469 matches found
PT-2026-40078
Improper input validation for some Intel Endpoint Management Assistant EMA software before version 1.14.5 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an unauthenticated user combined with a low complexity attack may enable escalation...
Astra Linux - уязвимость в linux, bluez
Improper access control in BlueZ may allow a authenticated user to potentially enable information disclosure through adjacent access...
CVE-2026-21008
Exposure of sensitive information in S Share prior to SMR Apr-2026 Release 1 allows adjacent attacker to access sensitive information...
CVE-2026-0407
CVE-2026-0407 describes an insufficient authentication vulnerability in NETGEAR WiFi range extenders. An adjacent attacker with WiFi authentication or a connected Ethernet port can bypass authentication and access the admin panel. Documented by multiple sources (NVD, Red Hat, CNNVD, CIRCL, EUVD, ...
CVE-2023-43627
Path traversal vulnerability in ACERA 1320 firmware ver.01.26 and earlier, and ACERA 1310 firmware ver.01.26 and earlier allows a network-adjacent authenticated attacker to alter critical information such as system files by sending a specially crafted request. They are affected when running in...
CVE-2021-33114
Improper input validation for some IntelR PROSet/Wireless WiFi in multiple operating systems and KillerTM WiFi in Windows 10 and 11 may allow an authenticated user to potentially enable denial of service via adjacent access...
CVE-2021-0126
Improper input validation for the IntelR Manageability Commander before version 2.2 may allow an authenticated user to potentially enable escalation of privilege via adjacent access...
CVE-2021-0175
Improper Validation of Specified Index, Position, or Offset in Input in firmware for some IntelR PROSet/Wireless Wi-Fi in multiple operating systems and some KillerTM Wi-Fi in Windows 10 and 11 may allow an unauthenticated user to potentially enable denial of service via adjacent access...
CVE-2020-12319
Insufficient control flow management in some IntelR PROSet/Wireless WiFi products before version 21.110 may allow an unauthenticated user to potentially enable denial of service via adjacent access...
CVE-2022-27639
Incomplete cleanup in some IntelR XMMTM 7560 Modem software before version M27560R01.2146.00 may allow a privileged user to potentially enable escalation of privilege via adjacent access...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000330)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000330 advisory. Improper input validation in BlueZ may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access. Tenable has extracted the...
CVE-2025-30669
Improper certificate validation in certain Zoom Clients may allow an unauthenticated user to conduct a disclosure of information via adjacent access...
EUVD-2025-175320
Improper certificate validation in certain Zoom Clients may allow an unauthenticated user to conduct a disclosure of information via adjacent access...
CVE-2025-30669
Improper certificate validation in certain Zoom Clients may allow an unauthenticated user to conduct a disclosure of information via adjacent access...
CVE-2025-30669 Zoom Workplace Clients - Improper Certificate Validation
Improper certificate validation in certain Zoom Clients may allow an unauthenticated user to conduct a disclosure of information via adjacent access...
CVE-2025-30669
CVE-2025-30669 affects Zoom Workplace/Zoom Clients (prior to fixed versions such as 6.5.10). The root cause described in connected advisories is improper certificate validation, which may allow an unauthenticated attacker to disclose information via adjacent access. The issue spans Zoom Client co...
PT-2025-46836
Improper certificate validation in certain Zoom Clients may allow an unauthenticated user to conduct a disclosure of information via adjacent access...
CVE-2025-24834
Protection mechanism failure for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an information disclosure. Unprivileged software adversary with an unauthenticated user combined with a low complexity attack may enable data exposure. This result...
CVE-2025-24516
Improper access control for some IntelR CIP software before version WINDCA2.4.0.11001 within Ring 3: User Applications may allow an information disclosure. Unprivileged software adversary with a privileged user combined with a low complexity attack may enable data exposure. This result may...
CVE-2025-42894
Due to a Path Traversal vulnerability in SAP Business Connector, an attacker authenticated as an administrator with adjacent access could read, write, overwrite, and delete arbitrary files on the host system. Successful exploitation could enable the attacker to execute arbitrary operating system...