Storm |
| 255204 | 10 | 危険 | サン・マイクロシステムズ VMware |
- | Sun Java SE の Provider クラスにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-2721 | 2010-01-14 12:08 | 2009-08-10 | Show | GitHub Exploit DB Packet Storm |
| 255205 | 5 | 警告 | 有限会社シースリー | - | WebCalenderC3 におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2010-0348 | 2010-01-12 15:01 | 2010-01-12 | Show | GitHub Exploit DB Packet Storm |
| 255206 | 4.3 | 警告 | 有限会社シースリー | - | WebCalenderC3 におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-0349 | 2010-01-12 15:00 | 2010-01-12 | Show | GitHub Exploit DB Packet Storm |
| 255207 | 10 | 危険 | サイバートラスト株式会社 XEmacs |
- | XEmacs の glyphs-eimage.c における整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2009-2688 | 2010-01-12 14:48 | 2009-08-5 | Show | GitHub Exploit DB Packet Storm |
| 255208 | 6.8 | 警告 | IBM | - | IBM WebSphere Application Server (WAS) におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2009-2746 | 2010-01-12 14:48 | 2009-11-13 | Show | GitHub Exploit DB Packet Storm |
| 255209 | 5 | 警告 | アップル | - | Apple Safari におけるローカル HTML ファイルを読まれる脆弱性 |
CWE-Other
その他 |
CVE-2009-2842 | 2010-01-7 12:09 | 2009-11-11 | Show | GitHub Exploit DB Packet Storm |
| 255210 | 5.5 | 警告 | シックス・アパート株式会社 | - | Movable Type におけるアクセス制限回避の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
- | 2010-01-6 15:01 | 2010-01-6 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 13, 2026, 5:05 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 199891 | 7.8 |
HIGH
Local |
qualcomm |
agatti_firmware bitra_firmware kamorta_firmware nicobar_firmware qca6390_firmware qcs404_firmware qcs605_firmware qcs610_firmware rennell_firmware sa415m_firmware sa515m… |
u'Due to an incorrect SMMU configuration, the modem crypto engine can potentially compromise the hypervisor' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, … |
NVD-CWE-Other
|
CVE-2020-3690 | 2024-11-21 14:31 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 199892 | 7.8 |
HIGH
Local |
qualcomm |
agatti_firmware apq8009_firmware apq8098_firmware bitra_firmware ipq6018_firmware kamorta_firmware mdm9150_firmware mdm9205_firmware mdm9206_firmware mdm9607_firmware md… |
u'QSEE reads the access permission policy for the SMEM TOC partition from the SMEM TOC contents populated by XBL Loader and applies them without validation' in Snapdragon Auto, Snapdragon Compute, Sn… |
NVD-CWE-Other
|
CVE-2020-3684 | 2024-11-21 14:31 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 199893 | 9.8 |
CRITICAL
Network |
qualcomm |
agatti_firmware apq8053_firmware apq8096au_firmware apq8098_firmware bitra_firmware kamorta_firmware msm8905_firmware msm8909w_firmware msm8917_firmware msm8940_firmware
u'Buffer overflow can happen as part of SIP message packet processing while storing values in array due to lack of check to validate the index length' in Snapdragon Auto, Snapdragon Compute, Snapdrag…
|
CWE-129
|
Improper Validation of Array Index
CVE-2020-3673
|
2024-11-21 14:31 |
2020-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 199894 | 9.1 |
CRITICAL
Network |
qualcomm |
agatti_firmware apq8053_firmware apq8096au_firmware apq8098_firmware kamorta_firmware mdm9150_firmware mdm9205_firmware mdm9206_firmware mdm9625_firmware mdm9635m_firmware<… |
u'Potential out of bounds read while processing downlink NAS transport message due to improper length check of Information Element(IEI) NAS message container' in Snapdragon Auto, Snapdragon Compute, … |
CWE-125
Out-of-bounds Read |
CVE-2020-3670 | 2024-11-21 14:31 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 199895 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8096au_firmware apq8098_firmware ipq4019_firmware ipq6018_firmware ipq8064_firmware ipq8074_firmware mdm9150_firmware<… |
u'Remote code execution can happen by sending a carefully crafted POST query when Device configuration is accessed from a tethered client through webserver due to lack of array bound check.' in Snapd… |
CWE-120
Classic Buffer Overflow |
CVE-2020-3657 | 2024-11-21 14:31 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 199896 | 9.8 |
CRITICAL
Network |
qualcomm |
agatti_firmware apq8053_firmware apq8096au_firmware apq8098_firmware bitra_firmware kamorta_firmware msm8905_firmware msm8909w_firmware msm8917_firmware msm8940_firmware
u'Buffer overflow occurs while processing SIP message packet due to lack of check of index validation before copying into it' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdrag…
|
CWE-129
|
Improper Validation of Array Index
CVE-2020-3654
|
2024-11-21 14:31 |
2020-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 199897 | 7.8 |
HIGH
Local |
qualcomm |
agatti_firmware bitra_firmware kamorta_firmware qca6390_firmware qcs404_firmware qcs610_firmware rennell_firmware sa515m_firmware sc7180_firmware sc8180x_firmware sdx55_… |
u'An Unaligned address or size can propagate to the database due to improper page permissions and can lead to improper access control' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity,… |
NVD-CWE-noinfo
|
CVE-2020-3638 | 2024-11-21 14:31 | 2020-11-2 | Show | GitHub Exploit DB Packet Storm |
| 199898 | 7.8 |
HIGH
Local |
apple |
iphone_os ipados tvos watchos mac_os_x |
An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 6.1.2, iOS 13.3.1 and iPadOS 13.3.1, tvOS 13.3.1, macOS Catalina 10.15.3, Security Update 2020-001 M… |
CWE-125
Out-of-bounds Read |
CVE-2020-3880 | 2024-11-21 14:31 | 2020-10-28 | Show | GitHub Exploit DB Packet Storm |
| 199899 | 7.8 |
HIGH
Local |
apple redhat |
iphone_os ipados tvos safari icloud itunes enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server |
A logic issue was addressed with improved validation. This issue is fixed in iCloud for Windows 7.17, iTunes 12.10.4 for Windows, iCloud for Windows 10.9.2, tvOS 13.3.1, Safari 13.0.5, iOS 13.3.1 and… |
CWE-346
Origin Validation Error |
CVE-2020-3864 | 2024-11-21 14:31 | 2020-10-28 | Show | GitHub Exploit DB Packet Storm |
| 199900 | 7.8 |
HIGH
Local |
apple | mac_os_x | A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Catalina 10.15.3, Security Update 2020-001 Mojave, Security Update 2020-001 High Sierra. An applica… |
CWE-787
Out-of-bounds Write |
CVE-2020-3863 | 2024-11-21 14:31 | 2020-10-28 | Show | GitHub Exploit DB Packet Storm |