CVE-2026-4834

creationtimestamp| type| source ---|---|--- 2026-05-22 06:30:58+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmgcpz2pni2r...

MiracleLinux 8 : kernel-4.18.0-425.10.1.el8_7 (AXSA:2023-4834:02)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-4834:02 advisory. kernel: memory corruption in AX88179178A based USB ethernet device. CVE-2022-2964 kernel: i915: Incorrect GPU TLB flush can lead to random memory...

CVE-2025-4834

creationtimestamp| type| source ---|---|--- 2025-05-17 20:26:19+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lpfeupugezh2 2025-05-17 21:07:51+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lpfh7byhcy2s...

CVE-2025-4834

A vulnerability was found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. It has been classified as critical. Affected is an unknown function of the file /boafrm/formSetLg of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow...

CVE-2025-4834

TOTOLINK TOTOLINK A702R/A3002R/A3002RU, version 3.0.0-B20230809.1615, contain a vulnerability in the HTTP POST Request Handler function /boafrm/formSetLg. The issue arises from improper manipulation of the submit-url parameter, which leads to a buffer overflow. The vulnerability is exploitable re...

CVE-2025-4834 TOTOLINK A702R/A3002R/A3002RU HTTP POST Request formSetLg buffer overflow

A vulnerability was found in TOTOLINK A702R, A3002R and A3002RU 3.0.0-B20230809.1615. It has been classified as critical. Affected is an unknown function of the file /boafrm/formSetLg of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow...

PT-2025-4834 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android affected versions not specified Description: The issue concerns a denial of service related to Android permissions. No specific details about the issue, affected devices, or real-world incidents are provided. Recommendations: At the...

CentOS 7 : kpatch-patch (RHSA-2023:4834)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:4834 advisory. - An issue was discovered in flsetgeneveopt in net/sched/clsflower.c in the Linux kernel before 6.3.7. It allows an out-of-bounds write in the flower classifier...

CVE-2023-4834

creationtimestamp| type| source ---|---|--- 2023-10-16 12:36:39+00:00| seen| https://t.me/cibsecurity/72308 2023-11-22 16:30:31+00:00| seen| https://t.me/arpsyndicate/356...

CVE-2023-4834

Summary: CVE-2023-4834 affects Red Lion Europe mbCONNECT24, mymbCONNECT24, and Helmholz myREX24 / myREX24.virtual up to version 2.14.2. The root cause is an improperly implemented access validation, enabling an authenticated, low-privileged attacker to read limited, non-critical device informatio...

Ubuntu 18.04 ESM : Prosody vulnerability (USN-4834-1)

The remote Ubuntu 18.04 ESM host has a package installed that is affected by a vulnerability as referenced in the USN-4834-1 advisory. It was discovered that Prosody incorrectly validated the virtual host associated with a user session across stream restarts. A remote attacker could use this issu...

CVE-2022-4834

The CVE-2022-4834 entry concerns the WordPress plugin CPT Bootstrap Carousel (versions up to 1.12). The vulnerability is a Stored Cross-Site Scripting (Stored XSS) flaw where certain shortcode attributes are not validated or escaped before being output, allowing a low-privilege user (Contributor)...

CVE-2022-4834 CPT Bootstrap Carousel <= 1.12 - Contributor+ Stored XSS via Shortcode

The CPT Bootstrap Carousel WordPress plugin through 1.12 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high...

Siemens Desigo PXC Improper Authentication (CVE-2018-4834)

A remote attacker with network access to the device could potentially upload a new firmware image to the devices without prior authentication. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...

WordPress CPT Bootstrap Carousel Plugin <= 1.12 is vulnerable to Cross Site Scripting (XSS)

Software CPT Bootstrap Carousel Type Plugin Vulnerable versions = 1.12 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2022-4834 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 49016ec732ce Credits István Márton...

Debian DSA-4834-1 : vlc - security update

Multiple vulnerabilities were discovered in the VLC media player, which could result in the execution of arbitrary code or denial of service if a malformed media file is opened. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian...

CVE-2019-4834

...

CVE-2019-4834

This CVE entry is rejected/not used; it does not represent an active vulnerability entry.

CVE-2017-4834

...

CVE-2017-4834

This CVE entry is rejected/not used and does not represent an active vulnerability.