MiracleLinux 7 : vim-7.4.629-8.0.1.el7.AXS7 (AXSA:2024-8627:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8627:01 advisory. CVE-2023-0054: check the return value of vimregsub CVE-2023-0049: avoid going over the NUL at the end CVE-2023-0288: prevent the cursor from moving ...

TencentOS Server 4: vim (TSSA-2024:1005)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:1005 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

CVE-2022-4733

Cross-site Scripting XSS - Stored in GitHub repository openemr/openemr prior to 7.0.0.2...

CVE-2013-4733

The web server on the Digital Alert Systems DASDEC EAS device before 2.0-2 and the Monroe Electronics R189 One-Net EAS device before 2.0-2 allows remote attackers to obtain sensitive configuration and status information by reading log files...

CVE-2012-4733

Request Tracker RT 4.x before 4.0.13 does not properly enforce the DeleteTicket and "custom lifecycle transition" permission, which allows remote authenticated users with the ModifyTicket permission to delete tickets via unspecified vectors...

CVE-2010-4733

WebSCADA WS100 and WS200, Easy Connect EC150, Modbus RTU - TCP Gateway MB100, and Serial Ethernet Server SS100 on the IntelliCom NetBiter NB100 and NB200 platforms have a default username and password, which makes it easier for remote attackers to obtain superadmin access via the web interface, a...

CVE-2005-4733

NetBSD 2.0 before 20050316 and NetBSD-current before 20050112 allow local users to cause a denial of service infinite loop and system hang by calling the FCLOSEM fcntl with a parameter value of 0...

CVE-2025-4733

creationtimestamp| type| source ---|---|--- 2025-05-16 01:34:20+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/16593 2025-05-16 02:37:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lpaypfq2m524...

CVE-2025-4733

A vulnerability, which was classified as critical, has been found in TOTOLINK A3002R and A3002RU 3.0.0-B20230809.1615. This issue affects some unknown processing of the file /boafrm/formIpQoS of the component HTTP POST Request Handler. The manipulation of the argument mac leads to buffer overflow...

CVE-2025-4733 TOTOLINK A3002R/A3002RU HTTP POST Request formIpQoS buffer overflow

A vulnerability, which was classified as critical, has been found in TOTOLINK A3002R and A3002RU 3.0.0-B20230809.1615. This issue affects some unknown processing of the file /boafrm/formIpQoS of the component HTTP POST Request Handler. The manipulation of the argument mac leads to buffer overflow...

Linux Distros Unpatched Vulnerability : CVE-2023-4733

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use After Free in GitHub repository vim/vim prior to 9.0.1840. CVE-2023-4733 Note that Nessus relies on the presence of the package as reported by the vendor...

Photon OS 4.0: Vim PHSA-2023-4.0-0467

An update of the vim package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-4.0-0467. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid20457...

RHEL 8 : linux-firmware (RHSA-2024:4733)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:4733 advisory. The linux-firmware packages contain all of the firmware files that are required by various devices to operate. Security Fixes: kernel: Reserved field...

CVE-2024-4733 ShiftController Employee Shift Scheduling <= 4.9.57 - Authenticated (Contributor+) PHP Object Injection

The ShiftController Employee Shift Scheduling plugin is vulnerable to PHP Object Injection via deserialization of untrusted input via the hc3session-cookie in versions up to, and including, 4.9.57. This makes it possible for an authenticated attacker with contributor access-level or above to inje...

CVE-2024-4733 ShiftController Employee Shift Scheduling <= 4.9.57 - Authenticated (Contributor+) PHP Object Injection

The ShiftController Employee Shift Scheduling plugin is vulnerable to PHP Object Injection via deserialization of untrusted input via the hc3session-cookie in versions up to, and including, 4.9.57. This makes it possible for an authenticated attacker with contributor access-level or above to inje...

WordPress ShiftController Employee Shift Scheduling Plugin <= 4.9.57 is vulnerable to PHP Object Injection

Software ShiftController Employee Shift Scheduling Type Plugin Vulnerable versions = 4.9.57 Fixed in 4.9.58 OWASP Top 10 A1: Injection Classification PHP Object Injection CVE CVE-2024-4733 Patch priority Medium CVSS severity Medium 8.5 Developer Claim ownership PSID c137dcbad43b Credits Peter...

openSUSE: Security Advisory for vim (SUSE-SU-2023:3955-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization 2.10.1 : vim (EulerOS-SA-2023-3514)

According to the versions of the vim packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Use After Free in GitHub repository vim/vim prior to 9.0.1840. CVE-2023-4733 - Integer Overflow or Wraparound in GitHub repository...

EulerOS Virtualization 2.10.0 : vim (EulerOS-SA-2023-3486)

According to the versions of the vim packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Use After Free in GitHub repository vim/vim prior to 9.0.1840. CVE-2023-4733 - Integer Overflow or Wraparound in GitHub repository...

Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2024-1024)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...