|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
Update Date":July 1, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 259421 | 5 | 警告 | Eyrie VMware レッドハット |
- | pam_krb5 における有効なユーザ名を列挙される脆弱性 |
CWE-287
不適切な認証 |
CVE-2009-1384 | 2011-02-28 14:51 | 2009-05-28 | Show | GitHub Exploit DB Packet Storm |
| 259422 | 4.4 | 警告 | サイバートラスト株式会社 VMware レッドハット |
- | Red Hat Enterprise Linux の pam_krb5 における権限昇格の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2008-3825 | 2011-02-28 14:48 | 2008-10-2 | Show | GitHub Exploit DB Packet Storm |
| 259423 | 6.8 | 警告 | Haxx アップル VMware サイバートラスト株式会社 レッドハット |
- | libcurl の content_encoding.c におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-0734 | 2011-02-28 14:41 | 2010-02-9 | Show | GitHub Exploit DB Packet Storm |
| 259424 | 4.3 | 警告 | VMware OpenSSL Project |
- | OpenSSL クライアントの ssl3_get_key_exchange 関数における任意のコードを実行される脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2010-2939 | 2011-02-28 14:39 | 2010-08-17 | Show | GitHub Exploit DB Packet Storm |
| 259425 | 10 | 危険 | アップル サイバートラスト株式会社 VMware サン・マイクロシステムズ レッドハット |
- | 複数の Oracle 製品 の Java Deployment Toolkit コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0886 | 2011-02-28 14:16 | 2010-04-15 | Show | GitHub Exploit DB Packet Storm |
| 259426 | 8.3 | 危険 | インターネットイニシアティブ | - | SEIL シリーズにおけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2011-0454 | 2011-02-28 12:08 | 2011-02-28 | Show | GitHub Exploit DB Packet Storm |
| 259427 | 6.8 | 警告 | - | OpenCORE の Huffman デコーディング機能における整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2009-0475 | 2011-02-25 14:13 | 2009-02-17 | Show | GitHub Exploit DB Packet Storm | |
| 259428 | 7.2 | 危険 | - | T-Mobile G1 phone 上で稼働する Open Handset Alliance Android の link_image 関数における任意のファイルを作成される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2009-0606 | 2011-02-25 14:11 | 2009-02-17 | Show | GitHub Exploit DB Packet Storm | |
| 259429 | 5 | 警告 | シスコシステムズ | - | Cisco IOS 上で稼働する STCAPP におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2010-4687 | 2011-02-25 14:07 | 2011-01-7 | Show | GitHub Exploit DB Packet Storm |
| 259430 | 7.8 | 危険 | シスコシステムズ | - | Cisco IOS 上で稼働する CallManager Express におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2010-4686 | 2011-02-25 14:05 | 2011-01-7 | Show | GitHub Exploit DB Packet Storm |
Update Date:July 1, 2026, 4:27 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 252781 | 7.2 |
HIGH
Network |
apache | virtual_computing_lab | Apache VCL versions 2.1 through 2.5 do not properly validate cookie input when determining what node (if any) was previously selected in the privilege tree. The cookie data is then used in an SQL sta… |
CWE-89
SQL Injection |
CVE-2018-11772 | 2024-11-21 12:44 | 2019-07-30 | Show | GitHub Exploit DB Packet Storm |
| 252782 | 9.8 |
CRITICAL
Network |
apache | storm | In Apache Storm versions 1.1.0 to 1.2.2, when the user is using the storm-kafka-client or storm-kafka modules, it is possible to cause the Storm UI daemon to deserialize user provided bytes into a Ja… |
CWE-502
Deserialization of Untrusted Data |
CVE-2018-11779 | 2024-11-21 12:44 | 2019-07-26 | Show | GitHub Exploit DB Packet Storm |
| 252783 | 7.2 |
HIGH
Network |
elitecms | elite_cms | An issue was discovered in Elite CMS Pro 2.01. In /admin/add_sidebar.php, the ?page= parameter is vulnerable to SQL injection. |
CWE-89
SQL Injection |
CVE-2018-12250 | 2024-11-21 12:44 | 2019-07-4 | Show | GitHub Exploit DB Packet Storm |
| 252784 | 9.8 |
CRITICAL
Network |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qca6174a_firmware qca6574au_firmware qca9377_firmw… |
Lack of check on length of reason-code fetched from payload may lead driver access the memory not allocated to the frame and results in out of bound read in Snapdragon Auto, Snapdragon Consumer Elect… |
CWE-125
Out-of-bounds Read |
CVE-2018-11955 | 2024-11-21 12:44 | 2019-06-15 | Show | GitHub Exploit DB Packet Storm |
| 252785 | 5.5 |
MEDIUM
Local |
qualcomm |
ipq8064_firmware mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8996au_firmware qca6174a_firmware qca6574au_firmware qca9377_firmwa… |
The txrx stats req might be double freed in the pdev detach when the host driver is unloading in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Ind… |
CWE-415
Double Free |
CVE-2018-11947 | 2024-11-21 12:44 | 2019-06-15 | Show | GitHub Exploit DB Packet Storm |
| 252786 | 5.5 |
MEDIUM
Local |
qualcomm |
ipq4019_firmware ipq8064_firmware ipq8074_firmware mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8996au_firmware qcs405_firmware | Failure to initialize the reserved memory which is sent to the firmware might lead to exposure of 1 byte of uninitialized kernel SKB memory to FW in Snapdragon Auto, Snapdragon Consumer IOT, Snapdrag… |
CWE-200
Information Exposure |
CVE-2018-11942 | 2024-11-21 12:44 | 2019-06-15 | Show | GitHub Exploit DB Packet Storm |
| 252787 | 7.8 |
HIGH
Local |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware qca6574au_firmware sd_210_firmware sd_212_firmware sd_205_firmware | Use after issue in WLAN function due to multiple ACS scan requests at a time in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in MDM9150, MDM9206, MDM9607, MD… |
CWE-416
Use After Free |
CVE-2018-11939 | 2024-11-21 12:44 | 2019-06-15 | Show | GitHub Exploit DB Packet Storm |
| 252788 | 7.8 |
HIGH
Local |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8996au_firmware qca6174a_firmware qca6574au_firmware qca9377_firmware qca9379_firmwa… |
Possible out of bounds write due to improper input validation while processing DO_ACS vendor command in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdra… |
CWE-787
Out-of-bounds Write |
CVE-2018-11934 | 2024-11-21 12:44 | 2019-06-15 | Show | GitHub Exploit DB Packet Storm |
| 252789 | 7.8 |
HIGH
Local |
qualcomm |
mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8996au_firmware qcs405_firmware qcs605_firmware sd_425_firmware sd_427_firmware s… |
Lack of input validation in WLAN function can lead to potential heap overflow in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MD… |
CWE-787
Out-of-bounds Write |
CVE-2018-11929 | 2024-11-21 12:44 | 2019-06-15 | Show | GitHub Exploit DB Packet Storm |
| 252790 | 7.8 |
HIGH
Local |
qualcomm |
mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8996au_firmware qcs605_firmware sd_425_firmware sd_427_firmware sd_430_firmware sd_435_firmware sd… |
Use after issue in WLAN function due to multiple ACS scan requests at a time in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in MDM9206, MDM9607, MDM9640, MD… |
CWE-416
Use After Free |
CVE-2018-11819 | 2024-11-21 12:44 | 2019-06-15 | Show | GitHub Exploit DB Packet Storm |