Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 6, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 253191 | 10 | 危険 | Schneider Electric | - | NOE 771 デバイス上の Schneider Electric Quantum Ethernet Module におけるアクセス権を取得される脆弱性 |
CWE-287
不適切な認証 |
CVE-2011-4860 | 2011-12-21 15:29 | 2011-12-12 | Show | GitHub Exploit DB Packet Storm |
| 253192 | 10 | 危険 | Schneider Electric | - | Schneider Electric Quantum Ethernet Module におけるアクセス権を取得される脆弱性 |
CWE-DesignError
|
CVE-2011-4859 | 2011-12-21 15:28 | 2011-12-12 | Show | GitHub Exploit DB Packet Storm |
| 253193 | 10 | 危険 | Nullsoft | - | Winamp の in_mod.dll プラグインにおけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2011-4857 | 2011-12-21 15:27 | 2011-12-9 | Show | GitHub Exploit DB Packet Storm |
| 253194 | 6.8 | 警告 | HomeSeer Technologies, LLC. | - | HomeSeer HS2 の Web インターフェースにおけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2011-4837 | 2011-12-21 15:25 | 2011-12-15 | Show | GitHub Exploit DB Packet Storm |
| 253195 | 4.3 | 警告 | HomeSeer Technologies, LLC. | - | HomeSeer HS2 の Web インターフェースにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-4836 | 2011-12-21 15:24 | 2011-12-15 | Show | GitHub Exploit DB Packet Storm |
| 253196 | 7.5 | 危険 | HomeSeer Technologies, LLC. | - | HomeSeer HS2 の Web インターフェースにおけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2011-4835 | 2011-12-21 15:23 | 2011-12-15 | Show | GitHub Exploit DB Packet Storm |
| 253197 | 9.3 | 危険 | RSAセキュリティ | - | EMC RSA SecurID Software Token における権限を取得される脆弱性 |
CWE-Other
その他 |
CVE-2011-4141 | 2011-12-21 14:34 | 2011-12-17 | Show | GitHub Exploit DB Packet Storm |
| 253198 | 4.3 | 警告 | Mozilla Foundation SafeNet, Inc 7-Technologies |
- | 複数の SafeNet 製品におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-3339 | 2011-12-21 14:21 | 2011-12-12 | Show | GitHub Exploit DB Packet Storm |
| 253199 | 6.8 | 警告 | 奈良先端科学技術大学院大学 | - | 茶筌 (ChaSen) におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2011-4000 | 2011-12-20 18:12 | 2011-11-8 | Show | GitHub Exploit DB Packet Storm |
| 253200 | 8.3 | 危険 | 富士通 日本電気 日立 |
- | Preboot Execution Environment (PXE) SDK を使用した製品における複数の脆弱性 |
CWE-119 CWE-22 |
CVE-2009-0270 | 2011-12-20 17:33 | 2011-12-15 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 6, 2026, 4:18 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 246251 | 7.8 |
HIGH
Local |
qualcomm |
snapdragon_auto_firmware snapdragon_consumer_internet_of_things_firmware snapdragon_industrial_internet_of_things_firmware mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9650… |
Lack of input validation for data received from user space can lead to an out of bound array issue in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdrago… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2018-13914 | 2024-11-21 12:48 | 2019-02-26 | Show | GitHub Exploit DB Packet Storm |
| 246252 | 7.8 |
HIGH
Local |
qualcomm |
snapdragon_auto_firmware snapdragon_consumer_internet_of_things_firmware snapdragon_industrial_internet_of_things_firmware snapdragon_internet_of_things_firmware snapdragon_mobile_firmwar… |
Improper validation of array index can lead to unauthorized access while processing debugFS in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, … |
CWE-129
Improper Validation of Array Index |
CVE-2018-13913 | 2024-11-21 12:48 | 2019-02-26 | Show | GitHub Exploit DB Packet Storm |
| 246253 | 5.5 |
MEDIUM
Local |
qualcomm |
snapdragon_auto_firmware snapdragon_connectivity_firmware snapdragon_consumer_internet_of_things_firmware snapdragon_industrial_internet_of_things_firmware snapdragon_mobile_firmware s… |
Arbitrary write issue can occur when user provides kernel address in compat mode in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Sn… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2018-13912 | 2024-11-21 12:48 | 2019-02-26 | Show | GitHub Exploit DB Packet Storm |
| 246254 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware qcs605_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_439_firmware sd_429_firmware sd_7… |
KGSL syncsource lock not handled properly during syncsource cleanup can lead to use after free issue in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdra… |
CWE-416
Use After Free |
CVE-2018-13905 | 2024-11-21 12:48 | 2019-02-26 | Show | GitHub Exploit DB Packet Storm |
| 246255 | 9.8 |
CRITICAL
Network |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware mdm9655_firmware qcs605_firmware sd_410_firmware sd_12_firmware sd_675_firmware sd_712_firmware sd_710_firmware sd_670… |
Improper input validation in SCM handler to access storage in TZ can lead to unauthorized access in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consu… |
CWE-20
Improper Input Validation |
CVE-2018-13904 | 2024-11-21 12:48 | 2019-02-26 | Show | GitHub Exploit DB Packet Storm |
| 246256 | 7.8 |
HIGH
Local |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qcs605_firmware sd_210_firmware sd_212_firmware
Use-after-free vulnerability will occur as there is no protection for the route table`s rule in IPA driver in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, S…
|
CWE-416
|
Use After Free
CVE-2018-13900
|
2024-11-21 12:48 |
2019-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 246257 | 7.8 |
HIGH
Local |
android | In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Out of bound mask range access caused by using possible old value of msg mask table count wh… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2018-13893 | 2024-11-21 12:48 | 2019-02-12 | Show | GitHub Exploit DB Packet Storm | |
| 246258 | 7.8 |
HIGH
Local |
android | In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Heap memory was accessed after it was freed |
CWE-416
Use After Free |
CVE-2018-13889 | 2024-11-21 12:48 | 2019-02-12 | Show | GitHub Exploit DB Packet Storm | |
| 246259 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9635m_firmware mdm9650_firmware msm8909w_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd_427_firmware sd… |
There is potential for memory corruption in the RIL daemon due to de reference of memory outside the allocated array length in RIL in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial I… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2018-13888 | 2024-11-21 12:48 | 2019-02-12 | Show | GitHub Exploit DB Packet Storm |
| 246260 | 9.8 |
CRITICAL
Network |
abbyy | flexicapture | Multiple SQL injection vulnerabilities in the monitoring feature in the HTTP API in ABBYY FlexiCapture before 12 Release 2 allow an attacker to execute arbitrary SQL commands via the mask, sortOrder,… |
CWE-89
SQL Injection |
CVE-2018-13792 | 2024-11-21 12:48 | 2019-02-10 | Show | GitHub Exploit DB Packet Storm |