Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":April 30, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 253291 | 7.5 | 危険 | VMware | - | 複数の VMware 製品の WebAccess におけるリクエストの発信元を偽装される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-0686 | 2010-04-21 17:53 | 2010-03-29 | Show | GitHub Exploit DB Packet Storm |
| 253292 | 4.3 | 警告 | VMware | - | 複数の VMware 製品の WebAccess におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-1137 | 2010-04-21 17:51 | 2010-03-29 | Show | GitHub Exploit DB Packet Storm |
| 253293 | 4.6 | 警告 | GNU Project サイバートラスト株式会社 レッドハット |
- | GNU Automake の dist または distcheck ルールにおけるコンテンツを変更される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2009-4029 | 2010-04-21 17:51 | 2009-12-20 | Show | GitHub Exploit DB Packet Storm |
| 253294 | 5 | 警告 | Linux レッドハット |
- | Linux kernel の virtio-net ドライバにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-0741 | 2010-04-21 17:48 | 2010-03-30 | Show | GitHub Exploit DB Packet Storm |
| 253295 | 6.9 | 警告 | mielke レッドハット |
- | brltty の libbrlttybba.so における権限昇格の脆弱性 |
CWE-264 CWE-Other |
CVE-2008-3279 | 2010-04-21 17:47 | 2010-03-30 | Show | GitHub Exploit DB Packet Storm |
| 253296 | 4.3 | 警告 | Mozilla Foundation | - | Mozilla Firefox/SeaMonkey におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-0181 | 2010-04-20 16:42 | 2010-03-30 | Show | GitHub Exploit DB Packet Storm |
| 253297 | 5.8 | 警告 | サイボウズ | - | 複数のサイボウズ製品におけるアクセス制限に関する脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-2029 | 2010-04-20 12:01 | 2010-04-20 | Show | GitHub Exploit DB Packet Storm |
| 253298 | 9.3 | 危険 | マイクロソフト | - | Microsoft Internet Explorer の Tabular Data Control ActiveX コントロールにおける任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-0805 | 2010-04-19 19:20 | 2010-03-30 | Show | GitHub Exploit DB Packet Storm |
| 253299 | 9.3 | 危険 | マイクロソフト | - | Microsoft Internet Explorer における任意のコードを実行される脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2010-0491 | 2010-04-19 19:19 | 2010-03-30 | Show | GitHub Exploit DB Packet Storm |
| 253300 | 4.3 | 警告 | マイクロソフト | - | Microsoft Internet Explorer における同一生成元ポリシーを回避される脆弱性 |
CWE-200
情報漏えい |
CVE-2010-0494 | 2010-04-19 19:19 | 2010-03-30 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:April 30, 2026, 4:58 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 249341 | 7.8 |
HIGH
Local |
qualcomm |
msm8996au_firmware sd_410_firmware sd_412_firmware sd_617_firmware sd_650_firmware sd_652_firmware sd_810_firmware sd_820_firmware sd_820a_firmware |
While accessing SafeSwitch services, third party can manipulate a given device and perform unauthorized operation due to lack of checking of same state transitions in Snapdragon Automobile, Snapdrago… |
CWE-862
Missing Authorization |
CVE-2017-18312 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 249342 | 5.3 |
MEDIUM
Adjacent |
qualcomm |
msm8909w_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_410_firmware sd_412_firmware sd_615_firmware sd_616_firmware sd_415_firmware sd_617_firmware |
Under certain mode of operations, HLOS may be able get direct or indirect access through DXE channels to tamper with the authenticated WCNSS firmware stored in DDR because DXE-accessible memory is lo… |
NVD-CWE-noinfo
|
CVE-2017-18313 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 249343 | 7.0 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_835_firmware |
XBL sec mem dump system call allows complete control of EL3 by unlocking all XPUs if enable fuse is not blown in Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607, MDM9650, SD 210/SD 212… |
NVD-CWE-noinfo
|
CVE-2017-18305 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 249344 | 5.5 |
MEDIUM
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_835_firmware sda660_firmware |
Secure display content could be accessed by third party trusted application after creating a fault in other trusted applications in Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607, MDM… |
CWE-200
Information Exposure |
CVE-2017-18300 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 249345 | 7.8 |
HIGH
Local |
qualcomm |
sd_425_firmware sd_430_firmware sd_450_firmware sd_625_firmware sd_650_firmware sd_652_firmware sd_820_firmware |
Double memory free while closing TEE SE API Session management in Snapdragon Mobile in version SD 425, SD 430, SD 450, SD 625, SD 650/52, SD 820. |
CWE-415
Double Free |
CVE-2017-18297 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 249346 | 6.5 |
MEDIUM
Adjacent |
qualcomm |
qca9379_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_625_firmware sd_835_firmware sd_845_firmware sd_850_firmware sda660_firmware |
Possible memory corruption when Read Val Blob Req is received with invalid parameters in Snapdragon Mobile in version QCA9379, SD 210/SD 212/SD 205, SD 625, SD 835, SD 845, SD 850, SDA660. |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-18283 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 249347 | 7.8 |
HIGH
Local |
qaulcomm qualcomm |
fsm9055_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware
Insufficient memory allocation in boot due to incorrect size being passed could result in out of bounds access in Small Cell SoC, Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear in versi…
|
CWE-125
|
Out-of-bounds Read
CVE-2017-18304
|
2024-11-21 12:19 |
2018-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 249348 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd_430_firmware s… |
While processing the sensors registry configuration file, if inputs are not validated a buffer overflow will occur in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in version MMDM9206, MD… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-18303 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 249349 | 5.5 |
MEDIUM
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_450_firmware sd_650_firmware sd_652_firmware sd_… |
Improper translation table consolidation logic leads to resource exhaustion and QSEE error in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear in version MDM9206, MDM9607, MDM9650, MSM899… |
CWE-400
Uncontrolled Resource Consumption |
CVE-2017-18299 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |
| 249350 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_450_firmware sd_615_firmware sd_616_firmware sd_… |
Lack of Input Validation in SDMX API can lead to NULL pointer access in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear in versions MDM9206, MDM9607, MDM9650, MSM8996AU, SD 210/SD 212/SD… |
CWE-476
NULL Pointer Dereference |
CVE-2017-18298 | 2024-11-21 12:19 | 2018-10-23 | Show | GitHub Exploit DB Packet Storm |