Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 12, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 255201 | 2.6 | 注意 | オラクル | - | Oracle Application Server におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
- | 2010-01-14 15:01 | 2010-01-14 | Show | GitHub Exploit DB Packet Storm |
| 255202 | 9.3 | 危険 | マイクロソフト | - | Microsoft Internet Explorer に脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3672 | 2010-01-14 12:08 | 2009-11-25 | Show | GitHub Exploit DB Packet Storm |
| 255203 | 9.3 | 危険 | サン・マイクロシステムズ VMware |
- | Sun Java SE の java.lang パッケージにおける脆弱性 |
CWE-362
競合状態 |
CVE-2009-2724 | 2010-01-14 12:08 | 2009-08-10 | Show | GitHub Exploit DB Packet Storm |
| 255204 | 10 | 危険 | サン・マイクロシステムズ VMware |
- | Sun Java SE の Provider クラスにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-2721 | 2010-01-14 12:08 | 2009-08-10 | Show | GitHub Exploit DB Packet Storm |
| 255205 | 5 | 警告 | 有限会社シースリー | - | WebCalenderC3 におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2010-0348 | 2010-01-12 15:01 | 2010-01-12 | Show | GitHub Exploit DB Packet Storm |
| 255206 | 4.3 | 警告 | 有限会社シースリー | - | WebCalenderC3 におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-0349 | 2010-01-12 15:00 | 2010-01-12 | Show | GitHub Exploit DB Packet Storm |
| 255207 | 10 | 危険 | サイバートラスト株式会社 XEmacs |
- | XEmacs の glyphs-eimage.c における整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2009-2688 | 2010-01-12 14:48 | 2009-08-5 | Show | GitHub Exploit DB Packet Storm |
| 255208 | 6.8 | 警告 | IBM | - | IBM WebSphere Application Server (WAS) におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2009-2746 | 2010-01-12 14:48 | 2009-11-13 | Show | GitHub Exploit DB Packet Storm |
| 255209 | 5 | 警告 | アップル | - | Apple Safari におけるローカル HTML ファイルを読まれる脆弱性 |
CWE-Other
その他 |
CVE-2009-2842 | 2010-01-7 12:09 | 2009-11-11 | Show | GitHub Exploit DB Packet Storm |
| 255210 | 5.5 | 警告 | シックス・アパート株式会社 | - | Movable Type におけるアクセス制限回避の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
- | 2010-01-6 15:01 | 2010-01-6 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 12, 2026, 5:06 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 224371 | 5.5 |
MEDIUM
Local |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8076_firmware apq8096au_firmware apq8098_firmware kamorta_firmware mdm9150_firmware mdm9205_firmware mdm9206_firmware<… |
u'Information disclosure issue occurs as in current logic as secure touch is released without clearing the display session which can result in user reading the secure input while touch is in non-secu… |
CWE-459
Incomplete Cleanup |
CVE-2019-14115 | 2024-11-21 13:26 | 2020-09-8 | Show | GitHub Exploit DB Packet Storm |
| 224372 | 7.8 |
HIGH
Local |
qualcomm |
kamorta_firmware nicobar_firmware qcs404_firmware qcs610_firmware rennell_firmware sa515m_firmware sa6155p_firmware sc7180_firmware sc8180x_firmware sdx55_firmware sm615… |
u'Keymaster attestation key and device IDs provisioning which is a one time process is incorrectly allowed to be re-provisioned after a user data erase or a factory reset' in Snapdragon Auto, Snapdra… |
CWE-327
Use of a Broken or Risky Cryptographic Algorithm |
CVE-2019-14089 | 2024-11-21 13:26 | 2020-09-8 | Show | GitHub Exploit DB Packet Storm |
| 224373 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8076_firmware apq8096au_firmware apq8098_firmware bitra_firmware ipq6018_firmware ipq8074_firmware kamorta_firmware
u'Heap overflow in diag command handler due to lack of check of packet length received from user' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Conn…
|
CWE-20 |
CWE-787 CWE-190 Improper Input Validation Out-of-bounds Write Integer Overflow or Wraparound
CVE-2019-14074
|
2024-11-21 13:26 |
2020-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 224374 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8098_firmware kamorta_firmware mdm9150_firmware mdm9205_firmware mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8905_firmware msm8909_firmware
u'Pointer double free in HavenSvc due to not setting the pointer to NULL after freeing it' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobil…
|
CWE-415
|
Double Free
CVE-2019-14065
|
2024-11-21 13:26 |
2020-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 224375 | 7.8 |
HIGH
Local |
qualcomm |
kamorta_firmware qcs404_firmware rennell_firmware sc7180_firmware sdx55_firmware sm6150_firmware sm7150_firmware sm8250_firmware sxr2130_firmware |
Memory corruption can occurs in trusted application if offset size from HLOS is more than actual mapped buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrast… |
CWE-119 CWE-787 Incorrect Access of Indexable Resource ('Range Error') Out-of-bounds Write |
CVE-2019-14130 | 2024-11-21 13:26 | 2020-07-30 | Show | GitHub Exploit DB Packet Storm |
| 224376 | 7.8 |
HIGH
Local |
qualcomm |
kamorta_firmware qcs404_firmware rennell_firmware sc7180_firmware sdx55_firmware sm6150_firmware sm7150_firmware sm8250_firmware sxr2130_firmware |
Memory failure in content protection module due to not having pointer within the scope in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kam… |
CWE-824
Access of Uninitialized Pointer |
CVE-2019-14124 | 2024-11-21 13:26 | 2020-07-30 | Show | GitHub Exploit DB Packet Storm |
| 224377 | 7.8 |
HIGH
Local |
qualcomm |
kamorta_firmware qcs404_firmware rennell_firmware sc7180_firmware sdx55_firmware sm6150_firmware sm7150_firmware sm8250_firmware sxr2130_firmware |
Possible buffer overflow and over read possible due to missing bounds checks for fixed limits if we consider widevine HLOS client as non-trustable in Snapdragon Auto, Snapdragon Compute, Snapdragon M… |
CWE-20 CWE-125 CWE-787 Improper Input Validation Out-of-bounds Read Out-of-bounds Write |
CVE-2019-14123 | 2024-11-21 13:26 | 2020-07-30 | Show | GitHub Exploit DB Packet Storm |
| 224378 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9207c_firmware mdm9607_firmware nicobar_firmware qcs405_firmware sa6155p_firmware sc8180x_firmware sdx55_firmware sm8150_firmware |
Register write via debugfs is disabled by default to prevent register writing via debugfs. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobil… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2019-14100 | 2024-11-21 13:26 | 2020-07-30 | Show | GitHub Exploit DB Packet Storm |
| 224379 | 7.1 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8096_firmware apq8096au_firmware apq8098_firmware kamorta_firmware mdm9150_firmware mdm9205_firmware mdm9206_firmware mdm9607_firmware mdm9625_firmware<… |
Out of bounds read can happen in diag event set mask command handler when user provided length in the command request is less than expected length in Snapdragon Auto, Snapdragon Compute, Snapdragon C… |
CWE-125
Out-of-bounds Read |
CVE-2019-14101 | 2024-11-21 13:26 | 2020-07-30 | Show | GitHub Exploit DB Packet Storm |
| 224380 | 7.8 |
HIGH
Local |
qualcomm |
apq8053_firmware mdm9206_firmware mdm9207c_firmware mdm9607_firmware msm8909w_firmware msm8917_firmware msm8953_firmware nicobar_firmware qcm2150_firmware qcs405_firmware
Device misbehavior may be observed when incorrect offset, length or number of buffers is passed by user space in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IO…
|
CWE-120
|
Classic Buffer Overflow
CVE-2019-14099
|
2024-11-21 13:26 |
2020-07-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|