Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":April 28, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 253071 | 9.3 | 危険 | Mozilla Foundation | - | 複数の Mozilla 製品のブラウザエンジンにおける任意のコードを実行される脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2009-3980 | 2010-01-28 12:15 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
| 253072 | 10 | 危険 | アドビシステムズ | - | Adobe Flash Media Server におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2009-3792 | 2010-01-27 10:02 | 2009-12-18 | Show | GitHub Exploit DB Packet Storm |
| 253073 | 5 | 警告 | アドビシステムズ | - | Adobe Flash Media Server におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-3791 | 2010-01-27 10:02 | 2009-12-18 | Show | GitHub Exploit DB Packet Storm |
| 253074 | 5.8 | 警告 | PostgreSQL.org ターボリナックス サン・マイクロシステムズ |
- | PostgreSQL における X.509 証明書の処理に関する任意の SSL-based PostgreSQL サーバになりすまされる脆弱性 |
CWE-310
暗号の問題 |
CVE-2009-4034 | 2010-01-26 11:48 | 2009-12-15 | Show | GitHub Exploit DB Packet Storm |
| 253075 | 7.8 | 危険 | サイバートラスト株式会社 Linux レッドハット |
- | Linux kernel の do_insn_fetch 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2009-4031 | 2010-01-26 11:47 | 2009-11-29 | Show | GitHub Exploit DB Packet Storm |
| 253076 | 7.8 | 危険 | サイバートラスト株式会社 Linux レッドハット |
- | Linux Kernel の r8169 ドライバにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2009-3613 | 2010-01-26 11:38 | 2009-10-19 | Show | GitHub Exploit DB Packet Storm |
| 253077 | 4.6 | 警告 | サイバートラスト株式会社 Linux レッドハット |
- | Linux kernel の NFSv4 における権限昇格の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2009-3286 | 2010-01-26 11:38 | 2009-09-22 | Show | GitHub Exploit DB Packet Storm |
| 253078 | 4.9 | 警告 | サイバートラスト株式会社 Linux レッドハット |
- | Linux Kernel の d_delete 関数における任意のコードを実行される脆弱性 |
CWE-Other
その他 |
CVE-2009-2908 | 2010-01-26 11:38 | 2009-10-13 | Show | GitHub Exploit DB Packet Storm |
| 253079 | 7.2 | 危険 | サイバートラスト株式会社 Linux レッドハット |
- | Linux Kernel における権限昇格の脆弱性 |
CWE-119
バッファエラー |
CVE-2009-2695 | 2010-01-26 11:38 | 2009-08-28 | Show | GitHub Exploit DB Packet Storm |
| 253080 | 9.3 | 危険 | アップル サイバートラスト株式会社 サン・マイクロシステムズ レッドハット |
- | JDK および JRE の Sun Java SE にある Deployment Toolkit プラグインにおける任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3865 | 2010-01-26 11:37 | 2009-11-3 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:April 28, 2026, 4:09 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 248911 | 8.8 |
HIGH
Network |
strangebee | thehive | An improper authorization check in the User API in TheHive before 2.13.4 and 3.x before 3.3.1 allows users with read-only or read/write access to escalate their privileges to the administrator's priv… |
CWE-264
Permissions, Privileges, and Access Controls |
CVE-2017-18376 | 2024-11-21 12:19 | 2019-06-3 | Show | GitHub Exploit DB Packet Storm |
| 248912 | 8.8 |
HIGH
Network |
ampache | ampache | Ampache 3.8.3 allows PHP Object Instantiation via democratic.ajax.php and democratic.class.php. |
CWE-502
Deserialization of Untrusted Data |
CVE-2017-18375 | 2024-11-21 12:19 | 2019-05-25 | Show | GitHub Exploit DB Packet Storm |
| 248913 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware sd_210_firmware sd_835_firmware sd_845_firmware sd_850_firmware sd_212_firmware sd_205_firmware |
Secure camera logic allows display/secure camera controllers to access HLOS memory during secure display or camera session in Snapdragon Mobile, Snapdragon Wear in MDM9206, MDM9607, MDM9650, SD 210/S… |
NVD-CWE-noinfo
|
CVE-2017-18276 | 2024-11-21 12:19 | 2019-05-7 | Show | GitHub Exploit DB Packet Storm |
| 248914 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd… |
While processing camera buffers in camera driver, a use after free condition can occur in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in MDM9206, MDM9607, MDM9650, MSM8996AU, SD 210/SD … |
CWE-416
Use After Free |
CVE-2017-18156 | 2024-11-21 12:19 | 2019-05-7 | Show | GitHub Exploit DB Packet Storm |
| 248915 | 7.8 |
HIGH
Local |
qualcomm |
fsm9055_firmware fsm9955_firmware ipq4019_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qca9531_firmware… |
Lack of check of buffer length before copying can lead to buffer overflow in camera module in Small Cell SoC, Snapdragon Mobile, Snapdragon Wear in FSM9055, FSM9955, IPQ4019, IPQ8064, MDM9206, MDM960… |
CWE-190
Integer Overflow or Wraparound |
CVE-2017-18279 | 2024-11-21 12:19 | 2019-05-7 | Show | GitHub Exploit DB Packet Storm |
| 248916 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd_430_firmware sd_450_firmware sd_625_firmware sd_650… |
An integer underflow may occur due to lack of check when received data length from font_mgr_qsee_request_service is bigger than the minimal value of the segment header, which may result in a buffer o… |
CWE-191
Integer Underflow (Wrap or Wraparound) |
CVE-2017-18278 | 2024-11-21 12:19 | 2019-05-7 | Show | GitHub Exploit DB Packet Storm |
| 248917 | 5.5 |
MEDIUM
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd_430_firmware sd_450_firmware sd_6… |
A new account can be inserted into simContacts service using Android command line tool in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in MDM9206, MDM9607, MDM9650, MSM8909W, SD 210/SD 2… |
NVD-CWE-noinfo
|
CVE-2017-18275 | 2024-11-21 12:19 | 2019-05-7 | Show | GitHub Exploit DB Packet Storm |
| 248918 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd_430_firmware sd_450_firmware sd_617_firmware sd_625… |
While iterating through the models contained in a fixed-size array in the actData structure, which also stores an incorrect number of models that is greater than the size of the array, a buffer overf… |
CWE-129
Improper Validation of Array Index |
CVE-2017-18274 | 2024-11-21 12:19 | 2019-05-7 | Show | GitHub Exploit DB Packet Storm |
| 248919 | 7.8 |
HIGH
Local |
qualcomm |
sd_425_firmware sd_427_firmware sd_430_firmware sd_435_firmware sd_450_firmware sd_625_firmware sd_810_firmware sd_820_firmware sd_835_firmware sdm630_firmware sdm636_fi… |
In case of using an invalid android verified boot signature with very large length, an integer underflow occurs in Snapdragon Mobile in SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 810, SD 820,… |
CWE-190
Integer Overflow or Wraparound |
CVE-2017-18173 | 2024-11-21 12:19 | 2019-05-7 | Show | GitHub Exploit DB Packet Storm |
| 248920 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd_450_firmware s… |
A Use After Free Condition can occur in Thermal Engine in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD… |
CWE-416
Use After Free |
CVE-2017-18157 | 2024-11-21 12:19 | 2019-05-7 | Show | GitHub Exploit DB Packet Storm |