Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 13, 2026, 6 p.m.
NVD Vulnerability Information
Update Date:June 13, 2026, 4:20 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 249461 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware mdm9655_firmware qcs605_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_410_firmware sd_412_firmware sd_61… |
While updating blacklisting region shared buffered memory region is not validated against newly updated black list, causing boot-up to be compromised in Snapdragon Auto, Snapdragon Compute, Snapdrago… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2018-12012 | 2024-11-21 12:44 | 2019-05-25 | Show | GitHub Exploit DB Packet Storm |
| 249462 | 5.5 |
MEDIUM
Local |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qcs605_firmware qm215_firmware sd_210_firmware … |
An unprivileged user can issue a binder call and cause a system halt in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & … |
CWE-416
Use After Free |
CVE-2018-12005 | 2024-11-21 12:44 | 2019-05-25 | Show | GitHub Exploit DB Packet Storm |
| 249463 | 5.5 |
MEDIUM
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9650_firmware mdm9655_firmware qcs605_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_410_firmware sd_412_firmware sd_61… |
Secure keypad is unlocked with secure display still intact in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Sn… |
CWE-200
Information Exposure |
CVE-2018-12004 | 2024-11-21 12:44 | 2019-05-25 | Show | GitHub Exploit DB Packet Storm |
| 249464 | 5.5 |
MEDIUM
Local |
qualcomm |
ipq8074_firmware mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9650_firmware mdm9655_firmware msm8909w_firmware msm8996au_firmware qca8081_firmware qcs605_firmware<… |
ECDSA signature code leaks private keys from secure world to non-secure world in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon… |
CWE-200
Information Exposure |
CVE-2018-11976 | 2024-11-21 12:44 | 2019-05-25 | Show | GitHub Exploit DB Packet Storm |
| 249465 | 7.8 |
HIGH
Local |
qualcomm |
ipq4019_firmware ipq8064_firmware ipq8074_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8996au_firmware qca4020_firmware qca6174a_firmware… |
Improper check before assigning value can lead to integer overflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer I… |
CWE-190
Integer Overflow or Wraparound |
CVE-2018-11968 | 2024-11-21 12:44 | 2019-05-25 | Show | GitHub Exploit DB Packet Storm |
| 249466 | 7.8 |
HIGH
Local |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qcs605_firmware qm215_firmware sd_425_firmware … |
Signature verification of the skel library could potentially be disabled as the memory region on the remote subsystem in which the library is loaded is allocated from userspace currently in Snapdrago… |
NVD-CWE-noinfo
|
CVE-2018-11967 | 2024-11-21 12:44 | 2019-05-25 | Show | GitHub Exploit DB Packet Storm |
| 249467 | 9.8 |
CRITICAL
Network |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qca6174a_firmware qca6574au_firmware qca9377_firmw… |
While processing ssid IE length from remote AP, possible out-of-bounds access may occur due to crafted ssid IE length in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Cons… |
CWE-125
Out-of-bounds Read |
CVE-2018-11953 | 2024-11-21 12:44 | 2019-05-25 | Show | GitHub Exploit DB Packet Storm |
| 249468 | 9.8 |
CRITICAL
Network |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8996au_firmware qcs605_firmware sd_425_firmware sd_427_firmware sd_430_firmware s… |
Failure to initialize the extra buffer can lead to an out of buffer access in WLAN function in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobi… |
CWE-665
Improper Initialization |
CVE-2018-11949 | 2024-11-21 12:44 | 2019-05-25 | Show | GitHub Exploit DB Packet Storm |
| 249469 | 9.8 |
CRITICAL
Network |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8996au_firmware qcs605_firmware sd_625_firmware sd_636_firmware sd_712_firmware s… |
Lack of check in length before using memcpy in WLAN function can lead to OOB access in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in MD… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2018-11940 | 2024-11-21 12:44 | 2019-05-25 | Show | GitHub Exploit DB Packet Storm |
| 249470 | 9.8 |
CRITICAL
Network |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8996au_firmware qca6574au_firmware qcs605_firmware sd_425_firmware sd_427_firmware
Lack of input validation before copying can lead to a buffer over read in WLAN function in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile i…
|
CWE-125
|
Out-of-bounds Read
CVE-2018-11937
|
2024-11-21 12:44 |
2019-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|