Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 14, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 258101 | 4.3 | 警告 | シトリックス・システムズ | - | 複数の Citrix XenServer 製品の XenAPI HTTP インターフェイスにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-3253 | 2010-09-14 15:54 | 2008-07-16 | Show | GitHub Exploit DB Packet Storm |
| 258102 | 7.5 | 危険 | シトリックス・システムズ | - | Citrix XenCenterWeb の XenServer Resource Kit における PHP コードを挿入される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3760 | 2010-09-14 15:54 | 2009-10-22 | Show | GitHub Exploit DB Packet Storm |
| 258103 | 6 | 警告 | シトリックス・システムズ | - | Citrix XenCenterWeb の XenServer Resource Kit におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2009-3759 | 2010-09-14 15:54 | 2009-10-22 | Show | GitHub Exploit DB Packet Storm |
| 258104 | 7.5 | 危険 | シトリックス・システムズ | - | Citrix XenCenterWeb の XenServer Resource Kit における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2009-3758 | 2010-09-14 15:53 | 2009-10-22 | Show | GitHub Exploit DB Packet Storm |
| 258105 | 4.3 | 警告 | シトリックス・システムズ | - | Citrix XenCenterWeb の XenServer Resource Kit におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-3757 | 2010-09-14 15:53 | 2009-10-22 | Show | GitHub Exploit DB Packet Storm |
| 258106 | 7.2 | 危険 | シトリックス・システムズ | - | Xen の xend におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2008-5716 | 2010-09-14 15:53 | 2008-12-24 | Show | GitHub Exploit DB Packet Storm |
| 258107 | 6 | 警告 | VMware | - | VMware Studio の Virtual Appliance Management Infrastructure における任意のコマンドを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-2667 | 2010-09-13 16:05 | 2010-07-13 | Show | GitHub Exploit DB Packet Storm |
| 258108 | 4.4 | 警告 | VMware | - | VMware Studio における権限を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-2427 | 2010-09-13 16:05 | 2010-07-13 | Show | GitHub Exploit DB Packet Storm |
| 258109 | 6.8 | 警告 | VMware | - | VMware SpringSource tc Server Runtime における JMX インターフェイスへのアクセス権を取得される脆弱性 |
CWE-287
不適切な認証 |
CVE-2010-1454 | 2010-09-13 16:05 | 2010-05-13 | Show | GitHub Exploit DB Packet Storm |
| 258110 | 4.3 | 警告 | VMware | - | VMware View におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-1143 | 2010-09-13 16:04 | 2010-05-5 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 14, 2026, 4:12 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 312831 | - | - | - | In HWCSession::SetColorModeById of hwc_session.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional executio… | - | CVE-2018-9409 | 2024-11-21 05:35 | 2024-11-20 | Show | GitHub Exploit DB Packet Storm | |
| 312832 | 9.8 |
CRITICAL
Network |
tenda | ac6_firmware | Tenda AC6 v2.0 v15.03.06.50 was discovered to contain a buffer overflow in the function 'fromSetSysTime. |
CWE-120
Classic Buffer Overflow |
CVE-2024-52714 | 2024-11-21 05:35 | 2024-11-20 | Show | GitHub Exploit DB Packet Storm |
| 312833 | 7.5 |
HIGH
Network |
qualcomm |
315_5g_iot_modem_firmware apq8064au_firmware aqt1000_firmware ar8031_firmware ar8035_firmware ar9380_firmware csr8811_firmware csra6620_firmware csra6640_firmware csrb31024… |
Transient DOS while parsing ESP IE from beacon/probe response frame. |
CWE-125
Out-of-bounds Read |
CVE-2024-33014 | 2024-11-21 05:35 | 2024-08-6 | Show | GitHub Exploit DB Packet Storm |
| 312834 | 5.5 |
MEDIUM
Local |
linux | linux_kernel | In the Linux kernel, the following vulnerability has been resolved: io_uring: check if we need to reschedule during overflow flush In terms of normal application usage, this list will always be emp… |
NVD-CWE-noinfo
|
CVE-2024-50060 | 2024-11-21 05:25 | 2024-10-22 | Show | GitHub Exploit DB Packet Storm |
| 312835 | 5.5 |
MEDIUM
Local |
linux | linux_kernel | In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uvc: Fix ERR_PTR dereference in uvc_v4l2.c Fix potential dereferencing of ERR_PTR() in find_format_by_pix() and uvc_… |
CWE-476
NULL Pointer Dereference |
CVE-2024-50056 | 2024-11-21 05:18 | 2024-10-22 | Show | GitHub Exploit DB Packet Storm |
| 312836 | 5.5 |
MEDIUM
Local |
linux | linux_kernel | In the Linux kernel, the following vulnerability has been resolved: ntfs3: Change to non-blocking allocation in ntfs_d_hash d_hash is done while under "rcu-walk" and should not sleep. __get_name() … |
NVD-CWE-noinfo
|
CVE-2024-50065 | 2024-11-21 05:07 | 2024-10-22 | Show | GitHub Exploit DB Packet Storm |
| 312837 | 7.5 |
HIGH
Network |
qualcomm |
ar8035_firmware csr8811_firmware fastconnect_6200_firmware fastconnect_6700_firmware fastconnect_6900_firmware fastconnect_7800_firmware flight_rb5_5g_platform_firmware immersive… |
Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report. |
CWE-125
Out-of-bounds Read |
CVE-2024-33015 | 2024-11-21 04:57 | 2024-08-6 | Show | GitHub Exploit DB Packet Storm |
| 312838 | 7.5 |
HIGH
Network |
qualcomm |
csr8811_firmware fastconnect_6800_firmware fastconnect_6900_firmware fastconnect_7800_firmware flight_rb5_5g_platform_firmware immersive_home_214_platform_firmware immersive_home_21… |
Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE. |
CWE-125
Out-of-bounds Read |
CVE-2024-33025 | 2024-11-21 04:53 | 2024-08-6 | Show | GitHub Exploit DB Packet Storm |
| 312839 | 7.5 |
HIGH
Network |
qualcomm |
ar8035_firmware csr8811_firmware fastconnect_6700_firmware fastconnect_6800_firmware fastconnect_6900_firmware fastconnect_7800_firmware flight_rb5_5g_platform_firmware immersive… |
Transient DOS while parsing the ML IE when a beacon with length field inside the common info of ML IE greater than the ML IE length. |
CWE-190
Integer Overflow or Wraparound |
CVE-2024-33024 | 2024-11-21 04:42 | 2024-08-6 | Show | GitHub Exploit DB Packet Storm |
| 312840 | 7.5 |
HIGH
Network |
qualcomm |
ar8035_firmware csr8811_firmware fastconnect_6700_firmware fastconnect_6900_firmware fastconnect_7800_firmware immersive_home_214_platform_firmware immersive_home_216_platform_firmw… |
Transient DOS while parsing the received TID-to-link mapping element of the TID-to-link mapping action frame. |
CWE-125
Out-of-bounds Read |
CVE-2024-33018 | 2024-11-21 04:40 | 2024-08-6 | Show | GitHub Exploit DB Packet Storm |