Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

812 matches found

EUVD
EUVDadded last week7 views

EUVD-2026-35913

SimpleBLE is a cross-platform library and bindings for Bluetooth Low Energy BLE. Prior to version 0.14.0, there are multiple stack-based buffer overflow vulnerabilities in SimpleBLE. There is a stack overflow vulnerability in the dongl backend’s Protocol::simpleblewrite function local,...

8.7CVSS5.8AI score0.00333EPSS
Exploits0References4
EUVD
EUVDadded 2026/06/09 6:20 a.m.9 views

EUVD-2026-35353

A remote, unauthenticated BLE peer can trigger a 2-byte out-of-bounds write in the Bluetooth host during L2CAP LE CoC SDU reassembly. When the application enables segmentation via chanops.allocbuf and the chosen RX pool has a userdatasize smaller than 2 bytes, the segmentation counter stored in t...

7.6CVSS5.5AI score0.00174EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/06/05 7:19 p.m.5 views

CVE-2026-5768

The Frontier X2 device allows unauthenticated BLE read/write access to critical GATT characteristics without enforcing pairing authentication or authorization. This allows attackers within BLE range to perform unauthorized control of device functions, including starting/stopping activities,...

8.8CVSS5.5AI score0.00438EPSS
Exploits0References1
EUVD
EUVDadded 2026/06/02 12:31 a.m.7 views

EUVD-2026-33807

In multiple locations, there is a possible way to bypass user interaction when pairing an LE device due to a logic error. This could lead to remote proximal/adjacent escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8CVSS5.9AI score0.00118EPSS
Exploits0References2
NVD
NVDadded 2026/06/01 10:16 p.m.10 views

CVE-2026-0097

In multiple locations, there is a possible way to bypass user interaction when pairing an LE device due to a logic error. This could lead to remote proximal/adjacent escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8CVSS0.00118EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/06/01 9:14 p.m.9 views

CVE-2026-0097

In multiple locations, there is a possible way to bypass user interaction when pairing an LE device due to a logic error. This could lead to remote proximal/adjacent escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

5.9AI score0.00118EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/06/01 9:14 p.m.7 views

CVE-2026-0097

In multiple locations, there is a possible way to bypass user interaction when pairing an LE device due to a logic error. This could lead to remote proximal/adjacent escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8CVSS5.9AI score0.00118EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2026/06/01 9:14 p.m.23 views

CVE-2026-0097

Technical details about CVE-2026-0097 are not publicly available in the provided documents. Monitor for updates from sources such as the Android bulletin and NVD.

8CVSS5.9AI score0.00118EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologiesadded 2026/06/01 12:0 a.m.10 views

PT-2026-45601

Name of the Vulnerable Software and Affected Versions Android affected versions not specified Description A logic error in multiple locations allows for the bypass of user interaction during the pairing of an LE Low Energy device. This flaw enables remote escalation of privilege for an adjacent...

8CVSS6AI score0.00118EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2026/05/29 8:13 p.m.9 views

CVE-2026-9398

A security vulnerability has been detected in Besen BS20 EV Charging Station up to 20260426. This affects an unknown part of the component BLE/WiFi. Such manipulation leads to authentication bypass by capture-replay. The attack must be carried out from within the local network. Attacks of this...

3.1CVSS5.2AI score0.00345EPSS
Exploits0References1
NVD
NVDadded 2026/05/29 6:17 p.m.8 views

CVE-2026-5768

The Frontier X2 device allows unauthenticated BLE read/write access to critical GATT characteristics without enforcing pairing authentication or authorization. This allows attackers within BLE range to perform unauthorized control of device functions, including starting/stopping activities,...

8.8CVSS0.00438EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/05/29 4:58 p.m.11 views

CVE-2026-5768

The Frontier X2 device allows unauthenticated BLE read/write access to critical GATT characteristics without enforcing pairing authentication or authorization. This allows attackers within BLE range to perform unauthorized control of device functions, including starting/stopping activities,...

8.8CVSS5.8AI score0.00438EPSS
Exploits0References4
EUVD
EUVDadded 2026/05/29 4:58 p.m.8 views

EUVD-2026-33368

The Frontier X2 device allows unauthenticated BLE read/write access to critical GATT characteristics without enforcing pairing authentication or authorization. This allows attackers within BLE range to perform unauthorized control of device functions, including starting/stopping activities,...

8.8CVSS5.8AI score0.00438EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2026/05/27 8:14 p.m.11 views

CVE-2026-9394

A vulnerability was determined in Besen BS20 EV Charging Station up to 20260426. This impacts an unknown function of the component Bluetooth Low Energy Handler. Executing a manipulation can lead to weak password requirements. The attack needs to be done within the local network. This attack is...

3.1CVSS5.2AI score0.00225EPSS
Exploits0References1
NVD
NVDadded 2026/05/26 9:16 p.m.9 views

CVE-2026-8676

An attacker is able to downgrade the security of a Bluetooth LE connection by deleting an existing bond, spoofing the bonded device and creating a new bond...

8.8CVSS0.00202EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/05/26 7:36 p.m.27 views

CVE-2026-8676

An attacker is able to downgrade the security of a Bluetooth LE connection by deleting an existing bond, spoofing the bonded device and creating a new bond...

8.8CVSS0.00202EPSS
Exploits0References2
CVE
CVEadded 2026/05/26 7:36 p.m.10 views

CVE-2026-8676

CVE-2026-8676 describes a vulnerability in Bluetooth Low Energy bonding where an attacker can downgrade security by deleting an existing bond, spoofing the bonded device, and establishing a new bond. The CVSS v3.1 vector indicates an Adjacent attacker, no privileges, low attack complexity, with h...

8.8CVSS5.8AI score0.00202EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/05/26 7:36 p.m.6 views

CVE-2026-8676

An attacker is able to downgrade the security of a Bluetooth LE connection by deleting an existing bond, spoofing the bonded device and creating a new bond...

8.8CVSS5.8AI score0.00202EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/05/26 7:36 p.m.4 views

CVE-2026-8676

An attacker is able to downgrade the security of a Bluetooth LE connection by deleting an existing bond, spoofing the bonded device and creating a new bond...

8.8CVSS5.8AI score0.00202EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/05/26 12:0 a.m.8 views

PT-2026-43409

An attacker is able to downgrade the security of a Bluetooth LE connection by deleting an existing bond, spoofing the bonded device and creating a new bond...

8.8CVSS5.8AI score0.00202EPSS
Exploits0References3
Rows per page
Query Builder