Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 6, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 252001 | 9.3 | 危険 | サイバートラスト株式会社 Wireshark レッドハット |
- | Wireshark の sect_enttec_dmx_da 関数におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-4538 | 2011-01-28 15:46 | 2011-01-7 | Show | GitHub Exploit DB Packet Storm |
| 252002 | 5.8 | 警告 | Mozilla Foundation オラクル |
- | Mozilla Firefox の js_InitRandom 関数におけるシードの値を推測される脆弱性 |
CWE-310
暗号の問題 |
CVE-2010-3399 | 2011-01-28 15:41 | 2010-09-15 | Show | GitHub Exploit DB Packet Storm |
| 252003 | 10 | 危険 | - | Google Chrome の WebSockets の実装におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-189
数値処理の問題 |
CVE-2010-3254 | 2011-01-27 15:05 | 2010-09-2 | Show | GitHub Exploit DB Packet Storm | |
| 252004 | 10 | 危険 | - | Google Chrome の notification permissions の実装におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2010-3253 | 2011-01-27 15:04 | 2010-09-2 | Show | GitHub Exploit DB Packet Storm | |
| 252005 | 10 | 危険 | - | Google Chrome の Notifications presenter におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2010-3252 | 2011-01-27 15:02 | 2010-09-2 | Show | GitHub Exploit DB Packet Storm | |
| 252006 | 4.3 | 警告 | - | Google Chrome の WebSockets 実装におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2010-3251 | 2011-01-27 15:01 | 2010-09-2 | Show | GitHub Exploit DB Packet Storm | |
| 252007 | 5 | 警告 | - | Google Chrome におけるインストールされた拡張機能の設定を列挙される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-3250 | 2011-01-27 15:00 | 2010-09-2 | Show | GitHub Exploit DB Packet Storm | |
| 252008 | 9.3 | 危険 | - | Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2010-3249 | 2011-01-27 14:58 | 2010-09-2 | Show | GitHub Exploit DB Packet Storm | |
| 252009 | 5 | 警告 | - | Google Chrome における脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-3248 | 2011-01-27 14:56 | 2010-09-2 | Show | GitHub Exploit DB Packet Storm | |
| 252010 | 4.3 | 警告 | - | Google Chrome における URL バーの外観を偽造される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-3247 | 2011-01-27 14:55 | 2010-09-2 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 6, 2026, 4:08 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 250291 | 5.5 |
MEDIUM
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_450_firmware sd_650_firmware sd_652_firmware sd_… |
Improper translation table consolidation logic leads to resource exhaustion and QSEE error in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear in version MDM9206, MDM9607, MDM9650, MSM899… |
CWE-400
Uncontrolled Resource Consumption |
CVE-2017-18299 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 250292 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_450_firmware sd_615_firmware sd_616_firmware sd_… |
Lack of Input Validation in SDMX API can lead to NULL pointer access in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear in versions MDM9206, MDM9607, MDM9650, MSM8996AU, SD 210/SD 212/SD… |
CWE-476
NULL Pointer Dereference |
CVE-2017-18298 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 250293 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_450_firmware sd_615_firmware s… |
Access control on applications is not applied while accessing SafeSwitch services can lead to improper access in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607,… |
NVD-CWE-noinfo
|
CVE-2017-18296 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 250294 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_450_firmware sd_615_firmware s… |
Possible buffer overflow if input is not null terminated in DSP Service module in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, … |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-18295 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 250295 | 7.8 |
HIGH
Local |
qualcomm |
fsm9055_firmware mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware … |
While reading file class type from ELF header, a buffer overread may happen if the ELF file size is less than the size of ELF64 header size in Small Cell SoC, Snapdragon Automobile, Snapdragon Mobile… |
CWE-125
Out-of-bounds Read |
CVE-2017-18294 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 250296 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd_430_firmware sd_450_firmware sd_625_firmware sd_650… |
When a particular GPIO is protected by blocking access to the corresponding GPIO resource registers, the protection can be bypassed using the corresponding banked GPIO registers instead in Snapdragon… |
NVD-CWE-noinfo
|
CVE-2017-18293 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 250297 | 5.5 |
MEDIUM
Local |
qualcomm |
msm8909w_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_410_firmware sd_412_firmware sd_425_firmware sd_430_firmware sd_450_firmware sd_6… |
Secure app running in non secure space can restart TZ by calling Widevine app API repeatedly in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear in versions MSM8909W, MSM8996AU, SD 210/SD… |
CWE-20
Improper Input Validation |
CVE-2017-18292 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 250298 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware sd210_firmware sd212_firmware sd205_firmware sd425_firmware sd430_firmware sd450_firmware sd625_firmware sd650_firmwar… |
Non-secure SW can cause SDCC to generate secure bus accesses, which may expose RPM access in Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 425, SD … |
NVD-CWE-noinfo
|
CVE-2017-18282 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 250299 | 5.5 |
MEDIUM
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware qcn5502_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd… |
When dynamic memory allocation fails, currently the process sleeps for one second and continues with infinite loop without retrying for memory allocation in Snapdragon Automobile, Snapdragon Mobile, … |
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop') |
CVE-2017-18277 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 250300 | 7.8 |
HIGH
Local |
qualcomm |
mdm9635m_firmware sd_400_firmware sd_410_firmware sd_412_firmware sd_425_firmware sd_427_firmware sd_430_firmware sd_435_firmware sd_450_firmware sd_615_firmware sd_616_… |
In a device, with screen size 1440x2560, the check of contiguous buffer will overflow on certain buffer size resulting in an Integer Overflow or Wraparound in System UI in Snapdragon Automobile, Snap… |
CWE-190
Integer Overflow or Wraparound |
CVE-2017-18172 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |