Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 27, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 257001 | 7.8 | 危険 | Mozilla Foundation | - | Mozilla Firefox/SeaMonkey の GeckoActiveXObject 関数における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2009-3987 | 2010-01-29 09:54 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
| 257002 | 7.6 | 危険 | サイバートラスト株式会社 Mozilla Foundation レッドハット |
- | Mozilla Firefox/SeaMonkey における任意の JavaScript を実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3986 | 2010-01-29 09:54 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
| 257003 | 6.8 | 警告 | サイバートラスト株式会社 Mozilla Foundation レッドハット |
- | Mozilla Firefox/SeaMonkey におけるコンテンツを偽装される脆弱性 |
CWE-Other
その他 |
CVE-2009-3985 | 2010-01-29 09:53 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
| 257004 | 6.8 | 警告 | サイバートラスト株式会社 Mozilla Foundation レッドハット |
- | Mozilla Firefox/SeaMonkey における http URL または file URL の SSL インジケータを偽装される脆弱性 |
CWE-Other
その他 |
CVE-2009-3984 | 2010-01-29 09:53 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
| 257005 | 6.8 | 警告 | サイバートラスト株式会社 Mozilla Foundation レッドハット |
- | Mozilla Firefox/SeaMonkey における認証されたリクエストを任意のアプリケーションに送信される脆弱性 |
CWE-Other
その他 |
CVE-2009-3983 | 2010-01-29 09:53 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
| 257006 | 9.3 | 危険 | Mozilla Foundation | - | 複数の Mozilla 製品の libtheora における任意のコードを実行される脆弱性 |
CWE-189
数値処理の問題 |
CVE-2009-3389 | 2010-01-28 12:16 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
| 257007 | 9.3 | 危険 | Mozilla Foundation | - | 複数の Mozilla 製品の liboggplay における任意のコードを実行される脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2009-3388 | 2010-01-28 12:16 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
| 257008 | 9.3 | 危険 | Mozilla Foundation | - | 複数の Mozilla 製品の JavaScript エンジンにおける任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-3982 | 2010-01-28 12:16 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
| 257009 | 9.3 | 危険 | サイバートラスト株式会社 Mozilla Foundation レッドハット |
- | 複数の Mozilla 製品のブラウザエンジンにおける任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-3981 | 2010-01-28 12:16 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
| 257010 | 9.3 | 危険 | Mozilla Foundation | - | 複数の Mozilla 製品のブラウザエンジンにおける任意のコードを実行される脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2009-3980 | 2010-01-28 12:15 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 28, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 222671 | 7.8 |
HIGH
Local |
android | In OatFileAssistant::GenerateOatFile of oat_file_assistant.cc, there is a possible file corruption issue due to an insecure default value. This could lead to local escalation of privilege with no add… |
CWE-1188
Insecure Default Initialization of Resource |
CVE-2019-2120 | 2024-11-21 13:40 | 2019-08-21 | Show | GitHub Exploit DB Packet Storm | |
| 222672 | 7.1 |
HIGH
Network |
mongodb | mongodb | After user deletion in MongoDB Server the improper invalidation of authorization sessions allows an authenticated user's session to persist and become conflated with new accounts, if those accounts r… |
CWE-613
Insufficient Session Expiration |
CVE-2019-2386 | 2024-11-21 13:40 | 2019-08-7 | Show | GitHub Exploit DB Packet Storm |
| 222673 | 7.8 |
HIGH
Local |
qualcomm |
ipq8074_firmware qca8081_firmware qcs404_firmware qcs405_firmware qcs605_firmware sd_425_firmware sd_427_firmware sd_430_firmware sd_435_firmware sd_450_firmware sd_625_… |
Firmware is getting into loop of overwriting memory when scan command is given from host because of improper validation. in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Sna… |
CWE-129
Improper Validation of Array Index |
CVE-2019-2346 | 2024-11-21 13:40 | 2019-07-26 | Show | GitHub Exploit DB Packet Storm |
| 222674 | 7.0 |
HIGH
Local |
qualcomm |
msm8909w_firmware msm8996au_firmware qcs605_firmware sd_425_firmware sd_427_firmware sd_430_firmware sd_435_firmware sd_450_firmware sd_625_firmware sd_636_firmware sd_7… |
Race condition while accessing DMA buffer in jpeg driver in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in MS… |
CWE-362
Race Condition |
CVE-2019-2345 | 2024-11-21 13:40 | 2019-07-26 | Show | GitHub Exploit DB Packet Storm |
| 222675 | 5.5 |
MEDIUM
Local |
qualcomm |
msm8909w_firmware msm8996au_firmware qcs605_firmware qualcomm_215_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd_427_firmware sd_430_firmware
Out of bound read and information disclosure in firmware due to insufficient checking of an embedded structure that can be sent from a kernel driver in Snapdragon Auto, Snapdragon Compute, Snapdragon…
|
CWE-125
|
Out-of-bounds Read
CVE-2019-2343
|
2024-11-21 13:40 |
2019-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 222676 | 7.5 |
HIGH
Network |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qcs405_firmware qcs605_firmware qualcomm_215_firmware sd_210_firmwa… |
Null pointer dereferencing can happen when playing the clip with wrong block group id in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapd… |
CWE-476
NULL Pointer Dereference |
CVE-2019-2334 | 2024-11-21 13:40 | 2019-07-26 | Show | GitHub Exploit DB Packet Storm |
| 222677 | 5.5 |
MEDIUM
Local |
qualcomm |
ipq4019_firmware ipq8064_firmware ipq8074_firmware mdm9150_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qcs405_firmware qcs605_firmware
improper input validation in allocation request for secure allocations can lead to page fault. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon M…
|
CWE-20
|
Improper Input Validation
CVE-2019-2330
|
2024-11-21 13:40 |
2019-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 222678 | 7.8 |
HIGH
Local |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qcs405_firmware qcs605_firmware qualcomm_215_firmw… |
Possible buffer overflow when number of channels passed is more than size of channel mapping array in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdrag… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2019-2328 | 2024-11-21 13:40 | 2019-07-26 | Show | GitHub Exploit DB Packet Storm |
| 222679 | 9.8 |
CRITICAL
Network |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909_firmware msm8996au_firmware qcs405_firmware qcs605_firmware qualcomm_215_firmware sd_210_firmwar… |
Possible buffer overflow can occur when playing clip with incorrect element size in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2019-2327 | 2024-11-21 13:40 | 2019-07-26 | Show | GitHub Exploit DB Packet Storm |
| 222680 | 7.8 |
HIGH
Local |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qcs405_firmware qcs605_firmware qualcomm_215_firmw… |
Data token is received from ADSP and is used without validation as an index into the array leads to out of bound access in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Con… |
CWE-129
Improper Validation of Array Index |
CVE-2019-2326 | 2024-11-21 13:40 | 2019-07-26 | Show | GitHub Exploit DB Packet Storm |