Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 31, 2026, 2 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 257081 | 10 | 危険 | サン・マイクロシステムズ サイバートラスト株式会社 Mozilla Foundation レッドハット |
- | Mozilla Firefox/Thunderbird の base64 デコード関数における整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2009-2463 | 2010-04-1 13:36 | 2009-07-21 | Show | GitHub Exploit DB Packet Storm |
| 257082 | 10 | 危険 | サン・マイクロシステムズ サイバートラスト株式会社 Mozilla Foundation レッドハット |
- | Mozilla Firefox/Thunderbird のブラウザエンジンにおける任意のコードを実行される脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2009-2462 | 2010-04-1 13:34 | 2009-07-21 | Show | GitHub Exploit DB Packet Storm |
| 257083 | 7.2 | 危険 | サイバートラスト株式会社 Linux レッドハット |
- | Linux kernel の fasync_helper 関数における権限昇格の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2009-4141 | 2010-03-29 15:18 | 2010-01-19 | Show | GitHub Exploit DB Packet Storm |
| 257084 | 9.3 | 危険 | アップル | - | Apple Safari における任意のコードを実行される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-0045 | 2010-03-25 11:49 | 2010-03-15 | Show | GitHub Exploit DB Packet Storm |
| 257085 | 4.3 | 警告 | アップル | - | Apple Safari の PubSub における Cookie が設定される脆弱性 |
CWE-16
環境設定 |
CVE-2010-0044 | 2010-03-25 11:49 | 2010-03-15 | Show | GitHub Exploit DB Packet Storm |
| 257086 | 7.5 | 危険 | サン・マイクロシステムズ GNU Project サイバートラスト株式会社 レッドハット |
- | GNU tar の safer_name_suffix 関数におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2007-4476 | 2010-03-25 11:47 | 2007-08-17 | Show | GitHub Exploit DB Packet Storm |
| 257087 | 7.8 | 危険 | VMware | - | VMware Fusion の vmx86 のカーネル拡張における整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2009-3282 | 2010-03-24 12:23 | 2009-10-1 | Show | GitHub Exploit DB Packet Storm |
| 257088 | 7.2 | 危険 | VMware | - | VMware Fusion の vmx86 のカーネル拡張における権限昇格の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2009-3281 | 2010-03-24 12:22 | 2009-10-1 | Show | GitHub Exploit DB Packet Storm |
| 257089 | 9.3 | 危険 | VMware | - | 複数の VMware 製品の VMnc media コーデックにおける任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-2628 | 2010-03-24 12:22 | 2009-09-4 | Show | GitHub Exploit DB Packet Storm |
| 257090 | 9.3 | 危険 | VMware | - | 複数の VMware 製品の VMnc media コーデックにおけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2009-0199 | 2010-03-24 12:22 | 2009-09-4 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 31, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 216021 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware apq8037_firmware apq8053_firmware apq8084_firmware apq8096au_firmware aqt1000_firmware ar6003_firmware csr6030_firmware<… |
Possible buffer overflow in voice service due to lack of input validation of parameters in QMI Voice API in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snap… |
CWE-120
Classic Buffer Overflow |
CVE-2020-11292 | 2024-11-21 13:57 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |
| 216022 | 9.8 |
CRITICAL
Network |
qualcomm |
apq8017_firmware apq8053_firmware aqt1000_firmware ar8035_firmware csrb31024_firmware msm8917_firmware msm8920_firmware msm8940_firmware msm8953_firmware msm8976_firmware
While processing server certificate from IPSec server, certificate validation for subject alternative name API can cause heap overflow which can lead to memory corruption in Snapdragon Auto, Snapdrag…
|
CWE-787
|
Out-of-bounds Write
CVE-2020-11176
|
2024-11-21 13:57 |
2021-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 216023 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware apq8053_firmware apq8064au_firmware apq8076_firmware apq8096au_firmware aqt1000_firmware ar7420_firmware ar8031_firmware… |
Stack out-of-bounds write occurs while setting up a cipher device if the provided IV length exceeds the max limit value in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Con… |
CWE-787
Out-of-bounds Write |
CVE-2020-11267 | 2024-11-21 13:57 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |
| 216024 | 6.5 |
MEDIUM
Local |
qualcomm |
ar7420_firmware ar9580_firmware csr8811_firmware ipq4018_firmware ipq4019_firmware ipq4028_firmware ipq4029_firmware qca10901_firmware qca4024_firmware qca7500_firmware … |
Image address is dereferenced before validating its range which can cause potential QSEE information leakage in Snapdragon Wired Infrastructure and Networking |
NVD-CWE-Other
|
CVE-2020-11266 | 2024-11-21 13:57 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |
| 216025 | 5.5 |
MEDIUM
Local |
qualcomm |
ar7420_firmware ar9580_firmware csr8811_firmware ipq4018_firmware ipq4019_firmware ipq4028_firmware ipq4029_firmware qca10901_firmware qca4024_firmware qca7500_firmware … |
Information disclosure issue due to lack of validation of pointer arguments passed to TZ BSP in Snapdragon Wired Infrastructure and Networking |
CWE-125
Out-of-bounds Read |
CVE-2020-11265 | 2024-11-21 13:57 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |
| 216026 | 8.4 |
HIGH
Local |
qualcomm |
apq8017_firmware apq8053_firmware aqt1000_firmware msm8917_firmware msm8953_firmware pm215_firmware pm3003a_firmware pm4125_firmware pm439_firmware pm456_firmware pm6125… |
An improper free of uninitialized memory can occur in DIAG services in Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile |
CWE-908
Use of Uninitialized Resource |
CVE-2020-11260 | 2024-11-21 13:57 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |
| 216027 | 7.0 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware apq8053_firmware apq8064au_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware ar8151_firmware<… |
A race between command submission and destroying the context can cause an invalid context being added to the list leads to use after free issue. in Snapdragon Auto, Snapdragon Compute, Snapdragon Con… |
CWE-362 CWE-416 Race Condition Use After Free |
CVE-2020-11262 | 2024-11-21 13:57 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |
| 216028 | 7.8 |
HIGH
Local |
qualcomm |
apq8009_firmware apq8009w_firmware apq8017_firmware apq8037_firmware apq8053_firmware apq8064au_firmware apq8096au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware… |
Memory corruption due to improper check to return error when user application requests memory allocation of a huge size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Con… |
CWE-20
Improper Input Validation |
CVE-2020-11261 | 2024-11-21 13:57 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |
| 216029 | 8.8 |
HIGH
Local |
qualcomm |
ar7420_firmware ar9580_firmware csr8811_firmware ipq4018_firmware ipq4019_firmware ipq4028_firmware ipq4029_firmware qca10901_firmware qca4024_firmware qca7500_firmware … |
Memory corruption due to lack of validation of pointer arguments passed to Trustzone BSP in Snapdragon Wired Infrastructure and Networking |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2020-11259 | 2024-11-21 13:57 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |
| 216030 | 8.8 |
HIGH
Local |
qualcomm |
ar7420_firmware ar9580_firmware csr8811_firmware ipq4018_firmware ipq4019_firmware ipq4028_firmware ipq4029_firmware qca10901_firmware qca4024_firmware qca7500_firmware … |
Memory corruption due to lack of validation of pointer arguments passed to Trustzone BSP in Snapdragon Wired Infrastructure and Networking |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2020-11258 | 2024-11-21 13:57 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |