Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 5, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 252081 | 6.9 | 警告 | マイクロソフト | - | Microsoft Windows における権限昇格の脆弱性 |
CWE-Other
その他 |
CVE-2010-3966 | 2011-01-14 15:42 | 2010-12-14 | Show | GitHub Exploit DB Packet Storm |
| 252082 | 6.9 | 警告 | マイクロソフト | - | Windows Media Encoder における権限昇格の脆弱性 |
CWE-Other
その他 |
CVE-2010-3965 | 2011-01-14 15:39 | 2010-12-14 | Show | GitHub Exploit DB Packet Storm |
| 252083 | 6.9 | 警告 | マイクロソフト | - | Microsoft Windows Movie Maker における権限昇格の脆弱性 |
CWE-Other
その他 |
CVE-2010-3967 | 2011-01-14 15:36 | 2010-12-14 | Show | GitHub Exploit DB Packet Storm |
| 252084 | 7.2 | 危険 | マイクロソフト | - | Microsoft Windows の Windows Task Scheduler における権限昇格の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-3338 | 2011-01-14 15:31 | 2010-12-14 | Show | GitHub Exploit DB Packet Storm |
| 252085 | 6.9 | 警告 | マイクロソフト | - | Microsoft Windows の OpenType Font ドライバにおける権限昇格の脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-3959 | 2011-01-14 15:27 | 2010-12-14 | Show | GitHub Exploit DB Packet Storm |
| 252086 | 5 | 警告 | アップル サイバートラスト株式会社 OpenLDAP Foundation ターボリナックス VMware レッドハット |
- | OpenLDAP の IA5StringNormalize 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-0212 | 2011-01-14 14:45 | 2010-06-30 | Show | GitHub Exploit DB Packet Storm |
| 252087 | 5 | 警告 | アップル サイバートラスト株式会社 OpenLDAP Foundation ターボリナックス VMware レッドハット |
- | OpenLDAP の slap_modrdn2mods 関数における任意のコードを実行される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-0211 | 2011-01-14 14:45 | 2010-06-30 | Show | GitHub Exploit DB Packet Storm |
| 252088 | 6.2 | 警告 | サイバートラスト株式会社 VMware Todd C. Miller レッドハット |
- | sudo における権限昇格の脆弱性 |
CWE-DesignError
|
CVE-2010-2956 | 2011-01-14 14:44 | 2010-09-7 | Show | GitHub Exploit DB Packet Storm |
| 252089 | - | - | GNU Project VMware サイバートラスト株式会社 レッドハット |
- | glibc に権限昇格の脆弱性 | - | CVE-2010-3847 | 2011-01-14 14:42 | 2010-10-26 | Show | GitHub Exploit DB Packet Storm |
| 252090 | 7.8 | 危険 | マイクロソフト アドビシステムズ 日本電気 |
- | Microsoft Visual Studio の ATL における終端文字列の処理に関する重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2009-2495 | 2011-01-14 14:33 | 2009-07-28 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 6, 2026, 4:08 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 250271 | 6.1 |
MEDIUM
Network |
rendertron | Error reporting within Rendertron 1.0.0 allows reflected Cross Site Scripting (XSS) from invalid URLs. |
CWE-79
Cross-site Scripting |
CVE-2017-18352 | 2024-11-21 12:19 | 2018-12-17 | Show | GitHub Exploit DB Packet Storm | |
| 250272 | 9.8 |
CRITICAL
Network |
qualcomm |
msm8996au_firmware sd_410_firmware sd_412_firmware sd_425_firmware sd_430_firmware sd_450_firmware sd_625_firmware sd_650_firmware sd_652_firmware sd_810_firmware sd_820… |
Missing validation check on CRL issuer name in Snapdragon Automobile, Snapdragon Mobile in versions MSM8996AU, SD 410/12, SD 425, SD 430, SD 450, SD 625, SD 650/52, SD 810, SD 820, SD 820A. |
CWE-20
Improper Input Validation |
CVE-2017-18318 | 2024-11-21 12:19 | 2018-11-29 | Show | GitHub Exploit DB Packet Storm |
| 250273 | 7.8 |
HIGH
Local |
qualcomm |
msm8996au_firmware sd_410_firmware sd_412_firmware sd_820_firmware sd_820a_firmware |
Restrictions related to the modem (sim lock, sim kill) can be bypassed by manipulating the system to issue a deactivation flow sequence in Snapdragon Automobile, Snapdragon Mobile in versions MSM8996… |
CWE-20
Improper Input Validation |
CVE-2017-18317 | 2024-11-21 12:19 | 2018-11-29 | Show | GitHub Exploit DB Packet Storm |
| 250274 | 7.8 |
HIGH
Local |
qualcomm | sd_600_firmware | Buffer over-read vulnerabilities in an older version of ASN.1 parser in Snapdragon Mobile in versions SD 600. |
CWE-125
Out-of-bounds Read |
CVE-2017-18315 | 2024-11-21 12:19 | 2018-11-29 | Show | GitHub Exploit DB Packet Storm |
| 250275 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd_430_firmware sd_450_firmware sd_… |
Secure application can access QSEE kernel memory through Ontario kernel driver in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear in versions MDM9206, MDM9607, MDM9650, MSM8996AU, SD 210… |
NVD-CWE-noinfo
|
CVE-2017-18316 | 2024-11-21 12:19 | 2018-11-29 | Show | GitHub Exploit DB Packet Storm |
| 250276 | 5.5 |
MEDIUM
Local |
android | A bool variable in Video function, which gets typecasted to int before being read could result in an out of bound read access in all Android releases from CAF using the linux kernel |
CWE-125
Out-of-bounds Read |
CVE-2017-18281 | 2024-11-21 12:19 | 2018-10-30 | Show | GitHub Exploit DB Packet Storm | |
| 250277 | 7.1 |
HIGH
Local |
qualcomm |
sd_845_firmware sd_850_firmware |
A micro-core of QMP transportation may cause a macro-core to read from or write to arbitrary memory in Snapdragon Mobile in version SD 845, SD 850. |
CWE-129
Improper Validation of Array Index |
CVE-2017-18309 | 2024-11-21 12:19 | 2018-10-26 | Show | GitHub Exploit DB Packet Storm |
| 250278 | 7.8 |
HIGH
Local |
qualcomm |
mdm9607_firmware msm8909w_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd_430_firmware |
Modem segments are unlocked after authentication, leaving modem segments open to all in Snapdragon Mobile, Snapdragon Wear in version MDM9607, MSM8909W, SD 210/SD 212/SD 205, SD 425, SD 430 |
NVD-CWE-noinfo
|
CVE-2017-18308 | 2024-11-21 12:19 | 2018-10-26 | Show | GitHub Exploit DB Packet Storm |
| 250279 | 7.8 |
HIGH
Local |
qualcomm |
mdm9607_firmware mdm9635m_firmware mdm9640_firmware mdm9645_firmware mdm9650_firmware mdm9655_firmware msm8909w_firmware msm8996au_firmware sd_210_firmware sd_212_firmware<… |
XPU Master privilege escalation is possible due to improper access control of unused configuration xPU ports where unused configuration ports are open in Snapdragon Automobile, Snapdragon Mobile, Sna… |
NVD-CWE-noinfo
|
CVE-2017-18311 | 2024-11-21 12:19 | 2018-10-26 | Show | GitHub Exploit DB Packet Storm |
| 250280 | 7.8 |
HIGH
Local |
qualcomm |
msm8909w_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_410_firmware sd_412_firmware sd_425_firmware sd_427_firmware sd_430_firmware sd_4… |
ClientEnv exposes services 0-32 to HLOS in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in version MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, S… |
NVD-CWE-noinfo
|
CVE-2017-18310 | 2024-11-21 12:19 | 2018-10-26 | Show | GitHub Exploit DB Packet Storm |