Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 6, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 252021 | 6.8 | 警告 | - | Linux 上で稼働する Google Chrome のサンドボックス実装におけるアクセス制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-4041 | 2011-01-26 13:26 | 2010-10-19 | Show | GitHub Exploit DB Packet Storm | |
| 252022 | 9.3 | 危険 | - | Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-119
バッファエラー |
CVE-2010-4040 | 2011-01-26 13:23 | 2010-10-19 | Show | GitHub Exploit DB Packet Storm | |
| 252023 | 7.5 | 危険 | - | Linux 上で稼働する Google Chrome における脆弱性 |
CWE-DesignError CWE-noinfo |
CVE-2010-4039 | 2011-01-26 13:17 | 2010-10-19 | Show | GitHub Exploit DB Packet Storm | |
| 252024 | 4.3 | 警告 | - | Google Chrome の Web Sockets 実装におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-4038 | 2011-01-26 13:12 | 2010-10-19 | Show | GitHub Exploit DB Packet Storm | |
| 252025 | 4.3 | 警告 | - | Google Chrome におけるポップアップブロッカーを回避される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-4037 | 2011-01-26 13:10 | 2010-10-19 | Show | GitHub Exploit DB Packet Storm | |
| 252026 | 6.8 | 警告 | - | Google Chrome における URL をなりすまされる脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-4036 | 2011-01-26 13:08 | 2010-10-19 | Show | GitHub Exploit DB Packet Storm | |
| 252027 | 9.3 | 危険 | - | Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-4035 | 2011-01-26 13:06 | 2010-10-19 | Show | GitHub Exploit DB Packet Storm | |
| 252028 | 9.3 | 危険 | - | Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-4034 | 2011-01-26 13:04 | 2010-10-19 | Show | GitHub Exploit DB Packet Storm | |
| 252029 | 5 | 警告 | - | Google Chrome におけるプロファイルスパム攻撃を誘導される脆弱性 |
CWE-Other
その他 |
CVE-2010-4033 | 2011-01-26 13:01 | 2010-10-19 | Show | GitHub Exploit DB Packet Storm | |
| 252030 | 9.3 | 危険 | - | WebKit の WebCore 内にある toAlphabetic 関数における一つずれ (off-by-one) エラーの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2010-1773 | 2011-01-26 12:59 | 2010-06-8 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 6, 2026, 4:08 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 250291 | 5.5 |
MEDIUM
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_450_firmware sd_650_firmware sd_652_firmware sd_… |
Improper translation table consolidation logic leads to resource exhaustion and QSEE error in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear in version MDM9206, MDM9607, MDM9650, MSM899… |
CWE-400
Uncontrolled Resource Consumption |
CVE-2017-18299 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 250292 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_450_firmware sd_615_firmware sd_616_firmware sd_… |
Lack of Input Validation in SDMX API can lead to NULL pointer access in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear in versions MDM9206, MDM9607, MDM9650, MSM8996AU, SD 210/SD 212/SD… |
CWE-476
NULL Pointer Dereference |
CVE-2017-18298 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 250293 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_450_firmware sd_615_firmware s… |
Access control on applications is not applied while accessing SafeSwitch services can lead to improper access in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607,… |
NVD-CWE-noinfo
|
CVE-2017-18296 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 250294 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_450_firmware sd_615_firmware s… |
Possible buffer overflow if input is not null terminated in DSP Service module in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, … |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-18295 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 250295 | 7.8 |
HIGH
Local |
qualcomm |
fsm9055_firmware mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware … |
While reading file class type from ELF header, a buffer overread may happen if the ELF file size is less than the size of ELF64 header size in Small Cell SoC, Snapdragon Automobile, Snapdragon Mobile… |
CWE-125
Out-of-bounds Read |
CVE-2017-18294 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 250296 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd_430_firmware sd_450_firmware sd_625_firmware sd_650… |
When a particular GPIO is protected by blocking access to the corresponding GPIO resource registers, the protection can be bypassed using the corresponding banked GPIO registers instead in Snapdragon… |
NVD-CWE-noinfo
|
CVE-2017-18293 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 250297 | 5.5 |
MEDIUM
Local |
qualcomm |
msm8909w_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_410_firmware sd_412_firmware sd_425_firmware sd_430_firmware sd_450_firmware sd_6… |
Secure app running in non secure space can restart TZ by calling Widevine app API repeatedly in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear in versions MSM8909W, MSM8996AU, SD 210/SD… |
CWE-20
Improper Input Validation |
CVE-2017-18292 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 250298 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware sd210_firmware sd212_firmware sd205_firmware sd425_firmware sd430_firmware sd450_firmware sd625_firmware sd650_firmwar… |
Non-secure SW can cause SDCC to generate secure bus accesses, which may expose RPM access in Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 425, SD … |
NVD-CWE-noinfo
|
CVE-2017-18282 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 250299 | 5.5 |
MEDIUM
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware qcn5502_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd… |
When dynamic memory allocation fails, currently the process sleeps for one second and continues with infinite loop without retrying for memory allocation in Snapdragon Automobile, Snapdragon Mobile, … |
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop') |
CVE-2017-18277 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 250300 | 7.8 |
HIGH
Local |
qualcomm |
mdm9635m_firmware sd_400_firmware sd_410_firmware sd_412_firmware sd_425_firmware sd_427_firmware sd_430_firmware sd_435_firmware sd_450_firmware sd_615_firmware sd_616_… |
In a device, with screen size 1440x2560, the check of contiguous buffer will overflow on certain buffer size resulting in an Integer Overflow or Wraparound in System UI in Snapdragon Automobile, Snap… |
CWE-190
Integer Overflow or Wraparound |
CVE-2017-18172 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |