Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 14, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 224431 | 4.3 | 警告 | レッドハット | - | Red Hat JBoss Portal の GateIn Portal コンポーネントにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-4424 | 2013-12-25 14:51 | 2013-12-16 | Show | GitHub Exploit DB Packet Storm |
| 224432 | 3.5 | 注意 | IBM | - | IBM Security Access Manager for Enterprise Single Sign-On の IMS サーバにおけるログファイルを読まれる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2013-5420 | 2013-12-25 14:34 | 2013-12-20 | Show | GitHub Exploit DB Packet Storm |
| 224433 | 7.5 | 危険 | レッドハット | - | Red Hat Enterprise MRG Grid の cumin 用の Web インターフェースにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2013-4461 | 2013-12-25 14:05 | 2013-12-17 | Show | GitHub Exploit DB Packet Storm |
| 224434 | 4.3 | 警告 | レッドハット | - | Red Hat Enterprise MRG Grid の cumin 用の Web インターフェースにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-4414 | 2013-12-25 14:04 | 2013-12-17 | Show | GitHub Exploit DB Packet Storm |
| 224435 | 6.8 | 警告 | レッドハット | - | Red Hat Enterprise MRG Grid の cumin 用の Web インターフェースにおけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2013-4405 | 2013-12-25 14:04 | 2013-12-17 | Show | GitHub Exploit DB Packet Storm |
| 224436 | 6.5 | 警告 | レッドハット | - | Red Hat Enterprise MRG Grid の cumin におけるロールの制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2013-4404 | 2013-12-25 14:03 | 2013-12-17 | Show | GitHub Exploit DB Packet Storm |
| 224437 | 5 | 警告 | Idleman | - | Leed における認証を回避される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2013-2629 | 2013-12-25 14:03 | 2013-12-18 | Show | GitHub Exploit DB Packet Storm |
| 224438 | 2.1 | 注意 | VMware | - | VMware ESX および ESXi において任意のファイルにアクセス可能な問題 |
CWE-noinfo
情報不足 |
CVE-2013-5973 | 2013-12-25 13:56 | 2013-12-24 | Show | GitHub Exploit DB Packet Storm |
| 224439 | 5 | 警告 | アップル | - | Apple Motion の OZDocument::parseElement 関数における整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2013-6114 | 2013-12-25 13:53 | 2013-10-7 | Show | GitHub Exploit DB Packet Storm |
| 224440 | 4.9 | 警告 | Novell | - | Windows 上で稼働する Novell Client の VBA32 AntiRootKit コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2013-3705 | 2013-12-25 13:43 | 2013-12-10 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 14, 2026, 4:12 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 276861 | 7.5 |
HIGH
Network |
node-uuid_project | node-uuid | node-uuid before 1.4.4 uses insufficiently random data to create a GUID, which could make it easier for attackers to have unspecified impact via brute force guessing. |
CWE-331
Insufficient Entropy |
CVE-2015-8851 | 2024-11-21 11:39 | 2020-01-31 | Show | GitHub Exploit DB Packet Storm |
| 276862 | 9.8 |
CRITICAL
Network |
php-gettext_project opensuse redhat fedoraproject |
php-gettext leap enterprise_linux fedora |
The plural form formula in ngettext family of calls in php-gettext before 1.0.12 allows remote attackers to execute arbitrary code. |
CWE-20
Improper Input Validation |
CVE-2015-8980 | 2024-11-21 11:39 | 2019-11-5 | Show | GitHub Exploit DB Packet Storm |
| 276863 | 9.8 |
CRITICAL
Network |
qualcomm |
sd_410_firmware sd_412_firmware sd_617_firmware sd_652_firmware sd_800_firmware sd_808_firmware sd_810_firmware sd_650_firmware |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 410/12, SD 617, SD 650/52, SD 800, SD 808, and SD 810, in TQS QSEE application, while parsing "Set Certif… |
CWE-119 CWE-190 Incorrect Access of Indexable Resource ('Range Error') Integer Overflow or Wraparound |
CVE-2015-9183 | 2024-11-21 11:39 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 276864 | 9.8 |
CRITICAL
Network |
qualcomm | msm8974_firmware | In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MSM8974, lack of length checking in OEMCrypto_DeriveKeysFromSessionKey() could lead to a buffer overflow vul… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2015-9179 | 2024-11-21 11:39 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 276865 | 9.8 |
CRITICAL
Network |
qualcomm |
sd_410_firmware sd_412_firmware sd_617_firmware sd_650_firmware sd_652_firmware sd_800_firmware sd_808_firmware sd_810_firmware |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 410/12, SD 617, SD 650/52, SD 800, SD 808, and SD 810, lack of validation of the return value prior to us… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2015-9174 | 2024-11-21 11:39 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 276866 | 9.8 |
CRITICAL
Network |
qualcomm |
sd_410_firmware sd_412_firmware sd_617_firmware sd_650_firmware sd_652_firmware sd_800_firmware sd_808_firmware sd_810_firmware |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 410/12, SD 617, SD 650/52, SD 800, SD 808, and SD 810, missing of return value check in memscpy can cause… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2015-9173 | 2024-11-21 11:39 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 276867 | 9.8 |
CRITICAL
Network |
qualcomm |
sd_410_firmware sd_412_firmware sd_617_firmware sd_650_firmware sd_652_firmware sd_800_firmware sd_808_firmware sd_810_firmware |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 410/12, SD 617, SD 650/52, SD 800, SD 808, and SD 810, in the function "Certificate_CreateWithBuffer" in … |
CWE-476
NULL Pointer Dereference |
CVE-2015-9162 | 2024-11-21 11:39 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 276868 | 9.8 |
CRITICAL
Network |
qualcomm |
mdm9625_firmware mdm9635m_firmware sd_400_firmware sd_800_firmware |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9625, MDM9635M, SD 400, and SD 800, userspace-provided pointer arguments are not validated. |
CWE-20
Improper Input Validation |
CVE-2015-9151 | 2024-11-21 11:39 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 276869 | 9.8 |
CRITICAL
Network |
qualcomm |
mdm9625_firmware mdm9635m_firmware sd_400_firmware sd_800_firmware |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9625, MDM9635M, SD 400, and SD 800, while computing the length of memory allocated for a Diag event, if t… |
CWE-119 CWE-190 Incorrect Access of Indexable Resource ('Range Error') Integer Overflow or Wraparound |
CVE-2015-9150 | 2024-11-21 11:39 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |
| 276870 | 9.8 |
CRITICAL
Network |
qualcomm |
mdm9625_firmware mdm9635m_firmware sd_400_firmware sd_800_firmware |
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9625, MDM9635M, SD 400, and SD 800, userspace-provided pointer arguments are not validated. |
CWE-20
Improper Input Validation |
CVE-2015-9147 | 2024-11-21 11:39 | 2018-04-18 | Show | GitHub Exploit DB Packet Storm |