Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
245911 6.8 警告 Mozilla Foundation - 複数の Mozilla 製品におけるクローム特権で任意の JavaScript コードを実行される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2012-0458 2012-09-3 16:10 2012-03-13 Show GitHub Exploit DB Packet Storm
245912 6.8 警告 Autosave - Drupal 用 Autosave モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2012-2097 2012-09-3 16:02 2012-04-11 Show GitHub Exploit DB Packet Storm
245913 7.1 危険 WellinTech - WellinTech KingSCADA における重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理
CVE-2012-1977 2012-09-3 15:57 2012-01-20 Show GitHub Exploit DB Packet Storm
245914 6 警告 IBM - IBM WebSphere Application Server における管理者のアクセス権限を取得される脆弱性 CWE-20
不適切な入力確認
CVE-2012-3325 2012-09-3 14:21 2012-08-30 Show GitHub Exploit DB Packet Storm
245915 6.4 警告 EPractize Labs - EPractize Labs Subscription Manager における任意のファイルを上書きされる脆弱性 CWE-20
不適切な入力確認
CVE-2011-5136 2012-09-3 14:20 2012-08-30 Show GitHub Exploit DB Packet Storm
245916 6 警告 Docebo - DoceboLMS の iotask モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2011-5135 2012-09-3 14:18 2012-08-30 Show GitHub Exploit DB Packet Storm
245917 6 警告 Widget Factory Limited - Joomla! 用 JCE コンポーネントにおける任意の PHP コードを実行される脆弱性 CWE-Other
その他
CVE-2011-5134 2012-09-3 14:15 2012-08-30 Show GitHub Exploit DB Packet Storm
245918 10 危険 MyBB Group - MyBB における脆弱性 CWE-noinfo
情報不足
CVE-2011-5133 2012-09-3 14:14 2011-11-25 Show GitHub Exploit DB Packet Storm
245919 4.3 警告 MyBB Group - MyBB におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-5132 2012-09-3 14:13 2011-11-25 Show GitHub Exploit DB Packet Storm
245920 6.8 警告 MyBB Group - MyBB の global.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2011-5131 2012-09-3 13:53 2011-11-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
252891 7.8 HIGH
Local
qualcomm mdm9206_firmware
mdm9607_firmware
mdm9640_firmware
mdm9650_firmware
msm8996au_firmware
sd_210_firmware
sd_212_firmware
sd_205_firmware
sd_425_firmware
sd_427_firmware
sd…
While processing radio connection status change events, Radio index is not properly validated in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdrag… CWE-129
 Improper Validation of Array Index
CVE-2018-11899 2024-11-21 12:44 2019-02-12 Show GitHub Exploit DB Packet Storm
252892 7.8 HIGH
Local
qualcomm mdm9607_firmware
mdm9650_firmware
mdm9655_firmware
msm8996au_firmware
sd_210_firmware
sd_212_firmware
sd_205_firmware
sd_410_firmware
sd_412_firmware
sd_425_firmware
sd_…
Unauthorized access may be allowed by the SCP11 Crypto Services TA will processing commands from other TA in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electron… CWE-862
 Missing Authorization
CVE-2018-11888 2024-11-21 12:44 2019-02-12 Show GitHub Exploit DB Packet Storm
252893 7.8 HIGH
Local
qualcomm mdm9607_firmware
mdm9650_firmware
mdm9655_firmware
msm8996au_firmware
sd_210_firmware
sd_212_firmware
sd_205_firmware
sd_410_firmware
sd_412_firmware
sd_636_firmware
sd_…
If an end user makes use of SCP11 sample OCE code without modification it could lead to a buffer overflow when transmitting a CAPDU in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Sn… CWE-190
 Integer Overflow or Wraparound
CVE-2018-11855 2024-11-21 12:44 2019-02-12 Show GitHub Exploit DB Packet Storm
252894 7.8 HIGH
Local
qualcomm ipq8074_firmware
mdm9206_firmware
mdm9607_firmware
mdm9650_firmware
mdm9655_firmware
msm8909w_firmware
msm8996au_firmware
qca8081_firmware
sd_210_firmware
sd_212_firmware
Malicious TA can tag QSEE kernel memory and map to EL0, there by corrupting the physical memory as well it can be used to corrupt the QSEE kernel and compromise the whole TEE in Snapdragon Auto, Snap… CWE-20
 Improper Input Validation 
CVE-2018-11847 2024-11-21 12:44 2019-02-12 Show GitHub Exploit DB Packet Storm
252895 7.5 HIGH
Network
apache
canonical
subversion
ubuntu_linux
Subversion's mod_dav_svn Apache HTTPD module versions 1.11.0 and 1.10.0 to 1.10.3 will crash after dereferencing an uninitialized pointer if the client omits the root path in a recursive directory li… CWE-824
 Access of Uninitialized Pointer
CVE-2018-11803 2024-11-21 12:44 2019-02-6 Show GitHub Exploit DB Packet Storm
252896 7.8 HIGH
Local
apache
canonical
openoffice
ubuntu_linux
When loading a document with Apache Open Office 4.1.5 and earlier with smaller end line termination than the operating system uses, the defect occurs. In this case OpenOffice runs into an Arithmetic … CWE-682
 Incorrect Calculation
CVE-2018-11790 2024-11-21 12:44 2019-02-1 Show GitHub Exploit DB Packet Storm
252897 7.2 HIGH
Network
symantec reporter The Symantec Reporter CLI 10.1 prior to 10.1.5.6 and 10.2 prior to 10.2.1.8 is susceptible to an OS command injection vulnerability. An authenticated malicious administrator with Enable mode access c… CWE-78
OS Command 
CVE-2018-12237 2024-11-21 12:44 2019-01-25 Show GitHub Exploit DB Packet Storm
252898 8.8 HIGH
Adjacent
qualcomm mdm9206_firmware
mdm9607_firmware
Improper check while accessing the local memory stack on MQTT connection request can lead to buffer overflow in snapdragon wear in versions MDM9206, MDM9607 CWE-787
 Out-of-bounds Write
CVE-2018-11993 2024-11-21 12:44 2019-01-19 Show GitHub Exploit DB Packet Storm
252899 5.5 MEDIUM
Local
qualcomm mdm9206_firmware
mdm9607_firmware
mdm9635m_firmware
mdm9650_firmware
mdm9655_firmware
msm8996au_firmware
sd_210_firmware
sd_212_firmware
sd_205_firmware
sd_410_firmware
Improper input validation in trustzone can lead to denial of service in snapdragon automobile, snapdragon mobile and snapdragon wear in versions MDM9206, MDM9607, MDM9635M, MDM9650, MDM9655, MSM8996A… CWE-20
 Improper Input Validation 
CVE-2018-11999 2024-11-21 12:44 2019-01-19 Show GitHub Exploit DB Packet Storm
252900 7.5 HIGH
Adjacent
qualcomm mdm9206_firmware
mdm9607_firmware
sd_210_firmware
sd_212_firmware
sd_205_firmware
sd_427_firmware
sd_435_firmware
sd_450_firmware
sd_625_firmware
sd_636_firmware
sd_835_…
While processing a packet decode request in MQTT, Race condition can occur leading to an out-of-bounds access in snapdragon mobile and snapdragon wear in versions MDM9206, MDM9607, SD 210/SD 212/SD 2… CWE-362
Race Condition
CVE-2018-11998 2024-11-21 12:44 2019-01-19 Show GitHub Exploit DB Packet Storm