Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 18, 2026, 12:09 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 252231 | 5 | 警告 | アップル | - | Apple Mac OS X の SMB ファイルサーバコンポーネントにおける閲覧制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-3225 | 2011-10-26 09:44 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 252232 | 2.6 | 注意 | アップル | - | Apple Mac OS X の User Documentation コンポーネントにおける任意のコードを実行される脆弱性 |
CWE-Other
その他 |
CVE-2011-3224 | 2011-10-26 09:44 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 252233 | 6.8 | 警告 | アップル | - | Apple Mac OS X の QuickTime におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2011-3223 | 2011-10-26 09:43 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 252234 | 6.8 | 警告 | アップル | - | Apple Mac OS X の QuickTime におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2011-3222 | 2011-10-26 09:42 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 252235 | 6.8 | 警告 | アップル | - | Apple Mac OS X の QuickTime における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2011-3221 | 2011-10-26 09:41 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 252236 | 6.8 | 警告 | Django Software Foundation | - | Django の CSRF 保護メカニズムにおける認証されずに偽造されたリクエストを誘発される脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2011-4140 | 2011-10-25 16:54 | 2011-09-9 | Show | GitHub Exploit DB Packet Storm |
| 252237 | 5 | 警告 | Django Software Foundation | - | Django におけるキャッシュポイズニング攻撃を誘発される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2011-4139 | 2011-10-25 16:54 | 2011-09-9 | Show | GitHub Exploit DB Packet Storm |
| 252238 | 5 | 警告 | Django Software Foundation | - | Django の URLField 実装内にある verify_exists 機能における任意の GET リクエストを誘発される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2011-4138 | 2011-10-25 16:53 | 2011-09-9 | Show | GitHub Exploit DB Packet Storm |
| 252239 | 5 | 警告 | Django Software Foundation | - | Django の URLField 実装内にある verify_exists 機能におけるサービス運用妨害 (リソース消費) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2011-4137 | 2011-10-25 16:53 | 2011-09-9 | Show | GitHub Exploit DB Packet Storm |
| 252240 | 5.8 | 警告 | Django Software Foundation | - | Django の django.contrib.sessions におけるセッションを変更される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2011-4136 | 2011-10-25 16:52 | 2011-09-9 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 18, 2026, 4:12 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 253501 | 7.8 |
HIGH
Local |
qualcomm |
msm8996au_firmware sd_410_firmware sd_412_firmware sd_617_firmware sd_650_firmware sd_652_firmware sd_810_firmware sd_820_firmware sd_820a_firmware |
While accessing SafeSwitch services, third party can manipulate a given device and perform unauthorized operation due to lack of checking of same state transitions in Snapdragon Automobile, Snapdrago… |
CWE-862
Missing Authorization |
CVE-2017-18312 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 253502 | 5.3 |
MEDIUM
Adjacent |
qualcomm |
msm8909w_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_410_firmware sd_412_firmware sd_615_firmware sd_616_firmware sd_415_firmware sd_617_firmware |
Under certain mode of operations, HLOS may be able get direct or indirect access through DXE channels to tamper with the authenticated WCNSS firmware stored in DDR because DXE-accessible memory is lo… |
NVD-CWE-noinfo
|
CVE-2017-18313 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 253503 | 7.0 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_835_firmware |
XBL sec mem dump system call allows complete control of EL3 by unlocking all XPUs if enable fuse is not blown in Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607, MDM9650, SD 210/SD 212… |
NVD-CWE-noinfo
|
CVE-2017-18305 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 253504 | 5.5 |
MEDIUM
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_835_firmware sda660_firmware |
Secure display content could be accessed by third party trusted application after creating a fault in other trusted applications in Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607, MDM… |
CWE-200
Information Exposure |
CVE-2017-18300 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 253505 | 7.8 |
HIGH
Local |
qualcomm |
sd_425_firmware sd_430_firmware sd_450_firmware sd_625_firmware sd_650_firmware sd_652_firmware sd_820_firmware |
Double memory free while closing TEE SE API Session management in Snapdragon Mobile in version SD 425, SD 430, SD 450, SD 625, SD 650/52, SD 820. |
CWE-415
Double Free |
CVE-2017-18297 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 253506 | 6.5 |
MEDIUM
Adjacent |
qualcomm |
qca9379_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_625_firmware sd_835_firmware sd_845_firmware sd_850_firmware sda660_firmware |
Possible memory corruption when Read Val Blob Req is received with invalid parameters in Snapdragon Mobile in version QCA9379, SD 210/SD 212/SD 205, SD 625, SD 835, SD 845, SD 850, SDA660. |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-18283 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 253507 | 7.8 |
HIGH
Local |
qaulcomm qualcomm |
fsm9055_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware
Insufficient memory allocation in boot due to incorrect size being passed could result in out of bounds access in Small Cell SoC, Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear in versi…
|
CWE-125
|
Out-of-bounds Read
CVE-2017-18304
|
2024-11-21 12:19 |
2018-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 253508 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd_430_firmware s… |
While processing the sensors registry configuration file, if inputs are not validated a buffer overflow will occur in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in version MMDM9206, MD… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-18303 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 253509 | 5.5 |
MEDIUM
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_450_firmware sd_650_firmware sd_652_firmware sd_… |
Improper translation table consolidation logic leads to resource exhaustion and QSEE error in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear in version MDM9206, MDM9607, MDM9650, MSM899… |
CWE-400
Uncontrolled Resource Consumption |
CVE-2017-18299 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 253510 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_450_firmware sd_615_firmware sd_616_firmware sd_… |
Lack of Input Validation in SDMX API can lead to NULL pointer access in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear in versions MDM9206, MDM9607, MDM9650, MSM8996AU, SD 210/SD 212/SD… |
CWE-476
NULL Pointer Dereference |
CVE-2017-18298 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |