Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 8, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 3761 | 7.8 |
重要
Local |
クアルコム |
QCA6574 ファームウェア SM6650P ファームウェア SA8150P ファームウェア Snapdragon W5+ Gen 1 Wearable Firmware Snapdragon X53 5G Modem-RF Firmware s… |
クアルコムのQualcomm 215 Mobile Firmware等の複数製品における複数の脆弱性 |
CWE-120 CWE-787 |
CVE-2025-47404 | 2026-05-8 12:11 | 2026-05-4 | Show | GitHub Exploit DB Packet Storm |
| 3762 | 7.8 |
重要
Local |
クアルコム |
IQX5121 Firmware fastconnect 7800 ファームウェア qca0000 ファームウェア snapdragon xr2 5g ファームウェア fastconnect 6900 ファームウェア WSA8815 ファームウェア WCD938… |
クアルコムのfastconnect 6900 ファームウェア等の複数製品における複数の脆弱性 |
CWE-119 CWE-822 |
CVE-2025-47405 | 2026-05-8 12:11 | 2026-05-4 | Show | GitHub Exploit DB Packet Storm |
| 3763 | 5.5 |
警告
Local |
クアルコム |
X2000094 ファームウェア XG101002 ファームウェア WSA8835 ファームウェア IQX7181 Firmware WCD9370 ファームウェア X2000077 ファームウェア XG101032 ファームウェア Snapdragon 8CX G… |
クアルコムのCologne ファームウェア等の複数製品における複数の脆弱性 |
CWE-125 CWE-126 |
CVE-2025-47406 | 2026-05-8 12:11 | 2026-05-4 | Show | GitHub Exploit DB Packet Storm |
| 3764 | 7 |
重要
Local |
クアルコム |
SAR2130P Firmware QXM1086 Firmware Snapdragon W5+ Gen 1 Wearable Firmware QXM1096 Firmware Snapdragon 4 Gen 2 Mobile Firmw… |
クアルコムのCQ7790 Firmware等の複数製品におけるTime-of-check Time-of-use (TOCTOU) 競合状態の脆弱性 |
CWE-367
Time-of-check Time-of-use (TOCTOU) 競合状態 |
CVE-2025-47407 | 2026-05-8 12:11 | 2026-05-4 | Show | GitHub Exploit DB Packet Storm |
| 3765 | 7.8 |
重要
Local |
クアルコム |
IQX7181 Firmware SNAPDRAGON 7C COMPUTE FIRMWARE Snapdragon 7c Gen 2 Compute Platform ファームウェア snapdragon xr2 5g ファームウェア fas… |
クアルコムのfastconnect 6200 ファームウェア等の複数製品における複数の脆弱性 |
CWE-119 CWE-822 |
CVE-2025-47408 | 2026-05-8 12:11 | 2026-05-4 | Show | GitHub Exploit DB Packet Storm |
| 3766 | 7.5 |
重要
Network |
ssh2 project | ssh2 | mscdexのSSH2における非効率的な正規表現の複雑さに関する脆弱性 |
CWE-1333
非効率的な正規表現の複雑さ |
CVE-2025-70034 | 2026-05-8 12:10 | 2026-03-9 | Show | GitHub Exploit DB Packet Storm |
| 3767 | 6.7 |
警告
Local |
メディアテック |
MT6789 Firmware MT6993 Firmware MT8196 Firmware MT8367 Firmware MT6989 Firmware MT6991 Firmware MT8766 Firmware MT8786 Firmware MT8910&… |
メディアテックのMT6768 ファームウェア等の複数製品における境界外読み取りに関する脆弱性 |
CWE-125
境界外読み取り |
CVE-2026-20447 | 2026-05-8 12:10 | 2026-05-4 | Show | GitHub Exploit DB Packet Storm |
| 3768 | 6.7 |
警告
Local |
メディアテック |
MT8781 Firmware MT8775 Firmware MT6765 ファームウェア MT6789 Firmware MT8367 Firmware MT6897 Firmware MT8796 Firmware MT6768 ファームウェア MT6877&nb… |
メディアテックのMT6765 ファームウェア等の複数製品における不十分なパーミッションまたは特権の不適切な処理に関する脆弱性 |
CWE-280
権限管理不備 |
CVE-2026-20448 | 2026-05-8 12:10 | 2026-05-4 | Show | GitHub Exploit DB Packet Storm |
| 3769 | 6.5 |
警告
Adjacent |
メディアテック |
MT6761 ファームウェア MT6835 Firmware MT6858 Firmware MT8795T Firmware MT8797 Firmware MT6855 Firmware MT6880 Firmware MT8755 Firmware MT8668&… |
メディアテックのMT2735 ファームウェア等の複数製品における古典的バッファオーバーフローの脆弱性 |
CWE-120
古典的バッファオーバーフロー |
CVE-2026-20449 | 2026-05-8 12:10 | 2026-05-4 | Show | GitHub Exploit DB Packet Storm |
| 3770 | 6.5 |
警告
Adjacent |
メディアテック |
MT6835 Firmware MT6858 Firmware MT8795T Firmware MT8797 Firmware MT6855 Firmware MT6880 Firmware MT8755 Firmware MT8668 Firmware MT8678… |
メディアテックのMT2735 ファームウェア等の複数製品における到達可能なアサーションに関する脆弱性 |
CWE-617
到達可能なアサーション |
CVE-2026-20450 | 2026-05-8 12:10 | 2026-05-4 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 8, 2026, 4:09 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 1471 | 9.8 |
CRITICAL
Network |
langflow | langflow | IBM Langflow OSS 1.0.0 through 1.9.1 could allow remote code execution due to improper validation of symbolic links during archive extraction. |
CWE-22
Path Traversal |
CVE-2026-7524 | 2026-06-3 00:24 | 2026-05-27 | Show | GitHub Exploit DB Packet Storm |
| 1472 | 7.8 |
HIGH
Local |
qualcomm |
cologne_firmware fastconnect_6900_firmware fastconnect_7800_firmware iqx5121_firmware iqx7181_firmware qca0000_firmware sc8380xp_firmware wcd9378c_firmware wcd9380_firmware
Memory corruption while processing IOCTL calls for escape operations.
|
CWE-125
|
Out-of-bounds Read
CVE-2026-25258
|
2026-06-3 00:23 |
2026-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 1473 | 7.8 |
HIGH
Local |
qualcomm |
cologne_firmware fastconnect_6700_firmware fastconnect_6900_firmware fastconnect_7800_firmware iqx5121_firmware iqx7181_firmware qca0000_firmware qcm5430_firmware qcm6490_firm… |
Memory corruption while processing multiple IOCTL command for escape operations. |
CWE-787
Out-of-bounds Write |
CVE-2026-25259 | 2026-06-3 00:22 | 2026-06-2 | Show | GitHub Exploit DB Packet Storm |
| 1474 | 7.0 |
HIGH
Local |
qualcomm |
cologne_firmware fastconnect_6700_firmware fastconnect_6900_firmware fastconnect_7800_firmware qcm5430_firmware qcm6490_firmware video_collaboration_vc3_platform_firmware sc8380x… |
Memory Corruption when accessing shared buffers without validation of concurrent user-mode input modifications. |
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition |
CVE-2026-25260 | 2026-06-3 00:22 | 2026-06-2 | Show | GitHub Exploit DB Packet Storm |
| 1475 | 7.5 |
HIGH
Network |
langflow | langflow | IBM Langflow OSS 1.0.0 through 1.9.0 could allow a denial of service due to uncontrolled resource consumption. |
CWE-400
Uncontrolled Resource Consumption |
CVE-2026-7528 | 2026-06-3 00:20 | 2026-05-27 | Show | GitHub Exploit DB Packet Storm |
| 1476 | 8.8 |
HIGH
Network |
ibm | controller | IBM Controller 11.0.1, 11.1.0, 11.1.1, and 11.1.2 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to… |
CWE-798
Use of Hard-coded Credentials |
CVE-2026-5065 | 2026-06-3 00:16 | 2026-05-27 | Show | GitHub Exploit DB Packet Storm |
| 1477 | 8.8 |
HIGH
Local |
qualcomm |
cq8750m_firmware fastconnect_6700_firmware fastconnect_6800_firmware fastconnect_6900_firmware fastconnect_7800_firmware g3x_gen_2_firmware pandeiro_firmware qca6391_firmware … |
Memory corruption while using Strongbox due to missing bounds check. |
CWE-129
Improper Validation of Array Index |
CVE-2026-25276 | 2026-06-2 23:58 | 2026-06-2 | Show | GitHub Exploit DB Packet Storm |
| 1478 | 8.8 |
HIGH
Local |
qualcomm |
cq8750m_firmware fastconnect_6700_firmware fastconnect_6800_firmware fastconnect_6900_firmware fastconnect_7800_firmware g3x_gen_2_firmware pandeiro_firmware qca6391_firmware … |
Memory corruption while using Strongbox due to buffer overflow. |
CWE-120
Classic Buffer Overflow |
CVE-2026-25277 | 2026-06-2 23:57 | 2026-06-2 | Show | GitHub Exploit DB Packet Storm |
| 1479 | 6.1 |
MEDIUM
Network |
- | - | Cross-Site Scripting (XSS) in GeniexWebView component in Transsion AI Assistant Lifestyle application (com.transsion.aiassistantlifestyle) all versions on Android allows remote attacker to execute ar… |
CWE-79
Cross-site Scripting |
CVE-2026-10510 | 2026-06-2 23:50 | 2026-06-2 | Show | GitHub Exploit DB Packet Storm |
| 1480 | 6.5 |
MEDIUM
Network |
- | - | D.Launcher 2 component of Slovak eID client ecosystem contains Improper URL Handler Processing vulnerability. Application registers multiple custom URL handlers that could be exploited to initiate fu… |
CWE-74 CWE-200 Injection Information Exposure |
CVE-2026-8993 | 2026-06-2 23:50 | 2026-06-2 | Show | GitHub Exploit DB Packet Storm |