Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 28, 2026, 10 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 256991 | 5 | 警告 | Linear LLC S2 Security |
- | Linear eMerge のマネージメントコンポーネントにおけるサービス運用妨害 (DoS) |
CWE-noinfo
情報不足 |
CVE-2009-3734 | 2010-02-3 14:35 | 2010-01-5 | Show | GitHub Exploit DB Packet Storm |
| 256992 | 7.5 | 危険 | The PHP Group LibGD project サイバートラスト株式会社 レッドハット |
- | PHP および GD Graphics Library の _gdGetColors 関数におけるバッファオーバーフローの脆弱性 |
CWE-Other
その他 |
CVE-2009-3546 | 2010-02-3 14:34 | 2009-10-19 | Show | GitHub Exploit DB Packet Storm |
| 256993 | 6.8 | 警告 | GNU Project XEmacs サイバートラスト株式会社 |
- | Emacs および XEmacs における .flc ファイルの処理に関する任意のコードを実行される脆弱性 |
CWE-DesignError
|
CVE-2008-2142 | 2010-02-2 11:43 | 2008-05-12 | Show | GitHub Exploit DB Packet Storm |
| 256994 | 3.5 | 注意 | Drupal サイバートラスト株式会社 |
- | Drupal の Menu モジュールにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-4370 | 2010-02-2 11:43 | 2009-12-16 | Show | GitHub Exploit DB Packet Storm |
| 256995 | 3.5 | 注意 | Drupal サイバートラスト株式会社 |
- | Drupal の Contact モジュールにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-4369 | 2010-02-2 11:42 | 2009-12-16 | Show | GitHub Exploit DB Packet Storm |
| 256996 | 7.5 | 危険 | 日立 | - | Cosminexus、Processing Kit for XML および Hitachi Developer's Kit for Java におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
- | 2010-02-2 11:42 | 2009-12-22 | Show | GitHub Exploit DB Packet Storm |
| 256997 | 4.3 | 警告 | VMware | - | 複数の VMware 製品におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-3731 | 2010-02-1 11:52 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
| 256998 | 10 | 危険 | サイバートラスト株式会社 Linux |
- | Linux kernel および gxsnmp パッケージの asn1 の実装における任意のコードを実行される脆弱性 |
CWE-119
バッファエラー |
CVE-2008-1673 | 2010-02-1 11:51 | 2008-06-10 | Show | GitHub Exploit DB Packet Storm |
| 256999 | 10 | 危険 | ヒューレット・パッカード | - | 複数の Symantec 製品の VRTSweb における任意のコードを実行される脆弱性 |
CWE-287
不適切な認証 |
CVE-2009-3027 | 2010-02-1 11:51 | 2009-12-8 | Show | GitHub Exploit DB Packet Storm |
| 257000 | 9.3 | 危険 | KDE project Glyph & Cog, LLC GNOME Project サイバートラスト株式会社 レッドハット |
- | Xpdf、gpdf および kpdf の FoFiType1::parse 関数における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-4035 | 2010-01-29 09:54 | 2009-12-16 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 28, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 222671 | 7.8 |
HIGH
Local |
android | In OatFileAssistant::GenerateOatFile of oat_file_assistant.cc, there is a possible file corruption issue due to an insecure default value. This could lead to local escalation of privilege with no add… |
CWE-1188
Insecure Default Initialization of Resource |
CVE-2019-2120 | 2024-11-21 13:40 | 2019-08-21 | Show | GitHub Exploit DB Packet Storm | |
| 222672 | 7.1 |
HIGH
Network |
mongodb | mongodb | After user deletion in MongoDB Server the improper invalidation of authorization sessions allows an authenticated user's session to persist and become conflated with new accounts, if those accounts r… |
CWE-613
Insufficient Session Expiration |
CVE-2019-2386 | 2024-11-21 13:40 | 2019-08-7 | Show | GitHub Exploit DB Packet Storm |
| 222673 | 7.8 |
HIGH
Local |
qualcomm |
ipq8074_firmware qca8081_firmware qcs404_firmware qcs405_firmware qcs605_firmware sd_425_firmware sd_427_firmware sd_430_firmware sd_435_firmware sd_450_firmware sd_625_… |
Firmware is getting into loop of overwriting memory when scan command is given from host because of improper validation. in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Sna… |
CWE-129
Improper Validation of Array Index |
CVE-2019-2346 | 2024-11-21 13:40 | 2019-07-26 | Show | GitHub Exploit DB Packet Storm |
| 222674 | 7.0 |
HIGH
Local |
qualcomm |
msm8909w_firmware msm8996au_firmware qcs605_firmware sd_425_firmware sd_427_firmware sd_430_firmware sd_435_firmware sd_450_firmware sd_625_firmware sd_636_firmware sd_7… |
Race condition while accessing DMA buffer in jpeg driver in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in MS… |
CWE-362
Race Condition |
CVE-2019-2345 | 2024-11-21 13:40 | 2019-07-26 | Show | GitHub Exploit DB Packet Storm |
| 222675 | 5.5 |
MEDIUM
Local |
qualcomm |
msm8909w_firmware msm8996au_firmware qcs605_firmware qualcomm_215_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd_427_firmware sd_430_firmware
Out of bound read and information disclosure in firmware due to insufficient checking of an embedded structure that can be sent from a kernel driver in Snapdragon Auto, Snapdragon Compute, Snapdragon…
|
CWE-125
|
Out-of-bounds Read
CVE-2019-2343
|
2024-11-21 13:40 |
2019-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 222676 | 7.5 |
HIGH
Network |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qcs405_firmware qcs605_firmware qualcomm_215_firmware sd_210_firmwa… |
Null pointer dereferencing can happen when playing the clip with wrong block group id in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapd… |
CWE-476
NULL Pointer Dereference |
CVE-2019-2334 | 2024-11-21 13:40 | 2019-07-26 | Show | GitHub Exploit DB Packet Storm |
| 222677 | 5.5 |
MEDIUM
Local |
qualcomm |
ipq4019_firmware ipq8064_firmware ipq8074_firmware mdm9150_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qcs405_firmware qcs605_firmware
improper input validation in allocation request for secure allocations can lead to page fault. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon M…
|
CWE-20
|
Improper Input Validation
CVE-2019-2330
|
2024-11-21 13:40 |
2019-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 222678 | 7.8 |
HIGH
Local |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qcs405_firmware qcs605_firmware qualcomm_215_firmw… |
Possible buffer overflow when number of channels passed is more than size of channel mapping array in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdrag… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2019-2328 | 2024-11-21 13:40 | 2019-07-26 | Show | GitHub Exploit DB Packet Storm |
| 222679 | 9.8 |
CRITICAL
Network |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909_firmware msm8996au_firmware qcs405_firmware qcs605_firmware qualcomm_215_firmware sd_210_firmwar… |
Possible buffer overflow can occur when playing clip with incorrect element size in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2019-2327 | 2024-11-21 13:40 | 2019-07-26 | Show | GitHub Exploit DB Packet Storm |
| 222680 | 7.8 |
HIGH
Local |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qcs405_firmware qcs605_firmware qualcomm_215_firmw… |
Data token is received from ADSP and is used without validation as an index into the array leads to out of bound access in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Con… |
CWE-129
Improper Validation of Array Index |
CVE-2019-2326 | 2024-11-21 13:40 | 2019-07-26 | Show | GitHub Exploit DB Packet Storm |