Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 14, 2026, 6:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 255561 | 2.6 | 注意 | オラクル | - | Oracle Application Server におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
- | 2010-01-14 15:01 | 2010-01-14 | Show | GitHub Exploit DB Packet Storm |
| 255562 | 9.3 | 危険 | マイクロソフト | - | Microsoft Internet Explorer に脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3672 | 2010-01-14 12:08 | 2009-11-25 | Show | GitHub Exploit DB Packet Storm |
| 255563 | 9.3 | 危険 | サン・マイクロシステムズ VMware |
- | Sun Java SE の java.lang パッケージにおける脆弱性 |
CWE-362
競合状態 |
CVE-2009-2724 | 2010-01-14 12:08 | 2009-08-10 | Show | GitHub Exploit DB Packet Storm |
| 255564 | 10 | 危険 | サン・マイクロシステムズ VMware |
- | Sun Java SE の Provider クラスにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-2721 | 2010-01-14 12:08 | 2009-08-10 | Show | GitHub Exploit DB Packet Storm |
| 255565 | 5 | 警告 | 有限会社シースリー | - | WebCalenderC3 におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2010-0348 | 2010-01-12 15:01 | 2010-01-12 | Show | GitHub Exploit DB Packet Storm |
| 255566 | 4.3 | 警告 | 有限会社シースリー | - | WebCalenderC3 におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-0349 | 2010-01-12 15:00 | 2010-01-12 | Show | GitHub Exploit DB Packet Storm |
| 255567 | 10 | 危険 | サイバートラスト株式会社 XEmacs |
- | XEmacs の glyphs-eimage.c における整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2009-2688 | 2010-01-12 14:48 | 2009-08-5 | Show | GitHub Exploit DB Packet Storm |
| 255568 | 6.8 | 警告 | IBM | - | IBM WebSphere Application Server (WAS) におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2009-2746 | 2010-01-12 14:48 | 2009-11-13 | Show | GitHub Exploit DB Packet Storm |
| 255569 | 5 | 警告 | アップル | - | Apple Safari におけるローカル HTML ファイルを読まれる脆弱性 |
CWE-Other
その他 |
CVE-2009-2842 | 2010-01-7 12:09 | 2009-11-11 | Show | GitHub Exploit DB Packet Storm |
| 255570 | 5.5 | 警告 | シックス・アパート株式会社 | - | Movable Type におけるアクセス制限回避の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
- | 2010-01-6 15:01 | 2010-01-6 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 14, 2026, 4 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 224971 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8064_firmware apq8096_firmware apq8096au_firmware apq8098_firmware ipq6018_firmware ipq8074_firmware mdm9206_firmware<… |
Buffer overflow can occur in In WLAN firmware while unwraping data using CCMP cipher suite during parsing of EAPOL handshake frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Sna… |
CWE-119 CWE-190 Incorrect Access of Indexable Resource ('Range Error') Integer Overflow or Wraparound |
CVE-2019-14113 | 2024-11-21 13:26 | 2020-04-16 | Show | GitHub Exploit DB Packet Storm |
| 224972 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8098_firmware ipq6018_firmware ipq8074_firmware msm8998_firmware nicobar_firmware qca8081_firmware qcn7605_firmware qcs404_firmware qcs605_firmware rennell_firmware s… |
Potential buffer overflow while processing CBF frames due to lack of check of buffer length before copy in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdrago… |
CWE-120
Classic Buffer Overflow |
CVE-2019-14112 | 2024-11-21 13:26 | 2020-04-16 | Show | GitHub Exploit DB Packet Storm |
| 224973 | 9.8 |
CRITICAL
Network |
qualcomm |
ipq6018_firmware ipq8074_firmware nicobar_firmware qca6390_firmware qca8081_firmware qcn7605_firmware qcs404_firmware qcs405_firmware rennell_firmware sc7180_firmware sc… |
Possible buffer overflow while handling NAN reception of NMF in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Mobile, Snapdrag… |
CWE-120
Classic Buffer Overflow |
CVE-2019-14111 | 2024-11-21 13:26 | 2020-04-16 | Show | GitHub Exploit DB Packet Storm |
| 224974 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8064_firmware apq8096_firmware apq8096au_firmware apq8098_firmware ipq6018_firmware ipq8074_firmware mdm9206_firmware<… |
Buffer overflow can occur in function wlan firmware while copying association frame content if frame length is more than the maximum buffer size in case of SAP mode in Snapdragon Auto, Snapdragon Com… |
CWE-120
Classic Buffer Overflow |
CVE-2019-14110 | 2024-11-21 13:26 | 2020-04-16 | Show | GitHub Exploit DB Packet Storm |
| 224975 | 5.5 |
MEDIUM
Local |
qualcomm |
mdm9607_firmware msm8917_firmware msm8920_firmware msm8937_firmware msm8940_firmware msm8953_firmware msm8998_firmware nicobar_firmware qcs605_firmware rennell_firmware … |
Null pointer dereference issue in radio interface layer due to lack of null check in sapmodule destructor in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in … |
CWE-476
NULL Pointer Dereference |
CVE-2019-14075 | 2024-11-21 13:26 | 2020-04-16 | Show | GitHub Exploit DB Packet Storm |
| 224976 | 7.0 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8017_firmware apq8053_firmware apq8064_firmware apq8096au_firmware apq8098_firmware ipq4019_firmware ipq6018_firmware ipq8064_firmware ipq8074_firmware<… |
Possible use after free issue in pcm volume controls due to race condition exist in private data used in mixer controls in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Ind… |
CWE-362 CWE-416 Race Condition Use After Free |
CVE-2019-14070 | 2024-11-21 13:26 | 2020-04-16 | Show | GitHub Exploit DB Packet Storm |
| 224977 | 7.8 |
HIGH
Local |
andyroid | andy_os | An issue was discovered in AndyOS Andy versions up to 46.11.113. By default, it starts telnet and ssh (ports 22 and 23) with root privileges in the emulated Android system. This can be exploited by r… |
CWE-276
Incorrect Default Permissions |
CVE-2019-14326 | 2024-11-21 13:26 | 2020-04-15 | Show | GitHub Exploit DB Packet Storm |
| 224978 | 6.1 |
MEDIUM
Network |
limesurvey | limesurvey | LimeSurvey 3.17.7+190627 has XSS via Boxes in application/extensions/PanelBoxWidget/views/box.php or a label title in application/views/admin/labels/labelview_view.php. |
CWE-79
Cross-site Scripting |
CVE-2019-14512 | 2024-11-21 13:26 | 2020-03-17 | Show | GitHub Exploit DB Packet Storm |
| 224979 | 9.8 |
CRITICAL
Network |
ricoh |
sp_c250sf_firmware sp_c252sf_firmware sp_c250dn_firmware sp_c252dn_firmware |
Ricoh SP C250DN 1.05 devices allow denial of service (issue 2 of 3). Unauthenticated crafted packets to the IPP service will cause a vulnerable device to crash. A memory corruption has been identifie… |
CWE-787
Out-of-bounds Write |
CVE-2019-14310 | 2024-11-21 13:26 | 2020-03-14 | Show | GitHub Exploit DB Packet Storm |
| 224980 | 7.5 |
HIGH
Network |
ricoh |
sp_c250sf_firmware sp_c252sf_firmware sp_c250dn_firmware sp_c252dn_firmware |
Ricoh SP C250DN 1.05 devices have a fixed password. FTP service credential were found to be hardcoded within the printer firmware. This would allow to an attacker to access and read information store… |
CWE-798
Use of Hard-coded Credentials |
CVE-2019-14309 | 2024-11-21 13:26 | 2020-03-14 | Show | GitHub Exploit DB Packet Storm |