Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 22, 2026, 4:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 255631 | 2.1 | 注意 | Drupal サイバートラスト株式会社 |
- | Drupal におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-3094 | 2010-10-7 16:39 | 2010-08-11 | Show | GitHub Exploit DB Packet Storm |
| 255632 | 3.5 | 注意 | Drupal サイバートラスト株式会社 |
- | Drupal の comment モジュールにおけるアクセス制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-3093 | 2010-10-7 16:38 | 2010-08-11 | Show | GitHub Exploit DB Packet Storm |
| 255633 | 5.5 | 警告 | Drupal サイバートラスト株式会社 |
- | Drupal の upload モジュールにおけるファイルのダウンロード制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-3092 | 2010-10-7 16:37 | 2010-08-11 | Show | GitHub Exploit DB Packet Storm |
| 255634 | 9.3 | 危険 | アップル | - | Apple QuickTime の IPersistPropertyBag2::Read における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-1818 | 2010-10-6 16:57 | 2010-08-31 | Show | GitHub Exploit DB Packet Storm |
| 255635 | 9.3 | 危険 | IBM | - | IBM Lotus Domino サーバの MailCheck821Address 関数におけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-3407 | 2010-10-6 16:57 | 2010-09-16 | Show | GitHub Exploit DB Packet Storm |
| 255636 | 6.8 | 警告 | マイクロソフト | - | Microsoft Outlook Web Access におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2010-3213 | 2010-10-6 16:56 | 2010-09-7 | Show | GitHub Exploit DB Packet Storm |
| 255637 | 6.9 | 警告 | マイクロソフト | - | Microsoft Windows の Win32 サブシステム内にある CSRSS における権限昇格の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-1891 | 2010-10-6 16:56 | 2010-09-14 | Show | GitHub Exploit DB Packet Storm |
| 255638 | 9 | 危険 | マイクロソフト | - | Microsoft Windows の LSASS におけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-0820 | 2010-10-6 16:55 | 2010-09-14 | Show | GitHub Exploit DB Packet Storm |
| 255639 | 9.3 | 危険 | マイクロソフト | - | Microsoft Windows の WordPad Text Converters における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-2563 | 2010-10-6 16:55 | 2010-09-14 | Show | GitHub Exploit DB Packet Storm |
| 255640 | 9.3 | 危険 | マイクロソフト | - | Microsoft Windows の RPC クライアント実装における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-2567 | 2010-10-6 16:55 | 2010-09-14 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 22, 2026, 4:08 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 221241 | 7.8 |
HIGH
Local |
android | In OatFileAssistant::GenerateOatFile of oat_file_assistant.cc, there is a possible file corruption issue due to an insecure default value. This could lead to local escalation of privilege with no add… |
CWE-1188
Insecure Default Initialization of Resource |
CVE-2019-2120 | 2024-11-21 13:40 | 2019-08-21 | Show | GitHub Exploit DB Packet Storm | |
| 221242 | 7.1 |
HIGH
Network |
mongodb | mongodb | After user deletion in MongoDB Server the improper invalidation of authorization sessions allows an authenticated user's session to persist and become conflated with new accounts, if those accounts r… |
CWE-613
Insufficient Session Expiration |
CVE-2019-2386 | 2024-11-21 13:40 | 2019-08-7 | Show | GitHub Exploit DB Packet Storm |
| 221243 | 7.8 |
HIGH
Local |
qualcomm |
ipq8074_firmware qca8081_firmware qcs404_firmware qcs405_firmware qcs605_firmware sd_425_firmware sd_427_firmware sd_430_firmware sd_435_firmware sd_450_firmware sd_625_… |
Firmware is getting into loop of overwriting memory when scan command is given from host because of improper validation. in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Sna… |
CWE-129
Improper Validation of Array Index |
CVE-2019-2346 | 2024-11-21 13:40 | 2019-07-26 | Show | GitHub Exploit DB Packet Storm |
| 221244 | 7.0 |
HIGH
Local |
qualcomm |
msm8909w_firmware msm8996au_firmware qcs605_firmware sd_425_firmware sd_427_firmware sd_430_firmware sd_435_firmware sd_450_firmware sd_625_firmware sd_636_firmware sd_7… |
Race condition while accessing DMA buffer in jpeg driver in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in MS… |
CWE-362
Race Condition |
CVE-2019-2345 | 2024-11-21 13:40 | 2019-07-26 | Show | GitHub Exploit DB Packet Storm |
| 221245 | 5.5 |
MEDIUM
Local |
qualcomm |
msm8909w_firmware msm8996au_firmware qcs605_firmware qualcomm_215_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd_427_firmware sd_430_firmware
Out of bound read and information disclosure in firmware due to insufficient checking of an embedded structure that can be sent from a kernel driver in Snapdragon Auto, Snapdragon Compute, Snapdragon…
|
CWE-125
|
Out-of-bounds Read
CVE-2019-2343
|
2024-11-21 13:40 |
2019-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 221246 | 7.5 |
HIGH
Network |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qcs405_firmware qcs605_firmware qualcomm_215_firmware sd_210_firmwa… |
Null pointer dereferencing can happen when playing the clip with wrong block group id in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapd… |
CWE-476
NULL Pointer Dereference |
CVE-2019-2334 | 2024-11-21 13:40 | 2019-07-26 | Show | GitHub Exploit DB Packet Storm |
| 221247 | 5.5 |
MEDIUM
Local |
qualcomm |
ipq4019_firmware ipq8064_firmware ipq8074_firmware mdm9150_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qcs405_firmware qcs605_firmware
improper input validation in allocation request for secure allocations can lead to page fault. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon M…
|
CWE-20
|
Improper Input Validation
CVE-2019-2330
|
2024-11-21 13:40 |
2019-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 221248 | 7.8 |
HIGH
Local |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qcs405_firmware qcs605_firmware qualcomm_215_firmw… |
Possible buffer overflow when number of channels passed is more than size of channel mapping array in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdrag… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2019-2328 | 2024-11-21 13:40 | 2019-07-26 | Show | GitHub Exploit DB Packet Storm |
| 221249 | 9.8 |
CRITICAL
Network |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909_firmware msm8996au_firmware qcs405_firmware qcs605_firmware qualcomm_215_firmware sd_210_firmwar… |
Possible buffer overflow can occur when playing clip with incorrect element size in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2019-2327 | 2024-11-21 13:40 | 2019-07-26 | Show | GitHub Exploit DB Packet Storm |
| 221250 | 7.8 |
HIGH
Local |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qcs405_firmware qcs605_firmware qualcomm_215_firmw… |
Data token is received from ADSP and is used without validation as an index into the array leads to out of bound access in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Con… |
CWE-129
Improper Validation of Array Index |
CVE-2019-2326 | 2024-11-21 13:40 | 2019-07-26 | Show | GitHub Exploit DB Packet Storm |