Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
259601 9.3 危険 レッドハット
リアルネットワークス
- RealNetworks RealPlayer における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2010-2997 2011-01-7 15:33 2010-12-10 Show GitHub Exploit DB Packet Storm
259602 2.6 注意 アップル
サイバートラスト株式会社
レッドハット
SquirrelMail Project
- SquirrelMail におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2009-2964 2011-01-7 11:03 2009-08-12 Show GitHub Exploit DB Packet Storm
259603 4.3 警告 レッドハット
SquirrelMail Project
- SquirrelMail におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-1262 2011-01-7 11:02 2007-05-9 Show GitHub Exploit DB Packet Storm
259604 9.3 危険 レッドハット
リアルネットワークス
- RealNetworks RealPlayer のマルチレートオーディオにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2010-4375 2011-01-6 16:23 2010-12-10 Show GitHub Exploit DB Packet Storm
259605 9.3 危険 レッドハット
リアルネットワークス
- RealNetworks RealPlayer の RealMedia メディアプロパティーヘッダーにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2010-4384 2011-01-6 16:18 2010-12-10 Show GitHub Exploit DB Packet Storm
259606 4.3 警告 Mozilla Foundation
オラクル
- 複数の Mozilla 製品の nsAuthSSPI::Unwrap 関数における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2010-0161 2011-01-6 16:01 2010-03-16 Show GitHub Exploit DB Packet Storm
259607 9.3 危険 Exim Development
レッドハット
- Exim の string_format 関数にバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2010-4344 2011-01-6 15:58 2010-12-14 Show GitHub Exploit DB Packet Storm
259608 4.3 警告 Mozilla Foundation
レッドハット
- Mozilla Firefox および SeaMonkey のレンダリングエンジンにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-3770 2011-01-6 15:50 2010-12-9 Show GitHub Exploit DB Packet Storm
259609 4.3 警告 Mozilla Foundation
レッドハット
- Mozilla Firefox および SeaMonkey におけるロケーションバーを偽装される脆弱性 CWE-20
不適切な入力確認
CVE-2010-3774 2011-01-6 15:17 2010-12-9 Show GitHub Exploit DB Packet Storm
259610 6.8 警告 サイバートラスト株式会社
Mozilla Foundation
レッドハット
- Mozilla Firefox および SeaMonkey における任意の JavaScript を実行される脆弱性 CWE-DesignError
CVE-2010-3773 2011-01-6 15:15 2010-12-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
251301 7.8 HIGH
Local
qualcomm ipq8074_firmware
mdm9150_firmware
mdm9206_firmware
mdm9607_firmware
mdm9650_firmware
mdm9655_firmware
msm8909w_firmware
msm8996au_firmware
qca8081_firmware
qcs405_firmware<…
Truncated access authentication token leads to weakened access control for stored secure application data in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electron… CWE-285
Improper Authorization
CVE-2018-13908 2024-11-21 12:48 2019-06-15 Show GitHub Exploit DB Packet Storm
251302 5.3 MEDIUM
Network
qualcomm pq4019_firmware
ipq8074_firmware
mdm9150_firmware
mdm9206_firmware
mdm9607_firmware
mdm9635m_firmware
mdm9640_firmware
mdm9650_firmware
mdm9655_firmware
msm8909w_firmware
While deserializing any key blob during key operations, buffer overflow could occur, exposing partial key information if any key operations are invoked in Snapdragon Auto, Snapdragon Compute, Snapdra… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2018-13907 2024-11-21 12:48 2019-06-15 Show GitHub Exploit DB Packet Storm
251303 9.1 CRITICAL
Network
qualcomm ipq4019_firmware
ipq8074_firmware
mdm9150_firmware
mdm9206_firmware
mdm9607_firmware
mdm9635m_firmware
mdm9640_firmware
mdm9650_firmware
mdm9655_firmware
msm8909w_firmware<…
The HMAC authenticating the message from QSEE is vulnerable to timing side channel analysis leading to potentially forged application message in Snapdragon Auto, Snapdragon Compute, Snapdragon Connec… CWE-20
CWE-417
 Improper Input Validation 
 Channel and Path Errors
CVE-2018-13906 2024-11-21 12:48 2019-06-15 Show GitHub Exploit DB Packet Storm
251304 7.5 HIGH
Network
qualcomm mdm9150_firmware
mdm9206_firmware
mdm9607_firmware
mdm9615_firmware
mdm9635m_firmware
mdm9640_firmware
mdm9650_firmware
mdm9655_firmware
msm8909w_firmware
msm8996au_firmwar…
Out of bounds memory read and access due to improper array index validation may lead to unexpected behavior while decoding XTRA file in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, S… CWE-129
 Improper Validation of Array Index
CVE-2018-13902 2024-11-21 12:48 2019-06-15 Show GitHub Exploit DB Packet Storm
251305 5.5 MEDIUM
Local
qualcomm mdm9206_firmware
mdm9607_firmware
mdm9650_firmware
msm8909w_firmware
msm8996au_firmware
qca6574au_firmware
qcs605_firmware
sd_210_firmware
sd_212_firmware
sd_205_firmware
Due to missing permissions in Android Manifest file, Sensitive information disclosure issue can happen in PCI RCS app in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon … NVD-CWE-noinfo
CVE-2018-13901 2024-11-21 12:48 2019-06-15 Show GitHub Exploit DB Packet Storm
251306 9.8 CRITICAL
Network
qualcomm mdm9150_firmware
mdm9206_firmware
mdm9607_firmware
mdm9650_firmware
mdm9655_firmware
qcs405_firmware
qcs605_firmware
qualcomm_215_firmware
sd_210_firmware
sd_212_firmware
Out-of-Bounds write due to incorrect array index check in PMIC in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT… CWE-787
 Out-of-bounds Write
CVE-2018-13898 2024-11-21 12:48 2019-06-15 Show GitHub Exploit DB Packet Storm
251307 6.1 MEDIUM
Network
synacor zimbra_collaboration_suite Synacor Zimbra Collaboration Suite Collaboration before 8.8.11 has XSS in the AJAX and html web clients. CWE-79
Cross-site Scripting
CVE-2018-14013 2024-11-21 12:48 2019-05-30 Show GitHub Exploit DB Packet Storm
251308 9.8 CRITICAL
Network
qualcomm mdm9206_firmware
mdm9607_firmware
mdm9650_firmware
msm8909w_firmware
msm8996au_firmware
qcs605_firmware
qm215_firmware
sd_210_firmware
sd_212_firmware
sd_205_firmware
sd…
Error in parsing PMT table frees the memory allocated for the map section but does not reset the context map section reference causing heap use after free issue in Snapdragon Auto, Snapdragon Compute… CWE-416
 Use After Free
CVE-2018-13925 2024-11-21 12:48 2019-05-25 Show GitHub Exploit DB Packet Storm
251309 7.8 HIGH
Local
qualcomm mdm9206_firmware
mdm9607_firmware
mdm9650_firmware
msm8909w_firmware
qcs605_firmware
qm215_firmware
sd_425_firmware
sd_439_firmware
sd_429_firmware
sd_450_firmware
sd_62…
Use-after-free condition due to Improper handling of hrtimers when the PMU driver tries to access its events in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile,… CWE-416
 Use After Free
CVE-2018-13920 2024-11-21 12:48 2019-05-25 Show GitHub Exploit DB Packet Storm
251310 7.8 HIGH
Local
qualcomm mdm9150_firmware
mdm9206_firmware
mdm9607_firmware
mdm9650_firmware
msm8909w_firmware
qcs605_firmware
qm215_firmware
sd_425_firmware
sd_439_firmware
sd_429_firmware
sd_4…
Processing messages after error may result in user after free memory fault in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdra… CWE-416
 Use After Free
CVE-2018-13899 2024-11-21 12:48 2019-05-25 Show GitHub Exploit DB Packet Storm