Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 5, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 252031 | 7.2 | 危険 | GNU Project VMware サイバートラスト株式会社 レッドハット |
- | GNU C library の ld.so における権限昇格の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-3856 | 2011-01-25 15:48 | 2010-10-25 | Show | GitHub Exploit DB Packet Storm |
| 252032 | 5.8 | 警告 | Mozilla Foundation オラクル |
- | Mozilla Firefox の JavaScript 実装内にある js_InitRandom 関数におけるシード値を推測される脆弱性 |
CWE-310
暗号の問題 |
CVE-2010-3400 | 2011-01-25 15:15 | 2010-09-15 | Show | GitHub Exploit DB Packet Storm |
| 252033 | 4.3 | 警告 | Mozilla Foundation オラクル |
- | Mozilla Firefox におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2010-2117 | 2011-01-25 15:13 | 2010-06-1 | Show | GitHub Exploit DB Packet Storm |
| 252034 | 6.8 | 警告 | アップル | - | Apple Mac OS X における脆弱性に対するアップデート |
CWE-134
書式文字列の問題 |
CVE-2010-4013 | 2011-01-25 15:10 | 2011-01-7 | Show | GitHub Exploit DB Packet Storm |
| 252035 | 5 | 警告 | GNU Project | - | GNU C Library の regcomp 実装におけるスタック消費の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2010-4052 | 2011-01-21 16:37 | 2011-01-13 | Show | GitHub Exploit DB Packet Storm |
| 252036 | 5 | 警告 | GNU Project | - | GNU C Library の regcomp 実装におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-4051 | 2011-01-21 16:35 | 2011-01-13 | Show | GitHub Exploit DB Packet Storm |
| 252037 | - | - | (複数のベンダ) | - | 侵入検知システム (IDS) および侵入防止システム (IPS) の機能を回避可能な問題 | - | - | 2011-01-21 16:30 | 2010-12-16 | Show | GitHub Exploit DB Packet Storm |
| 252038 | 6.9 | 警告 | Ecava | - | Ecava IntegraXor における権限昇格の脆弱性 |
CWE-Other
その他 |
CVE-2010-4599 | 2011-01-21 15:52 | 2010-12-17 | Show | GitHub Exploit DB Packet Storm |
| 252039 | 5 | 警告 | Ecava | - | Ecava IntegraXor におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2010-4598 | 2011-01-21 15:38 | 2011-01-12 | Show | GitHub Exploit DB Packet Storm |
| 252040 | 6.8 | 警告 | Lunascape | - | Lunascape における DLL 読み込みに関する脆弱性 |
CWE-Other
その他 |
CVE-2010-3927 | 2011-01-21 11:02 | 2011-01-21 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 5, 2026, 4:51 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 250031 | 9.1 |
CRITICAL
Network |
asus |
vivobaby hivivo |
The ASUS Vivobaby application before 1.1.09 for Android has Missing SSL Certificate Validation. |
CWE-295
Improper Certificate Validation |
CVE-2017-17944 | 2024-11-21 12:19 | 2019-06-21 | Show | GitHub Exploit DB Packet Storm |
| 250032 | 9.8 |
CRITICAL
Network |
netgear | readynas_surveillance_firmware | In NETGEAR ReadyNAS Surveillance before 1.4.3-17 x86 and before 1.1.4-7 ARM, $_GET['uploaddir'] is not escaped and is passed to system() through $tmp_upload_dir, leading to upgrade_handle.php?cmd=wri… |
CWE-77
Command Injection |
CVE-2017-18378 | 2024-11-21 12:19 | 2019-06-12 | Show | GitHub Exploit DB Packet Storm |
| 250033 | 9.8 |
CRITICAL
Network |
goahead | wireless_ip_camera_wificam_firmware | An issue was discovered on Wireless IP Camera (P2P) WIFICAM cameras. There is Command Injection in the set_ftp.cgi script via shell metacharacters in the pwd variable, as demonstrated by a set_ftp.cg… |
CWE-77
Command Injection |
CVE-2017-18377 | 2024-11-21 12:19 | 2019-06-12 | Show | GitHub Exploit DB Packet Storm |
| 250034 | 8.8 |
HIGH
Network |
strangebee | thehive | An improper authorization check in the User API in TheHive before 2.13.4 and 3.x before 3.3.1 allows users with read-only or read/write access to escalate their privileges to the administrator's priv… |
CWE-264
Permissions, Privileges, and Access Controls |
CVE-2017-18376 | 2024-11-21 12:19 | 2019-06-3 | Show | GitHub Exploit DB Packet Storm |
| 250035 | 8.8 |
HIGH
Network |
ampache | ampache | Ampache 3.8.3 allows PHP Object Instantiation via democratic.ajax.php and democratic.class.php. |
CWE-502
Deserialization of Untrusted Data |
CVE-2017-18375 | 2024-11-21 12:19 | 2019-05-25 | Show | GitHub Exploit DB Packet Storm |
| 250036 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware sd_210_firmware sd_835_firmware sd_845_firmware sd_850_firmware sd_212_firmware sd_205_firmware |
Secure camera logic allows display/secure camera controllers to access HLOS memory during secure display or camera session in Snapdragon Mobile, Snapdragon Wear in MDM9206, MDM9607, MDM9650, SD 210/S… |
NVD-CWE-noinfo
|
CVE-2017-18276 | 2024-11-21 12:19 | 2019-05-7 | Show | GitHub Exploit DB Packet Storm |
| 250037 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd… |
While processing camera buffers in camera driver, a use after free condition can occur in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in MDM9206, MDM9607, MDM9650, MSM8996AU, SD 210/SD … |
CWE-416
Use After Free |
CVE-2017-18156 | 2024-11-21 12:19 | 2019-05-7 | Show | GitHub Exploit DB Packet Storm |
| 250038 | 7.8 |
HIGH
Local |
qualcomm |
fsm9055_firmware fsm9955_firmware ipq4019_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qca9531_firmware… |
Lack of check of buffer length before copying can lead to buffer overflow in camera module in Small Cell SoC, Snapdragon Mobile, Snapdragon Wear in FSM9055, FSM9955, IPQ4019, IPQ8064, MDM9206, MDM960… |
CWE-190
Integer Overflow or Wraparound |
CVE-2017-18279 | 2024-11-21 12:19 | 2019-05-7 | Show | GitHub Exploit DB Packet Storm |
| 250039 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd_430_firmware sd_450_firmware sd_625_firmware sd_650… |
An integer underflow may occur due to lack of check when received data length from font_mgr_qsee_request_service is bigger than the minimal value of the segment header, which may result in a buffer o… |
CWE-191
Integer Underflow (Wrap or Wraparound) |
CVE-2017-18278 | 2024-11-21 12:19 | 2019-05-7 | Show | GitHub Exploit DB Packet Storm |
| 250040 | 5.5 |
MEDIUM
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd_430_firmware sd_450_firmware sd_6… |
A new account can be inserted into simContacts service using Android command line tool in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in MDM9206, MDM9607, MDM9650, MSM8909W, SD 210/SD 2… |
NVD-CWE-noinfo
|
CVE-2017-18275 | 2024-11-21 12:19 | 2019-05-7 | Show | GitHub Exploit DB Packet Storm |