EUVD-2025-210215

In multiple locations, there is a possible 3rd party passkey entry pairing approval due to a missing permission check. This could lead to remote proximal/adjacent escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2026-35069

Dell PowerFlex Manager is affected by an SQL Injection due to improper neutralization of special elements. The issue affects Dell PowerFlex Manager versions unspecified in the document; an attacker with adjacent network access and low privileges could potentially trigger script injection. Documen...

Astra Linux - уязвимость в linux, bluez

Improper access control in BlueZ may allow a authenticated user to potentially enable information disclosure through adjacent access...

PT-2026-40078

Improper input validation for some Intel Endpoint Management Assistant EMA software before version 1.14.5 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an unauthenticated user combined with a low complexity attack may enable escalation...

CVE-2026-21008

Exposure of sensitive information in S Share prior to SMR Apr-2026 Release 1 allows adjacent attacker to access sensitive information...

CVE-2026-0407

CVE-2026-0407 describes an insufficient authentication vulnerability in NETGEAR WiFi range extenders. An adjacent attacker with WiFi authentication or a connected Ethernet port can bypass authentication and access the admin panel. Documented by multiple sources (NVD, Red Hat, CNNVD, CIRCL, EUVD, ...

CVE-2023-43627

Path traversal vulnerability in ACERA 1320 firmware ver.01.26 and earlier, and ACERA 1310 firmware ver.01.26 and earlier allows a network-adjacent authenticated attacker to alter critical information such as system files by sending a specially crafted request. They are affected when running in...

CVE-2021-33114

Improper input validation for some IntelR PROSet/Wireless WiFi in multiple operating systems and KillerTM WiFi in Windows 10 and 11 may allow an authenticated user to potentially enable denial of service via adjacent access...

CVE-2021-0126

Improper input validation for the IntelR Manageability Commander before version 2.2 may allow an authenticated user to potentially enable escalation of privilege via adjacent access...

CVE-2021-0175

Improper Validation of Specified Index, Position, or Offset in Input in firmware for some IntelR PROSet/Wireless Wi-Fi in multiple operating systems and some KillerTM Wi-Fi in Windows 10 and 11 may allow an unauthenticated user to potentially enable denial of service via adjacent access...

CVE-2020-12319

Insufficient control flow management in some IntelR PROSet/Wireless WiFi products before version 21.110 may allow an unauthenticated user to potentially enable denial of service via adjacent access...

CVE-2022-27639

Incomplete cleanup in some IntelR XMMTM 7560 Modem software before version M27560R01.2146.00 may allow a privileged user to potentially enable escalation of privilege via adjacent access...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000330)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000330 advisory. Improper input validation in BlueZ may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access. Tenable has extracted the...

CVE-2025-30669

Improper certificate validation in certain Zoom Clients may allow an unauthenticated user to conduct a disclosure of information via adjacent access...

EUVD-2025-175320

Improper certificate validation in certain Zoom Clients may allow an unauthenticated user to conduct a disclosure of information via adjacent access...

CVE-2025-30669

Improper certificate validation in certain Zoom Clients may allow an unauthenticated user to conduct a disclosure of information via adjacent access...

CVE-2025-30669 Zoom Workplace Clients - Improper Certificate Validation

Improper certificate validation in certain Zoom Clients may allow an unauthenticated user to conduct a disclosure of information via adjacent access...

CVE-2025-30669

CVE-2025-30669 affects Zoom Workplace/Zoom Clients (prior to fixed versions such as 6.5.10). The root cause described in connected advisories is improper certificate validation, which may allow an unauthenticated attacker to disclose information via adjacent access. The issue spans Zoom Client co...

PT-2025-46836

Improper certificate validation in certain Zoom Clients may allow an unauthenticated user to conduct a disclosure of information via adjacent access...

CVE-2025-24834

Protection mechanism failure for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an information disclosure. Unprivileged software adversary with an unauthenticated user combined with a low complexity attack may enable data exposure. This result...