Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 1, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 252891 | 5 | 警告 | Mozilla Foundation | - | Mozilla Firefox におけるブラウザキャッシュ内の文書の存在を容易に推測される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-4688 | 2011-12-12 16:31 | 2011-12-7 | Show | GitHub Exploit DB Packet Storm |
| 252892 | 4.3 | 警告 | Mozilla Foundation | - | 複数の Mozilla 製品のレイアウトエンジンにおける重要な情報を取得される脆弱性 |
CWE-362
競合状態 |
CVE-2010-5074 | 2011-12-12 16:22 | 2010-03-31 | Show | GitHub Exploit DB Packet Storm |
| 252893 | 5 | 警告 | - | Google Chrome の JavaScript 実装における重要な情報を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-5073 | 2011-12-12 16:21 | 2011-12-7 | Show | GitHub Exploit DB Packet Storm | |
| 252894 | 5 | 警告 | Opera Software ASA | - | Opera の JavaScript 実装における重要な情報を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-5072 | 2011-12-12 16:20 | 2011-12-7 | Show | GitHub Exploit DB Packet Storm |
| 252895 | 5 | 警告 | マイクロソフト | - | Microsoft Internet Explorer の JavaScript 実装における重要な情報を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-5071 | 2011-12-12 16:19 | 2011-12-7 | Show | GitHub Exploit DB Packet Storm |
| 252896 | 5 | 警告 | アップル | - | Apple Safari の JavaScript 実装における重要な情報を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-5070 | 2011-12-12 16:17 | 2011-12-7 | Show | GitHub Exploit DB Packet Storm |
| 252897 | 4.3 | 警告 | - | Google Chrome の Cascading Style Sheets 実装における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2010-5069 | 2011-12-12 16:16 | 2011-12-7 | Show | GitHub Exploit DB Packet Storm | |
| 252898 | 4.3 | 警告 | Opera Software ASA | - | Opera の Cascading Style Sheets (CSS) 実装における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2010-5068 | 2011-12-12 16:14 | 2011-12-7 | Show | GitHub Exploit DB Packet Storm |
| 252899 | 5 | 警告 | Mozilla Foundation | - | 複数の Mozilla 製品の JavaScript 実装における重要な情報を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2002-2437 | 2011-12-12 16:12 | 2011-12-7 | Show | GitHub Exploit DB Packet Storm |
| 252900 | 4.3 | 警告 | Mozilla Foundation | - | 複数の Mozilla 製品の CSS 実装における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2002-2436 | 2011-12-12 16:12 | 2011-12-7 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 1, 2026, 4:12 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 246661 | 9.8 |
CRITICAL
Network |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware sd210_firmware sd212_firmware sd205_firmware sd425_firmware sd427_firmware sd430_… |
In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 650/52, SD 820, SD 820A, S… |
CWE-20
Improper Input Validation |
CVE-2018-11287 | 2024-11-21 12:43 | 2018-09-20 | Show | GitHub Exploit DB Packet Storm |
| 246662 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware sd210_firmware sd212_firmware sd205_firmware sd425_firmware sd427_firmware sd430_… |
In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 615/16/SD 415, SD 625, SD 650/52, … |
CWE-125
Out-of-bounds Read |
CVE-2018-11285 | 2024-11-21 12:43 | 2018-09-20 | Show | GitHub Exploit DB Packet Storm |
| 246663 | 7.8 |
HIGH
Local |
qualcomm |
msm8909w_firmware msm8996au_firmware sd210_firmware sd212_firmware sd205_firmware sd430_firmware sd450_firmware sd615_firmware sd616_firmware sd415_firmware sd617_firmwa… |
In Snapdragon (Automobile, Mobile, Wear) in version MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 810, SD 820, SD 820A, SD 835, SD 845, SD… |
CWE-732
Incorrect Permission Assignment for Critical Resource |
CVE-2018-11277 | 2024-11-21 12:43 | 2018-09-20 | Show | GitHub Exploit DB Packet Storm |
| 246664 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9635m_firmware mdm9640_firmware mdm9645_firmware mdm9650_firmware mdm9655_firmware msm8909w_firmware msm8996au_firmware sd210_firmware<… |
In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, … |
CWE-129
Improper Validation of Array Index |
CVE-2018-11269 | 2024-11-21 12:43 | 2018-09-20 | Show | GitHub Exploit DB Packet Storm |
| 246665 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9635m_firmware mdm9640_firmware mdm9645_firmware mdm9650_firmware mdm9655_firmware msm8909w_firmware msm8996au_firmware sd210_firmware<… |
In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, … |
CWE-129
Improper Validation of Array Index |
CVE-2018-11268 | 2024-11-21 12:43 | 2018-09-20 | Show | GitHub Exploit DB Packet Storm |
| 246666 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9615_firmware mdm9640_firmware mdm9650_firmware mdm9655_firmware msm8996au_firmware sd210_firmware sd212_firmware sd205_firmware sd4… |
In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9615, MDM9640, MDM9650, MDM9655, MSM8996AU, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 450, SD 600, S… |
CWE-129
Improper Validation of Array Index |
CVE-2018-11267 | 2024-11-21 12:43 | 2018-09-20 | Show | GitHub Exploit DB Packet Storm |
| 246667 | 5.9 |
MEDIUM
Network |
apache | tika | In Apache Tika 0.9 to 1.18, in a rare edge case where a user does not specify an extract directory on the commandline (--extract-dir=) and the input file has an embedded file with an absolute path, s… |
CWE-22
Path Traversal |
CVE-2018-11762 | 2024-11-21 12:43 | 2018-09-19 | Show | GitHub Exploit DB Packet Storm |
| 246668 | 7.5 |
HIGH
Network |
apache oracle |
tika business_process_management_suite |
In Apache Tika 0.1 to 1.18, the XML parsers were not configured to limit entity expansion. They were therefore vulnerable to an entity expansion vulnerability which can lead to a denial of service at… |
CWE-611
XXE |
CVE-2018-11761 | 2024-11-21 12:43 | 2018-09-19 | Show | GitHub Exploit DB Packet Storm |
| 246669 | 7.8 |
HIGH
Local |
android | In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of check of input received from userspace before copying into buffer can lead to poten… |
CWE-20
Improper Input Validation |
CVE-2018-11302 | 2024-11-21 12:43 | 2018-09-19 | Show | GitHub Exploit DB Packet Storm | |
| 246670 | 7.8 |
HIGH
Local |
android | In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, lack of check on buffer length while processing debug log event from firmware can lead to a… |
CWE-191
Integer Underflow (Wrap or Wraparound) |
CVE-2018-11301 | 2024-11-21 12:43 | 2018-09-19 | Show | GitHub Exploit DB Packet Storm |