Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 5, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 252111 | 4.3 | 警告 | リアルネットワークス | - | RealNetworks RealPlayer の複数のコンポーネントにおける RealOneActiveXObject プロセスにコードを挿入される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-4388 | 2011-01-11 14:31 | 2010-12-10 | Show | GitHub Exploit DB Packet Storm |
| 252112 | 9.3 | 危険 | リアルネットワークス | - | RealNetworks RealPlayer の RealAudio コーデックにおける任意のコードを実行される脆弱性 |
CWE-119
バッファエラー |
CVE-2010-4387 | 2011-01-11 14:30 | 2010-12-10 | Show | GitHub Exploit DB Packet Storm |
| 252113 | 9.3 | 危険 | レッドハット リアルネットワークス |
- | RealNetworks RealPlayer の RealMedia における任意のコードを実行される脆弱性 |
CWE-119
バッファエラー |
CVE-2010-4386 | 2011-01-11 14:30 | 2010-12-10 | Show | GitHub Exploit DB Packet Storm |
| 252114 | 9.3 | 危険 | レッドハット リアルネットワークス |
- | RealNetworks RealPlayer の SIPR ストリームフレームサイズにおける整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2010-4385 | 2011-01-11 14:29 | 2010-12-10 | Show | GitHub Exploit DB Packet Storm |
| 252115 | 9.3 | 危険 | レッドハット リアルネットワークス |
- | RealNetworks RealPlayer における RA5 ヒープオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-4383 | 2011-01-11 14:29 | 2010-12-10 | Show | GitHub Exploit DB Packet Storm |
| 252116 | 9.3 | 危険 | レッドハット リアルネットワークス |
- | RealNetworks RealPlayer における RealMedia ヒープオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-4382 | 2011-01-11 14:28 | 2010-12-10 | Show | GitHub Exploit DB Packet Storm |
| 252117 | 9.3 | 危険 | リアルネットワークス | - | RealNetworks RealPlayer における AAC ヒープオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-4381 | 2011-01-11 14:28 | 2010-12-10 | Show | GitHub Exploit DB Packet Storm |
| 252118 | 9.3 | 危険 | リアルネットワークス | - | RealNetworks RealPlayer におけるサウンドヒープオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-4380 | 2011-01-11 14:27 | 2010-12-10 | Show | GitHub Exploit DB Packet Storm |
| 252119 | 4.3 | 警告 | WEBインベンター | - | SGX-SP Final および SGX-SP Final NE におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-3926 | 2011-01-11 14:05 | 2011-01-11 | Show | GitHub Exploit DB Packet Storm |
| 252120 | 2.6 | 注意 | WEBインベンター | - | Contents-Mall におけるパスワードの取扱いに関する脆弱性 |
CWE-Other
その他 |
CVE-2010-3925 | 2011-01-11 14:04 | 2011-01-11 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 6, 2026, 4:08 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 250291 | 5.5 |
MEDIUM
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_450_firmware sd_650_firmware sd_652_firmware sd_… |
Improper translation table consolidation logic leads to resource exhaustion and QSEE error in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear in version MDM9206, MDM9607, MDM9650, MSM899… |
CWE-400
Uncontrolled Resource Consumption |
CVE-2017-18299 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 250292 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_450_firmware sd_615_firmware sd_616_firmware sd_… |
Lack of Input Validation in SDMX API can lead to NULL pointer access in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear in versions MDM9206, MDM9607, MDM9650, MSM8996AU, SD 210/SD 212/SD… |
CWE-476
NULL Pointer Dereference |
CVE-2017-18298 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 250293 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_450_firmware sd_615_firmware s… |
Access control on applications is not applied while accessing SafeSwitch services can lead to improper access in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607,… |
NVD-CWE-noinfo
|
CVE-2017-18296 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 250294 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_450_firmware sd_615_firmware s… |
Possible buffer overflow if input is not null terminated in DSP Service module in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, … |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-18295 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 250295 | 7.8 |
HIGH
Local |
qualcomm |
fsm9055_firmware mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware … |
While reading file class type from ELF header, a buffer overread may happen if the ELF file size is less than the size of ELF64 header size in Small Cell SoC, Snapdragon Automobile, Snapdragon Mobile… |
CWE-125
Out-of-bounds Read |
CVE-2017-18294 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 250296 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd_430_firmware sd_450_firmware sd_625_firmware sd_650… |
When a particular GPIO is protected by blocking access to the corresponding GPIO resource registers, the protection can be bypassed using the corresponding banked GPIO registers instead in Snapdragon… |
NVD-CWE-noinfo
|
CVE-2017-18293 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 250297 | 5.5 |
MEDIUM
Local |
qualcomm |
msm8909w_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_410_firmware sd_412_firmware sd_425_firmware sd_430_firmware sd_450_firmware sd_6… |
Secure app running in non secure space can restart TZ by calling Widevine app API repeatedly in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear in versions MSM8909W, MSM8996AU, SD 210/SD… |
CWE-20
Improper Input Validation |
CVE-2017-18292 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 250298 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware sd210_firmware sd212_firmware sd205_firmware sd425_firmware sd430_firmware sd450_firmware sd625_firmware sd650_firmwar… |
Non-secure SW can cause SDCC to generate secure bus accesses, which may expose RPM access in Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 425, SD … |
NVD-CWE-noinfo
|
CVE-2017-18282 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 250299 | 5.5 |
MEDIUM
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware qcn5502_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd… |
When dynamic memory allocation fails, currently the process sleeps for one second and continues with infinite loop without retrying for memory allocation in Snapdragon Automobile, Snapdragon Mobile, … |
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop') |
CVE-2017-18277 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 250300 | 7.8 |
HIGH
Local |
qualcomm |
mdm9635m_firmware sd_400_firmware sd_410_firmware sd_412_firmware sd_425_firmware sd_427_firmware sd_430_firmware sd_435_firmware sd_450_firmware sd_615_firmware sd_616_… |
In a device, with screen size 1440x2560, the check of contiguous buffer will overflow on certain buffer size resulting in an Integer Overflow or Wraparound in System UI in Snapdragon Automobile, Snap… |
CWE-190
Integer Overflow or Wraparound |
CVE-2017-18172 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |