CVE-2025-29986

HIGH Year: 2025
CVSS v3 Score
8.3
High
Weakness Type
CWE-923
View all →

Vulnerability Description

Dell Common Event Enabler, version(s) CEE 9.0.0.0, contain(s) an Improper Restriction of Communication Channel to Intended Endpoints vulnerability in the Common Anti-Virus Agent (CAVA). An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access.

Related Vulnerabilities

CVE-2024-47490

HIGH
CVSS:8.2(High)

An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved on ACX 7000 Series allows an unauthentic...

CWE-9232024

CVE-2018-10596

HIGH
CVSS:8.0(High)

Medtronic 2090 CareLink Programmer uses a virtual private network connection to securely download updates. It does not verify it is still connected to this virtual private network before downloading u...

CWE-9232018

CVE-2024-41889

HIGH
CVSS:8.8(High)

Multiple Pimax products accept WebSocket connections from unintended endpoints. If this vulnerability is exploited, arbitrary code may be executed by a remote unauthenticated attacker.

CWE-9232024

CVE-2024-26131

HIGH
CVSS:7.8(High)

Element Android is an Android Matrix Client. Element Android version 1.4.3 through 1.6.10 is vulnerable to intent redirection, allowing a third-party malicious application to start any internal activi...

CWE-9232024

CVE-2025-23178

HIGH
CVSS:7.6(High)

CWE-923: Improper Restriction of Communication Channel to Intended Endpoints

CWE-9232025

CVE-2023-28078

CRITICAL
CVSS:9.1(Critical)

Dell OS10 Networking Switches running 10.5.2.x and above contain a vulnerability with zeroMQ when VLT is configured. A remote unauthenticated attacker could potentially exploit this vulnerability lead...

CWE-9232023