Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 13, 2026, 4 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 258011 | 6.8 | 警告 | w3m project ターボリナックス サイバートラスト株式会社 レッドハット |
- | w3m のistream.c における X.509 証明書の処理に関する任意の SSL サーバになりすまされる脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-2074 | 2010-09-27 16:24 | 2010-06-16 | Show | GitHub Exploit DB Packet Storm |
| 258012 | 6.8 | 警告 | レッドハット サイバートラスト株式会社 ターボリナックス OpenLDAP Foundation |
- | OpenLDAP における任意の SSL サーバになりすまされる脆弱性 |
CWE-310
暗号の問題 |
CVE-2009-3767 | 2010-09-27 16:23 | 2009-10-23 | Show | GitHub Exploit DB Packet Storm |
| 258013 | 4.3 | 警告 | Opera Software ASA | - | Opera におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2010-3021 | 2010-09-27 16:21 | 2010-08-12 | Show | GitHub Exploit DB Packet Storm |
| 258014 | 5 | 警告 | Opera Software ASA | - | Opera の news-feed プレビュー機能における任意のフィードの購読を強制される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-3020 | 2010-09-27 16:21 | 2010-08-12 | Show | GitHub Exploit DB Packet Storm |
| 258015 | 9.3 | 危険 | Opera Software ASA | - | Opera におけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-3019 | 2010-09-27 16:21 | 2010-08-12 | Show | GitHub Exploit DB Packet Storm |
| 258016 | 9.3 | 危険 | Opera Software ASA | - | Windows および Mac OS X 上で稼働する Opera における任意のコードを実行される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-2666 | 2010-09-27 16:20 | 2010-06-21 | Show | GitHub Exploit DB Packet Storm |
| 258017 | 4.3 | 警告 | Opera Software ASA | - | Opera における URI の処理に関するクロスサイトスクリプティングの脆弱性\ |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-2665 | 2010-09-27 16:20 | 2010-06-21 | Show | GitHub Exploit DB Packet Storm |
| 258018 | 4.3 | 警告 | Opera Software ASA | - | Opera の HTML コンテンツにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2010-2664 | 2010-09-27 16:20 | 2010-07-1 | Show | GitHub Exploit DB Packet Storm |
| 258019 | 4.3 | 警告 | Opera Software ASA | - | Opera におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2010-2663 | 2010-09-27 16:20 | 2010-07-1 | Show | GitHub Exploit DB Packet Storm |
| 258020 | 4.3 | 警告 | Opera Software ASA | - | Opera におけるポップアップブロッカーを回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-2662 | 2010-09-27 16:20 | 2010-07-1 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 13, 2026, 4:20 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 259721 | 9.8 |
CRITICAL
Network |
netgear | readynas_surveillance_firmware | In NETGEAR ReadyNAS Surveillance before 1.4.3-17 x86 and before 1.1.4-7 ARM, $_GET['uploaddir'] is not escaped and is passed to system() through $tmp_upload_dir, leading to upgrade_handle.php?cmd=wri… |
CWE-77
Command Injection |
CVE-2017-18378 | 2024-11-21 12:19 | 2019-06-12 | Show | GitHub Exploit DB Packet Storm |
| 259722 | 9.8 |
CRITICAL
Network |
goahead | wireless_ip_camera_wificam_firmware | An issue was discovered on Wireless IP Camera (P2P) WIFICAM cameras. There is Command Injection in the set_ftp.cgi script via shell metacharacters in the pwd variable, as demonstrated by a set_ftp.cg… |
CWE-77
Command Injection |
CVE-2017-18377 | 2024-11-21 12:19 | 2019-06-12 | Show | GitHub Exploit DB Packet Storm |
| 259723 | 8.8 |
HIGH
Network |
strangebee | thehive | An improper authorization check in the User API in TheHive before 2.13.4 and 3.x before 3.3.1 allows users with read-only or read/write access to escalate their privileges to the administrator's priv… |
CWE-264
Permissions, Privileges, and Access Controls |
CVE-2017-18376 | 2024-11-21 12:19 | 2019-06-3 | Show | GitHub Exploit DB Packet Storm |
| 259724 | 8.8 |
HIGH
Network |
ampache | ampache | Ampache 3.8.3 allows PHP Object Instantiation via democratic.ajax.php and democratic.class.php. |
CWE-502
Deserialization of Untrusted Data |
CVE-2017-18375 | 2024-11-21 12:19 | 2019-05-25 | Show | GitHub Exploit DB Packet Storm |
| 259725 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware sd_210_firmware sd_835_firmware sd_845_firmware sd_850_firmware sd_212_firmware sd_205_firmware |
Secure camera logic allows display/secure camera controllers to access HLOS memory during secure display or camera session in Snapdragon Mobile, Snapdragon Wear in MDM9206, MDM9607, MDM9650, SD 210/S… |
NVD-CWE-noinfo
|
CVE-2017-18276 | 2024-11-21 12:19 | 2019-05-7 | Show | GitHub Exploit DB Packet Storm |
| 259726 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8996au_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd… |
While processing camera buffers in camera driver, a use after free condition can occur in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in MDM9206, MDM9607, MDM9650, MSM8996AU, SD 210/SD … |
CWE-416
Use After Free |
CVE-2017-18156 | 2024-11-21 12:19 | 2019-05-7 | Show | GitHub Exploit DB Packet Storm |
| 259727 | 7.8 |
HIGH
Local |
qualcomm |
fsm9055_firmware fsm9955_firmware ipq4019_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qca9531_firmware… |
Lack of check of buffer length before copying can lead to buffer overflow in camera module in Small Cell SoC, Snapdragon Mobile, Snapdragon Wear in FSM9055, FSM9955, IPQ4019, IPQ8064, MDM9206, MDM960… |
CWE-190
Integer Overflow or Wraparound |
CVE-2017-18279 | 2024-11-21 12:19 | 2019-05-7 | Show | GitHub Exploit DB Packet Storm |
| 259728 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd_430_firmware sd_450_firmware sd_625_firmware sd_650… |
An integer underflow may occur due to lack of check when received data length from font_mgr_qsee_request_service is bigger than the minimal value of the segment header, which may result in a buffer o… |
CWE-191
Integer Underflow (Wrap or Wraparound) |
CVE-2017-18278 | 2024-11-21 12:19 | 2019-05-7 | Show | GitHub Exploit DB Packet Storm |
| 259729 | 5.5 |
MEDIUM
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd_430_firmware sd_450_firmware sd_6… |
A new account can be inserted into simContacts service using Android command line tool in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in MDM9206, MDM9607, MDM9650, MSM8909W, SD 210/SD 2… |
NVD-CWE-noinfo
|
CVE-2017-18275 | 2024-11-21 12:19 | 2019-05-7 | Show | GitHub Exploit DB Packet Storm |
| 259730 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_425_firmware sd_430_firmware sd_450_firmware sd_617_firmware sd_625… |
While iterating through the models contained in a fixed-size array in the actData structure, which also stores an incorrect number of models that is greater than the size of the array, a buffer overf… |
CWE-129
Improper Validation of Array Index |
CVE-2017-18274 | 2024-11-21 12:19 | 2019-05-7 | Show | GitHub Exploit DB Packet Storm |