Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 15, 2026, 2 p.m.
NVD Vulnerability Information
Update Date:June 15, 2026, 4:10 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 248121 | 7.8 |
HIGH
Local |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware qcs405_firmware qcs605_firmware sd_625_firmware sd_636_firmware sd_675_firmware sd_… |
Use-after-free vulnerability will occur if reset of the routing table encounters an invalid rule id while processing command to reset in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity,… |
CWE-416
Use After Free |
CVE-2018-13919 | 2024-11-21 12:48 | 2019-06-15 | Show | GitHub Exploit DB Packet Storm |
| 248122 | 9.8 |
CRITICAL
Network |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9615_firmware mdm9635m_firmware mdm9640_firmware mdm9650_firmware mdm9655_firmware msm8909w_firmware msm8996au_firmwar… |
Out of bounds memory read and access may lead to unexpected behavior in GNSS XTRA Parser in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Sn… |
CWE-125
Out-of-bounds Read |
CVE-2018-13911 | 2024-11-21 12:48 | 2019-06-15 | Show | GitHub Exploit DB Packet Storm |
| 248123 | 7.8 |
HIGH
Local |
qualcomm |
ipq8074_firmware mdm9206_firmware mdm9607_firmware mdm9650_firmware mdm9655_firmware msm8996au_firmware qca8081_firmware qm215_firmware sd_410_firmware sd_412_firmware s… |
Out-of-Bounds access in TZ due to invalid index calculated to check against DDR in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Sna… |
CWE-125
Out-of-bounds Read |
CVE-2018-13910 | 2024-11-21 12:48 | 2019-06-15 | Show | GitHub Exploit DB Packet Storm |
| 248124 | 7.0 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware mdm9655_firmware qcs605_firmware qm215_firmware sd_410_firmware sd_412_firmware sd_425_firmware sd_427_firmware sd_430… |
Metadata verification and partial hash system calls by bootloader may corrupt parallel hashing state in progress resulting in unexpected behavior in Snapdragon Auto, Snapdragon Compute, Snapdragon Co… |
CWE-362
Race Condition |
CVE-2018-13909 | 2024-11-21 12:48 | 2019-06-15 | Show | GitHub Exploit DB Packet Storm |
| 248125 | 7.8 |
HIGH
Local |
qualcomm |
ipq8074_firmware mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9650_firmware mdm9655_firmware msm8909w_firmware msm8996au_firmware qca8081_firmware qcs405_firmware<… |
Truncated access authentication token leads to weakened access control for stored secure application data in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electron… |
CWE-285
Improper Authorization |
CVE-2018-13908 | 2024-11-21 12:48 | 2019-06-15 | Show | GitHub Exploit DB Packet Storm |
| 248126 | 5.3 |
MEDIUM
Network |
qualcomm |
pq4019_firmware ipq8074_firmware mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9635m_firmware mdm9640_firmware mdm9650_firmware mdm9655_firmware msm8909w_firmware
While deserializing any key blob during key operations, buffer overflow could occur, exposing partial key information if any key operations are invoked in Snapdragon Auto, Snapdragon Compute, Snapdra…
|
CWE-119
|
Incorrect Access of Indexable Resource ('Range Error')
CVE-2018-13907
|
2024-11-21 12:48 |
2019-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 248127 | 9.1 |
CRITICAL
Network |
qualcomm |
ipq4019_firmware ipq8074_firmware mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9635m_firmware mdm9640_firmware mdm9650_firmware mdm9655_firmware msm8909w_firmware<… |
The HMAC authenticating the message from QSEE is vulnerable to timing side channel analysis leading to potentially forged application message in Snapdragon Auto, Snapdragon Compute, Snapdragon Connec… |
CWE-20 CWE-417 Improper Input Validation Channel and Path Errors |
CVE-2018-13906 | 2024-11-21 12:48 | 2019-06-15 | Show | GitHub Exploit DB Packet Storm |
| 248128 | 7.5 |
HIGH
Network |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9615_firmware mdm9635m_firmware mdm9640_firmware mdm9650_firmware mdm9655_firmware msm8909w_firmware msm8996au_firmwar… |
Out of bounds memory read and access due to improper array index validation may lead to unexpected behavior while decoding XTRA file in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, S… |
CWE-129
Improper Validation of Array Index |
CVE-2018-13902 | 2024-11-21 12:48 | 2019-06-15 | Show | GitHub Exploit DB Packet Storm |
| 248129 | 5.5 |
MEDIUM
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qca6574au_firmware qcs605_firmware sd_210_firmware sd_212_firmware sd_205_firmware
Due to missing permissions in Android Manifest file, Sensitive information disclosure issue can happen in PCI RCS app in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon …
|
NVD-CWE-noinfo
|
CVE-2018-13901
|
2024-11-21 12:48 |
2019-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 248130 | 9.8 |
CRITICAL
Network |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9650_firmware mdm9655_firmware qcs405_firmware qcs605_firmware qualcomm_215_firmware sd_210_firmware sd_212_firmware
Out-of-Bounds write due to incorrect array index check in PMIC in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT…
|
CWE-787
|
Out-of-bounds Write
CVE-2018-13898
|
2024-11-21 12:48 |
2019-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|