Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":April 30, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 252811 | 6.8 | 警告 | サイバートラスト株式会社 MUSCLE レッドハット |
- | MUSCLE PCSC-Lite の MSGFunctionDemarshall 関数におけるバッファオーバーフロー脆弱性 |
CWE-119
バッファエラー |
CVE-2010-0407 | 2010-08-10 18:50 | 2010-06-18 | Show | GitHub Exploit DB Packet Storm |
| 252812 | 2.1 | 注意 | サイバートラスト株式会社 MUSCLE レッドハット |
- | MUSCLE PCSC-Lite の MSGFunctionDemarshall 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-119
バッファエラー |
CVE-2009-4901 | 2010-08-10 18:50 | 2010-06-18 | Show | GitHub Exploit DB Packet Storm |
| 252813 | 7.6 | 危険 | ヒューレット・パッカード IBM オラクル |
- | Oracle Solaris の ToolTalk における脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0083 | 2010-08-10 18:50 | 2010-07-13 | Show | GitHub Exploit DB Packet Storm |
| 252814 | 7.8 | 危険 | サイバートラスト株式会社 Avahi レッドハット |
- | Avahi の originates_from_local_legacy_unicast_socket 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2009-0758 | 2010-08-10 18:49 | 2009-03-3 | Show | GitHub Exploit DB Packet Storm |
| 252815 | 6.8 | 警告 | サン・マイクロシステムズ 68k.org |
- | audiofile の msadpcm.c におけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2008-5824 | 2010-08-10 18:49 | 2009-01-2 | Show | GitHub Exploit DB Packet Storm |
| 252816 | 2.4 | 注意 | オラクル | - | Oracle Sun Java System Application Server および Oracle GlassFish Enterprise Server の GUI における脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-2397 | 2010-08-9 16:49 | 2010-07-13 | Show | GitHub Exploit DB Packet Storm |
| 252817 | 3 | 注意 | オラクル | - | Oracle Solaris Studio における脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-2374 | 2010-08-9 16:49 | 2010-07-13 | Show | GitHub Exploit DB Packet Storm |
| 252818 | 4.3 | 警告 | オラクル | - | Oracle OpenSSO Enterprise における脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-3762 | 2010-08-9 16:49 | 2010-07-13 | Show | GitHub Exploit DB Packet Storm |
| 252819 | 4.3 | 警告 | オラクル | - | Oracle OpenSSO Enterprise の OpenSSO コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-3764 | 2010-08-9 16:48 | 2010-07-13 | Show | GitHub Exploit DB Packet Storm |
| 252820 | 4.3 | 警告 | オラクル | - | Oracle OpenSSO Enterprise の Access Manager / OpenSSO コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-3763 | 2010-08-9 16:48 | 2010-07-13 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 1, 2026, 4:54 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 249441 | 9.1 |
CRITICAL
Network |
asus |
vivobaby hivivo |
The ASUS Vivobaby application before 1.1.09 for Android has Missing SSL Certificate Validation. |
CWE-295
Improper Certificate Validation |
CVE-2017-17944 | 2024-11-21 12:19 | 2019-06-21 | Show | GitHub Exploit DB Packet Storm |
| 249442 | 9.8 |
CRITICAL
Network |
netgear | readynas_surveillance_firmware | In NETGEAR ReadyNAS Surveillance before 1.4.3-17 x86 and before 1.1.4-7 ARM, $_GET['uploaddir'] is not escaped and is passed to system() through $tmp_upload_dir, leading to upgrade_handle.php?cmd=wri… |
CWE-77
Command Injection |
CVE-2017-18378 | 2024-11-21 12:19 | 2019-06-12 | Show | GitHub Exploit DB Packet Storm |
| 249443 | 9.8 |
CRITICAL
Network |
goahead | wireless_ip_camera_wificam_firmware | An issue was discovered on Wireless IP Camera (P2P) WIFICAM cameras. There is Command Injection in the set_ftp.cgi script via shell metacharacters in the pwd variable, as demonstrated by a set_ftp.cg… |
CWE-77
Command Injection |
CVE-2017-18377 | 2024-11-21 12:19 | 2019-06-12 | Show | GitHub Exploit DB Packet Storm |
| 249444 | 8.8 |
HIGH
Network |
strangebee | thehive | An improper authorization check in the User API in TheHive before 2.13.4 and 3.x before 3.3.1 allows users with read-only or read/write access to escalate their privileges to the administrator's priv… |
CWE-264
Permissions, Privileges, and Access Controls |
CVE-2017-18376 | 2024-11-21 12:19 | 2019-06-3 | Show | GitHub Exploit DB Packet Storm |
| 249445 | 8.8 |
HIGH
Network |
ampache | ampache | Ampache 3.8.3 allows PHP Object Instantiation via democratic.ajax.php and democratic.class.php. |
CWE-502
Deserialization of Untrusted Data |
CVE-2017-18375 | 2024-11-21 12:19 | 2019-05-25 | Show | GitHub Exploit DB Packet Storm |
| 249446 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware sd_210_firmware sd_835_firmware sd_845_firmware sd_850_firmware sd_212_firmware sd_205_firmware |
Secure camera logic allows display/secure camera controllers to access HLOS memory during secure display or camera session in Snapdragon Mobile, Snapdragon Wear in MDM9206, MDM9607, MDM9650, SD 210/S… |
NVD-CWE-noinfo
|
CVE-2017-18276 | 2024-11-21 12:19 | 2019-05-7 | Show | GitHub Exploit DB Packet Storm |
| 249447 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd… |
While processing camera buffers in camera driver, a use after free condition can occur in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in MDM9206, MDM9607, MDM9650, MSM8996AU, SD 210/SD … |
CWE-416
Use After Free |
CVE-2017-18156 | 2024-11-21 12:19 | 2019-05-7 | Show | GitHub Exploit DB Packet Storm |
| 249448 | 7.8 |
HIGH
Local |
qualcomm |
fsm9055_firmware fsm9955_firmware ipq4019_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qca9531_firmware… |
Lack of check of buffer length before copying can lead to buffer overflow in camera module in Small Cell SoC, Snapdragon Mobile, Snapdragon Wear in FSM9055, FSM9955, IPQ4019, IPQ8064, MDM9206, MDM960… |
CWE-190
Integer Overflow or Wraparound |
CVE-2017-18279 | 2024-11-21 12:19 | 2019-05-7 | Show | GitHub Exploit DB Packet Storm |
| 249449 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd_430_firmware sd_450_firmware sd_625_firmware sd_650… |
An integer underflow may occur due to lack of check when received data length from font_mgr_qsee_request_service is bigger than the minimal value of the segment header, which may result in a buffer o… |
CWE-191
Integer Underflow (Wrap or Wraparound) |
CVE-2017-18278 | 2024-11-21 12:19 | 2019-05-7 | Show | GitHub Exploit DB Packet Storm |
| 249450 | 5.5 |
MEDIUM
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd_430_firmware sd_450_firmware sd_6… |
A new account can be inserted into simContacts service using Android command line tool in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in MDM9206, MDM9607, MDM9650, MSM8909W, SD 210/SD 2… |
NVD-CWE-noinfo
|
CVE-2017-18275 | 2024-11-21 12:19 | 2019-05-7 | Show | GitHub Exploit DB Packet Storm |