|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
Update Date":July 1, 2026, 4:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 257681 | 7.8 | 危険 | シスコシステムズ | - | 複数の Cisco 製品におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2011-3315 | 2011-11-4 15:08 | 2011-10-26 | Show | GitHub Exploit DB Packet Storm |
| 257682 | 6.8 | 警告 | シスコシステムズ | - | Cisco Nexus OS および Cisco Unified Computing System における権限を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-2569 | 2011-11-4 15:07 | 2011-10-27 | Show | GitHub Exploit DB Packet Storm |
| 257683 | 7.5 | 危険 | - | Google Chrome で使用される Google V8 におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2011-2830 | 2011-11-4 15:06 | 2011-09-16 | Show | GitHub Exploit DB Packet Storm | |
| 257684 | 4 | 警告 | OpenLDAP Foundation | - | OpenLDAP の UTF8StringNormalize 関数における一つずれエラーの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2011-4079 | 2011-11-4 15:04 | 2011-10-6 | Show | GitHub Exploit DB Packet Storm |
| 257685 | 2.6 | 注意 | Puppet | - | Puppet および Puppet Enterprise Users における Puppet master になりすまされる脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2011-3872 | 2011-11-4 15:03 | 2011-10-24 | Show | GitHub Exploit DB Packet Storm |
| 257686 | 6.2 | 警告 | Puppet | - | Puppet Labs の Puppet における任意の Puppet コードを実行される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-3871 | 2011-11-4 15:02 | 2011-09-30 | Show | GitHub Exploit DB Packet Storm |
| 257687 | 6.3 | 警告 | Puppet | - | Puppet Labs の Puppet における任意のファイルのパーミッションを変更される脆弱性 |
CWE-59
リンク解釈の問題 |
CVE-2011-3870 | 2011-11-4 15:01 | 2011-09-30 | Show | GitHub Exploit DB Packet Storm |
| 257688 | 6.3 | 警告 | Puppet | - | Puppet Labs の Puppet における任意のファイルを上書きされる脆弱性 |
CWE-59
リンク解釈の問題 |
CVE-2011-3869 | 2011-11-4 15:01 | 2011-09-30 | Show | GitHub Exploit DB Packet Storm |
| 257689 | 5 | 警告 | Puppet | - | Puppet Labs の Puppet におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2011-3848 | 2011-11-4 15:00 | 2011-09-28 | Show | GitHub Exploit DB Packet Storm |
| 257690 | 4.3 | 警告 | アップル | - | WebObjects におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-3998 | 2011-11-4 14:03 | 2011-11-4 | Show | GitHub Exploit DB Packet Storm |
Update Date:July 1, 2026, 4:27 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 252891 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd_427_firmware sd… |
While processing radio connection status change events, Radio index is not properly validated in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdrag… |
CWE-129
Improper Validation of Array Index |
CVE-2018-11899 | 2024-11-21 12:44 | 2019-02-12 | Show | GitHub Exploit DB Packet Storm |
| 252892 | 7.8 |
HIGH
Local |
qualcomm |
mdm9607_firmware mdm9650_firmware mdm9655_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_410_firmware sd_412_firmware sd_425_firmware sd_… |
Unauthorized access may be allowed by the SCP11 Crypto Services TA will processing commands from other TA in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electron… |
CWE-862
Missing Authorization |
CVE-2018-11888 | 2024-11-21 12:44 | 2019-02-12 | Show | GitHub Exploit DB Packet Storm |
| 252893 | 7.8 |
HIGH
Local |
qualcomm |
mdm9607_firmware mdm9650_firmware mdm9655_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_410_firmware sd_412_firmware sd_636_firmware sd_… |
If an end user makes use of SCP11 sample OCE code without modification it could lead to a buffer overflow when transmitting a CAPDU in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Sn… |
CWE-190
Integer Overflow or Wraparound |
CVE-2018-11855 | 2024-11-21 12:44 | 2019-02-12 | Show | GitHub Exploit DB Packet Storm |
| 252894 | 7.8 |
HIGH
Local |
qualcomm |
ipq8074_firmware mdm9206_firmware mdm9607_firmware mdm9650_firmware mdm9655_firmware msm8909w_firmware msm8996au_firmware qca8081_firmware sd_210_firmware sd_212_firmware | Malicious TA can tag QSEE kernel memory and map to EL0, there by corrupting the physical memory as well it can be used to corrupt the QSEE kernel and compromise the whole TEE in Snapdragon Auto, Snap… |
CWE-20
Improper Input Validation |
CVE-2018-11847 | 2024-11-21 12:44 | 2019-02-12 | Show | GitHub Exploit DB Packet Storm |
| 252895 | 7.5 |
HIGH
Network |
apache canonical |
subversion ubuntu_linux |
Subversion's mod_dav_svn Apache HTTPD module versions 1.11.0 and 1.10.0 to 1.10.3 will crash after dereferencing an uninitialized pointer if the client omits the root path in a recursive directory li… |
CWE-824
Access of Uninitialized Pointer |
CVE-2018-11803 | 2024-11-21 12:44 | 2019-02-6 | Show | GitHub Exploit DB Packet Storm |
| 252896 | 7.8 |
HIGH
Local |
apache canonical |
openoffice ubuntu_linux |
When loading a document with Apache Open Office 4.1.5 and earlier with smaller end line termination than the operating system uses, the defect occurs. In this case OpenOffice runs into an Arithmetic … |
CWE-682
Incorrect Calculation |
CVE-2018-11790 | 2024-11-21 12:44 | 2019-02-1 | Show | GitHub Exploit DB Packet Storm |
| 252897 | 7.2 |
HIGH
Network |
symantec | reporter | The Symantec Reporter CLI 10.1 prior to 10.1.5.6 and 10.2 prior to 10.2.1.8 is susceptible to an OS command injection vulnerability. An authenticated malicious administrator with Enable mode access c… |
CWE-78
OS Command |
CVE-2018-12237 | 2024-11-21 12:44 | 2019-01-25 | Show | GitHub Exploit DB Packet Storm |
| 252898 | 8.8 |
HIGH
Adjacent |
qualcomm |
mdm9206_firmware mdm9607_firmware |
Improper check while accessing the local memory stack on MQTT connection request can lead to buffer overflow in snapdragon wear in versions MDM9206, MDM9607 |
CWE-787
Out-of-bounds Write |
CVE-2018-11993 | 2024-11-21 12:44 | 2019-01-19 | Show | GitHub Exploit DB Packet Storm |
| 252899 | 5.5 |
MEDIUM
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9635m_firmware mdm9650_firmware mdm9655_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_410_firmware … |
Improper input validation in trustzone can lead to denial of service in snapdragon automobile, snapdragon mobile and snapdragon wear in versions MDM9206, MDM9607, MDM9635M, MDM9650, MDM9655, MSM8996A… |
CWE-20
Improper Input Validation |
CVE-2018-11999 | 2024-11-21 12:44 | 2019-01-19 | Show | GitHub Exploit DB Packet Storm |
| 252900 | 7.5 |
HIGH
Adjacent |
qualcomm |
mdm9206_firmware mdm9607_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_427_firmware sd_435_firmware sd_450_firmware sd_625_firmware sd_636_firmware sd_835_… |
While processing a packet decode request in MQTT, Race condition can occur leading to an out-of-bounds access in snapdragon mobile and snapdragon wear in versions MDM9206, MDM9607, SD 210/SD 212/SD 2… |
CWE-362
Race Condition |
CVE-2018-11998 | 2024-11-21 12:44 | 2019-01-19 | Show | GitHub Exploit DB Packet Storm |